Main Vulnerability Database Exploits ID:10487 - Exploit for Untrusted Pointer Dereference in Windows and Windows Server - CVE-2023-29360

ID:10487 - Exploit for Untrusted Pointer Dereference in Windows and Windows Server - CVE-2023-29360

Published: September 6, 2024

Vulnerability identifier: #VU77251

Vulnerability risk: Low

CVE-ID: CVE-2023-29360

CWE-ID: CWE-822

Exploitation vector: Local access

Vulnerable software:
Windows
Windows Server

Link to public exploit:

https://github.com/0xDivyanshu-new/CVE-2023-29360

Vulnerability description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to untrusted pointer dereference in Windows TPM Device Driver mskssrv. A local user can trigger memory corruption and execute arbitrary code with SYSTEM privileges.

Remediation

Install updates from vendor's website.

ID:10487 - Exploit for Untrusted Pointer Dereference in Windows and Windows Server - CVE-2023-29360

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human