Bug gives you admin rights when you plug in Razer device

Posted on Monday, Aug 23 2021 @ 13:04 CEST by Thomas De Maesschalck
razer
Security researcher jonhat discovered a vulnerability in Razer's drivers that allows an attacker to gain admin rights on a Windows machine simply by plugging a Razer device into the PC. Windows Update will then download and execute RazerInstaller with SYSTEM privileges, allowing an attacker to open a Powershell prompt with Shift + right click. The PowerShell instance will then have the same SYSTEM privileges, allowing the execution of arbitrary code.

Bleeping Computer has extra details over here. It's a nasty bug but exploitation requires local access so the overall risk is relatively low.
It should be noted that this is a local privilege escalation (LPE) vulnerability, which means that you need to have a Razer devices and physical access to a computer. With that said, the bug is so easy to exploit as you just need to spend $20 on Amazon for Razer mouse and plug it into Windows 10 to become an admin.


Presumably, a lot of other manufacturers may have similar bugs. Will Dormann from CERT/CC speculates this is a vulnerability of the type 'how has nobody realized this before now?' Razer promises to issue a fix asap.



About the Author

Thomas De Maesschalck

Thomas has been messing with computer since early childhood and firmly believes the Internet is the best thing since sliced bread. Enjoys playing with new tech, is fascinated by science, and passionate about financial markets. When not behind a computer, he can be found with running shoes on or lifting heavy weights in the weight room.



Loading Comments