Main Vulnerability Database Exploits ID:1243 - Exploit for Buffer overflow in Windows Server and Windows - CVE-2017-8487

ID:1243 - Exploit for Buffer overflow in Windows Server and Windows - CVE-2017-8487

Published: March 18, 2020

Vulnerability identifier: #VU7121

Vulnerability risk: High

CVE-ID: CVE-2017-8487

CWE-ID: CWE-119

Exploitation vector: Remote access

Vulnerable software:
Windows Server
Windows

Link to public exploit:

https://www.exploit-db.com/exploits/42211/

Vulnerability description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to boundary error in Microsoft Windows OLE implementation in olecnv32.dll in Microsoft Windows XP and 2003. A remote unauthenticated attacker can create a specially crafted file or program, trick the victim into opening it and execute arbitrary code on the target system with privileges of the current user.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

Note: this vulnerability is being exploited in the wild.

Remediation

Install updates from vendor's website.

ID:1243 - Exploit for Buffer overflow in Windows Server and Windows - CVE-2017-8487

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human