zlacker

[parent] [thread] 1 comments
1. genoci+(OP)[view] [source] 2023-04-06 00:22:34
Yes, in general on Windows processes with higher privilege levels can get access to read/write another processes memory, or even inject code into them. And even Admin-level processes can still be broken into by something running as a service with even more elevated privileges like NT AUTHORITY\SYSTEM.

This has long been a leaky part of Windows security. If your malware can get its code running inside a highly privileged service or process, it can do more or less whatever it wants to the rest of the system. But even when not used for nefarious purposes, it is still an extremely dangerous capability in that it can be very easy to create problems .

replies(1): >>Hikiko+ZO
2. Hikiko+ZO[view] [source] 2023-04-06 08:01:17
>>genoci+(OP)
Anything you run as your user can be accessed.
[go to top]