|Number of vulnerabilities||1|
|CVE ID|| CVE-2018-8589
|Public exploit||This vulnerability is being exploited in the wild.|
|Vulnerable software versions||
Windows Server 2008
Windows Server 2008 R2
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a boundary error within Win32k.sys driver. A local user can create a specially crafted application, run it on vulnerable system and execute code withe superuser privileges.
Note: this vulnerability is being actively exploited in limited targeted attacks.Remediation
Install updates from vendor's website.External links