Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2017-0165 — Corporation Windows vulnerability

7 documents6 sources

Severity

7.8HIGHNVD

EPSS

12.7%

top 5.99%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

Microsoft Corporation Windows Microsoft Windows 10 Microsoft Windows Server 2012 +8 more

Timeline

PublishedApr 12

Latest updateMay 13

Description

An elevation of privilege vulnerability exists when Microsoft Windows running on Windows 10, Windows 10 1511, Windows 8.1, Windows RT 8.1, and Windows Server 2012 R2 fails to properly sanitize handles in memory, aka "Windows Elevation of Privilege Vulnerability."

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages11 packages

▶msrcmsrc/windows_server_2012_r2

▶NVDmicrosoft/windowsr2

▶NVDmicrosoft/windows_101511

▶CVEListV5microsoft_corporation/windowsWindows 10, Windows 10 1511, Windows 8.1, Windows RT 8.1, and Windows Server 2012 R2

▶msrcmsrc/windows_10_version_1511_for_32-bit_systems

Patches

Patch: portal.msrc.microsoft.com ↗Patch: portal.msrc.microsoft.com ↗

🔴Vulnerability Details

GHSA

GHSA-9q7j-h8c8-7wrw: An elevation of privilege vulnerability exists when Microsoft Windows running on Windows 10, Windows 10 1511, Windows 8↗2022-05-13

▶

💥Exploits & PoCs

Exploit-DB

Microsoft Windows 10 (Build 10586) - 'IEETWCollector' Arbitrary Directory/File Deletion Privilege Escalation↗2017-04-20

▶

📋Vendor Advisories

Microsoft

Windows Elevation of Privilege Vulnerability↗2017-04-11

▶

🕵️Threat Intelligence

Talos

Microsoft Patch Tuesday - April 2017↗2017-04-12

▶

Talos

Microsoft Patch Tuesday - April 2017↗2017-04-12

▶

Zscaler

Zscaler protects against 16 new vulnerabilities for MS↗

▶