ID:6375 - Exploit for Elevation of privilege in Windows and Windows Server - CVE-2017-0263

CSH
CYBERSECURITY HELP
Sign In REGISTER
 
Main Vulnerability Database Exploits ID:6375 - Exploit for Elevation of privilege in Windows and Windows Server - CVE-2017-0263

ID:6375 - Exploit for Elevation of privilege in Windows and Windows Server - CVE-2017-0263

Published: June 17, 2021


Vulnerability identifier: #VU6472
Vulnerability risk: Medium
CVE-ID: CVE-2017-0263
CWE-ID: CWE-20
Exploitation vector: Local access
Vulnerable software:
Windows
Windows Server

Link to public exploit:


Vulnerability description

The vulnerability allows a local user to elevate privileges on the system.

The vulnerability exists due to boundary error in Win32k.sys driver. A local user can escalate privileges on the system.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

Note: this vulnerability is being actively exploited.


Remediation

Install updates from vendor's website.