Main
Vulnerability Database
Exploits
ID:6155 - Exploit for Security feature bypass in Windows and Windows Server - CVE-2017-11830
ID:6155 - Exploit for Security feature bypass in Windows and Windows Server - CVE-2017-11830
Published: June 17, 2021
Vulnerability identifier: #VU9315
Vulnerability risk: Medium
CVE-ID: CVE-2017-11830
CWE-ID: CWE-264
Exploitation vector: Remote access
Vulnerable software:
Windows
Windows Server
Windows
Windows Server
Link to public exploit:
Vulnerability description
The vulnerability allows a remote attacker to bypass certain security restrictions.
The vulnerability exists when Device Guard incorrectly validates an untrusted file. A remote attacker can make an unsigned file appear to be signed and trusted and trick the victim into executing it.
The vulnerability exists when Device Guard incorrectly validates an untrusted file. A remote attacker can make an unsigned file appear to be signed and trusted and trick the victim into executing it.
Remediation
Install updates from vendor's website.