Privilege escalation in Windows Desktop Bridge

Published: 2018-03-13

Risk	Low
Patch available	YES
Number of vulnerabilities	2
CVE-ID	CVE-2018-0877 CVE-2018-0880
CWE-ID	CWE-264
Exploitation vector	Local
Public exploit	Public exploit code for vulnerability #2 is available.
Vulnerable software Subscribe	Windows Operating systems & Components / Operating system Windows Server Operating systems & Components / Operating system
Vendor	Microsoft

Security Bulletin

This security bulletin contains information about 2 vulnerabilities.

1) Privilege escalation

EUVDB-ID: #VU11059

Risk: Low

CVSSv3.1:

CVE-ID: CVE-2018-0877

CWE-ID: CWE-264 - Permissions, Privileges, and Access Controls

Exploit availability: No

Description

The vulnerability allows a local attacker to gain elevated privileges on the target system.

The weakness exists due to the Desktop Bridge VFS does not take into acccount user/kernel mode when managing file paths. A local attacker can run a specially crafted application and gain system privileges to perform further attacks.

Mitigation

Install updates from vendor's website.

Vulnerable software versions

Windows: 10 - 10

Windows Server: 2016 - 2016

CPE2.3

cpe:2.3:o:microsoft:windows:10:*:*:*:*:*:*:*

External links

http://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-0877

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

2) Privilege escalation

EUVDB-ID: #VU11061