Tag
medium
advisory
UAC Bypass via Windows Firewall MMC Snap-In Hijack
2 rules 2 TTPsAttackers bypass User Account Control (UAC) by hijacking the Microsoft Management Console (MMC) Windows Firewall snap-in to execute code with elevated permissions, potentially leading to system compromise.
Windows
uac-bypass
privilege-escalation
windows-firewall
mmc
2r
2t
medium
advisory
UAC Bypass via DiskCleanup Scheduled Task Hijack
2 rules 3 TTPsAttackers bypass User Account Control (UAC) by hijacking the DiskCleanup Scheduled Task to stealthily execute code with elevated permissions on Windows systems.
Defender XDR +1
uac-bypass
privilege-escalation
windows
diskcleanup
scheduled-task
2r
3t
medium
advisory
UAC Bypass Attempt via Elevated COM Internet Explorer Add-On Installer
2 rules 3 TTPsThis threat brief details a UAC bypass technique leveraging the Internet Explorer Add-On Installer (ieinstal.exe) and Component Object Model (COM) to execute arbitrary code with elevated privileges.
Microsoft Defender XDR +2
uac-bypass
privilege-escalation
com
ieinstal
2r
3t