https://hackingpassion.com/tags/windows-exploit/Recent content in Windows-Exploit on HackingPassion.com : root@HackingPassion.com-[~]HugoenTue, 28 Apr 2026 10:21:13 +0200https://hackingpassion.com/phantomrpc-windows-privilege-escalation/Tue, 28 Apr 2026 10:21:13 +0200https://hackingpassion.com/phantomrpc-windows-privilege-escalation/<p>Last week at Black Hat Asia in Singapore, a Kaspersky researcher publicly demonstrated <strong>PhantomRPC</strong>: five separate ways to take any standard Windows service account straight to full <strong>SYSTEM</strong> access, confirmed working on fully patched Windows Server 2022 and Windows Server 2025. Microsoft already knew. They received the ten-page technical report months ago, called it <strong>moderate severity</strong>, assigned no CVE, and closed the case. There is no patch.</p> <p><strong>RPC</strong> stands for Remote Procedure Call, and it is the system that Windows services use to send requests to each other directly in the background. When one service needs something from another, it sends a request through RPC. This happens constantly, hundreds of times per minute, completely invisible to whoever is sitting at the machine.</p>