Main Vulnerability Database Exploits ID:7198 - Exploit for Improper Privilege Management in Windows and Windows Server - CVE-2021-33739

ID:7198 - Exploit for Improper Privilege Management in Windows and Windows Server - CVE-2021-33739

Published: December 22, 2021

Vulnerability identifier: #VU53902

Vulnerability risk: Critical

CVE-ID: CVE-2021-33739

CWE-ID: CWE-269

Exploitation vector: Remote access

Vulnerable software:
Windows
Windows Server

Link to public exploit:

https://github.com/giwon9977/CVE-2021-33739_PoC_Analysis

Vulnerability description

The vulnerability allows a remote attacker to compromise the affected system.

The vulnerability exists due to improper privilege management within the Microsoft DWM Core Library. A remote attacker can trick the victim to run a specially crafted executable or script and execute arbitrary code on the system.

Remediation

Install updates from vendor's website.

ID:7198 - Exploit for Improper Privilege Management in Windows and Windows Server - CVE-2021-33739

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human