Main Vulnerability Database Exploits ID:1171 - Exploit for Information disclosure in Windows and Windows Server - CVE-2017-0259

ID:1171 - Exploit for Information disclosure in Windows and Windows Server - CVE-2017-0259

Published: March 18, 2020

Vulnerability identifier: #VU6494

Vulnerability risk: Low

CVE-ID: CVE-2017-0259

CWE-ID: CWE-200

Exploitation vector: Local access

Vulnerable software:
Windows
Windows Server

Link to public exploit:

https://www.exploit-db.com/exploits/42007/

Vulnerability description

The vulnerability allows a local attacker to obtain potentially sensitive information on the target system.

The weakness exists due to improper handling of objects in memory by Windows kernel. A local attacker can run a specially crafted application, trigger memory corruption and gain access to arbitrary files.

Successful exploitation of the vulnerability results in information disclosure.

Remediation

Install update from vendor's website.

ID:1171 - Exploit for Information disclosure in Windows and Windows Server - CVE-2017-0259

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human