Saturday, 19 July 2025
27.5 C
Singapore
29.7 C
Thailand
16 C
Indonesia
28.3 C
Philippines

In brief: Report shows close to 300 Windows 10 executables vulnerable to DLL hijacking

  • In a new report from a PwC UK security researcher Wietze Beukema, it shows that almost 300 Windows 10 executables are vulnerable to DLL hijacking.
  • A simple VBScript may be enough to allow users to gain administrative access and bypass UAC entirely on Windows 10.
  • “It turns out nearly 300 executables in your System32 folder are vulnerable to relative path DLL Hijacking. Did you know that with a simple VBScript some of these EXEs can be used to elevate such executions, bypassing UAC entirely?” noted Beukema.
  • The vulnerability referred to here is relative path DLL hijacking, which is when an attacker can cause a legitimate Windows executable to load an arbitrary DLL of the attacker’s choice, most likely with malicious intent.
  • DLL hijacking attacks can prove useful to a skilled attacker as they grant capabilities such as arbitrary code execution, privilege escalation, and persistence on the target system.
  • The various techniques of DLL hijacking covered by the Beukema’s blog post include DLL replacement, DLL Proxying, DLL search order hijacking, Phantom DLL hijacking, DLL redirection, WinSxS DLL replacement, and relative path DLL Hijacking.
  • Beukema suggests a few prevention methods that can be used to deter such attacks, such as looking for activity in the mock windows \ folder, should one be present on your machine.
  • Also, adjusting UAC settings to “always notify” could help prevent attacks like this, should the end-user be savvy enough to understand what is about to be executed.
  • Another strategy is monitoring instances of DLL creation and loading from unexpected file paths:
  • When building applications, developers should enforce using absolute and not relative paths for loading DLLs, among several other techniques.
  • None of these may alone be sufficiently foolproof. However, when appropriately applied in conjunction, preventative measures such as those explained by the researcher can deter DLL hijacking attacks by a long shot.

Hot this week

Sony unveils RX1R III full-frame camera with AI enhancements and eco-friendly design

Sony launches RX1R III full-frame camera with AI autofocus, Creative Looks, and eco-friendly packaging for advanced image quality and usability.

Google Pixel 10 Pro Fold: Five major upgrades you need to know about

The Pixel 10 Pro Fold could rival Samsung and Vivo with a brighter display, better battery, 1TB storage, and IP68 protection, according to leaks.

Honor Magic V5 makes global debut in Singapore with launch price of S$2,199

Honor Magic V5 lands in Singapore at S$2,199 with slim design, top-tier specs, and generous pre-order bundles.

Nintendo Switch 2 hits all Best Buy stores on July 17 with limited stock

Best Buy stores will restock the Nintendo Switch 2 on July 17, coinciding with Donkey Kong Bananza’s launch, but only in limited supply.

Try anime avatars and furry companions in Grok’s latest update

Elon Musk's Grok AI now features anime and red panda avatars, including one with an NSFW lingerie mode, in a new soft-launch companion feature.

SoftBank plans a billion AI agents to boost workers like ‘thousand-armed deities’

SoftBank aims to launch a billion self-replicating AI agents by year-end to boost productivity, but concerns about job displacement remain.

City Energy makes EV charging app-free in Singapore and Malaysia

AutoCharge by City Energy allows you to charge your EV in Singapore and Malaysia without needing an app – plug in and start.

Tecno unveils Phantom Ultimate G Fold – a tri-fold Android phone like no other

Tecno unveils the Phantom Ultimate G Fold, a tri-fold concept Android phone set to debut at MWC 2026, featuring a slim design and full display.

iPhone 17 Pro may feature a new scratch-resistant, anti-reflective display

iPhone 17 Pro may debut with an anti-reflective, scratch-resistant display, joining Apple’s premium iPad and Mac screens.

Related Articles

Popular Categories