SB2018021321 - Privilege escalation in Microsoft Windows CLFS implementation

Description

This security bulletin contains information about 2 secuirty vulnerabilities.

1) Elevation of privilege (CVE-ID: CVE-2018-0844)

The vulnerability allows a local user to execute arbitrary code on the target system with elevated privileges.

The vulnerability exists due to boundary error in Windows Common Log File System (CLFS) driver. A local user can execute arbitrary code on the target system with elevated privileges.

2) Elevation of privilege (CVE-ID: CVE-2018-0846)

The vulnerability allows a local user to execute arbitrary code on the target system with elevated privileges.

The vulnerability exists due to boundary error in Windows Common Log File System (CLFS) driver. A local user can execute arbitrary code on the target system with elevated privileges.

Remediation

Install update from vendor's website.

References

• https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-0844
• https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-0846