How to Gain Administrator Privileges using a Guest Account in Windows 10
Hello Readers .
As you are already aware of that the user with admin rights can change the password for other local users but did you know a local user can also hijack others account even the admin account without knowing their password.
Today we will talk about a windows 10 vulnerability through which one can access administrator privileges. Isnt’t it cool ?
The author at Google Security Research discovered this flaw and demonstrated that one can access admin privileges without knowing their passwords.
The vulnerability named as Windows COM Elevation of Prilivege Vulnerability. It affects almost all versions of windows 10 and windows 7.
Video Demonstrations
Gaining Admin Privileges (Admin Access)
First try to change password for other users using command prompt. You will see an error says that Access is Denied.
Download the exploit “CVE-2017-0213_x64” from here and unzip in your PC. Go to the folder and you can find the .exe file, double click on it to run it.
Double clicking will open the command prompt with administrator privileges.
Now you can change any users password even the administrator password.
Watch above Video for Demonstration.
Read Also : Kickout Unnecessary Users From WiFi Network
Follow our newsletter to get latest related stuff directly to your inbox.
Do you want to write for TheHackerStuff ? If you have an interesting and intelligent topic you think we would like to publish, send it to thehackerstuff@gmail.com
Pingback: Top10 PowerFull DoS/DDoS Attack Tools for Linux,Windows & Android
Is there any possibility when i run the exe via a bat file to put in any arguments? Like net user “username” view.
When i try that, the exe will only run and is not typing the command..
When trying to download chrome will not let me. How do I bypass it?
Try to use a proxy
What if I don’t have username also.?
u can get usernames by executing “net view” command in command prompt.
Pingback: Fluxion - Hacking WiFi Passwords without Bruteforce/Dictionary Attack
windows defender and antivirus will block CVE-2017-0213_x64 how to solve this ?
what If I just want to see the password and not change it?
This is awesome. Thank you
now that i did the command above, how do i delete the user so i dont have to use a their password to get in the system
Nice one
the command box just opens and shuts immediately…what to do???
When I try to run the .exe after extracting, it says “Windows cannot access the specified device, path, or file. You may not have the appropriate permissions to access the item.”
I cant get passed login screen so cant get to at least try im not in kowlage bout technoligy yet & i got my dell 2nd hand IDEARLY buy 1 of them fos RESET DISK or who would make me 1 dell will give if its bought new so i cant grt them help ANY1 help me
how can i unzip it withowt admin perms
The Command box opens and closes immediately what do i do?
I saw you video trying to find a way to get stuff onto a school computer in class but i was wondering does it change the password for the admin or just myself. I just don’t want to get in trouble for changing the admins password
it do not open any cmd window?? plz reply