New LegacyHive Windows 0-day Vulnerability Allows Users to Load Another User’s Registry

A proof-of-concept exploit dubbed LegacyHive has been released, enabling a Windows elevation-of-privilege vulnerability in the Windows User Profile Service that allows a standard user to load another user’s registry hive under their own registry classes root. Registry hives are files that store configuration data for Windows, services, applications, and user profiles. Improperly loading or exposing […]

The post New LegacyHive Windows 0-day Vulnerability Allows Users to Load Another User’s Registry appeared first on Cyber Security News.

This article has been indexed from Cyber Security News

Read the original article: