Bug gives you admin rights when you plug in Razer device

Posted on Monday, August 23 2021 @ 13:04 CEST by Thomas De Maesschalck
razer
Security researcher jonhat discovered a vulnerability in Razer's drivers that allows an attacker to gain admin rights on a Windows machine simply by plugging a Razer device into the PC. Windows Update will then download and execute RazerInstaller with SYSTEM privileges, allowing an attacker to open a Powershell prompt with Shift + right click. The PowerShell instance will then have the same SYSTEM privileges, allowing the execution of arbitrary code.

Bleeping Computer has extra details over here. It's a nasty bug but exploitation requires local access so the overall risk is relatively low.
It should be noted that this is a local privilege escalation (LPE) vulnerability, which means that you need to have a Razer devices and physical access to a computer. With that said, the bug is so easy to exploit as you just need to spend $20 on Amazon for Razer mouse and plug it into Windows 10 to become an admin.


Presumably, a lot of other manufacturers may have similar bugs. Will Dormann from CERT/CC speculates this is a vulnerability of the type 'how has nobody realized this before now?' Razer promises to issue a fix asap.





Loading Comments