A security researcher has discovered a new bug in Windows 10 and to say the least is that it doesn’t give a freebie. It is enough to access a specific folder, either through the command prompt or directly in the file explorer to cause a blue screen of death. This bug can be exploited by hackers to erase their tracks after an attack.
Blue screen of death is a well-known sentence among Windows 10 users, which often means that the system is in bad shape. Sometimes caused by bugs within operating system updates, it can also hide in places that are more difficult to access. Windows security researcher Jonas Lykkegaard discovered one of them. To cause the famous blue screen, just enter a specific path in the file explorer’s address bar.
The path in question is this: \. globalroot device condrv kernelconnect. If you are unlikely to visit this folder, developers may potentially need to access it to perform certain tasks and programs. Very bad news then, since the bug also arises when the path is entered in command prompt or any other applicationwhether the user is in administrator mode or not.
The blue screen of death can be exploited by hackers
According to Jonas Lykkegaard, the bug is caused by the need for developers to enter an attribute when trying to access the folder. If said attribute is not added to the address, Windows 10 displays the Blue Screen of Death. Already very handicapping in the state, this flaw could be used by hackers during attacks of different types.
The latter have only send url file to the victim who directs to the buggy file. Once downloaded, Windows tries to display the file icon, which automatically causes the blue screen of death. Jonas Lykkegaard claims that the flaw can also be exploited to cause a crash upon opening Windows 10.
Also read: Windows 10 – update KB4592438 causes blue screen of death, quickly download the fix
Hackers can thus erase their tracks after an attack, but also launch a large-scale attack on computers connected to the same network. If these have been granted administrator access, they can execute a command that directs the machine to the buggy folder. When asked about the subject, Microsoft said that“An update for the impacted devices will be deployed as soon as possible”.
Source: Bleeping Computer