I found a ground breaking RCE in windows… Run cmd.exe and you can freely run commands
@optionalctf Come on, disclosure standards. Do you realize how many attackers you just enabled.
@optionalctf RCE would imply REMOTE code exec. For this to work, you need to plug in a BT dongle and have a BT wireless keyboard. then step into another room and run cmd.exe Boom remote code execution.
@optionalctf I found one similar, one powershell.exe then you can run commands, moreover if you open it as administrator you can run command as an admin.. you can even get NT Authority/System.. insane right ?!
@optionalctf I need a video to explain how this works now pls.
@optionalctf Thank you for the report. Unfortunately, this issue has already been reported by another hacker in the past, so this report will be closed as Duplicate
@optionalctf I found one in linux of you go to the terminal it works there aswell
@optionalctf Microsoft has not solved this issue yet, so don't disclose it😂😂
@optionalctf You forgot about the prereqs that the computer must be unlocked and attacker has physical access. 8.8CVSS probably
@optionalctf I don't have run permission to run cmd.exe, help me please
@optionalctf Highly advanced. We need documentation bro...
@optionalctf Is this method applicable for linux also?🤔
@optionalctf In terms of cvss this only an 8. A 10 would be running powershell.exe
@optionalctf What is this critical R.C.E ? Theories?
@optionalctf And I’ve heard it’s really easy to escalate privileges.
@optionalctf I think it would actually be an LCE :P sorry had to be that guy.
@optionalctf 😨😨 it’s really critical.. i am sure there must me some patch for it…
@optionalctf So your saying, if you open the windows terminal that is designed to run commands it runs command. Groundbreaking who knew the terminal was meant for that
@optionalctf I thought the only way to run commands on Windows was to use VBA macros 😢. This rce is groundbreaking
@optionalctf And this goes back to NT? How haven't they patched this yet?! 😱
@optionalctf If you right click that program you can escalate and run as Administrator.