Main Vulnerability Database Vulnerabilities #VU18580

#VU18580 Race condition in Windows

Published: May 23, 2019

Vulnerability identifier: #VU18580

Vulnerability risk: Low

CVSSv4.0: CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/U:Clear

CVE-ID: N/A

CWE-ID: CWE-362

Exploitation vector: Local access

Exploit availability: No public exploit available

Vulnerable software:
Windows

Software vendor:
Microsoft

Description

The vulnerability allows a remote attacker to escalate privileges on the system.

The vulnerability exists due to a race condition in the way the Windows Error Reporting service is processing file permissions. A local user can create a hardlink to a privileged file and change its permission within a short timeframe.

Successful exploitation of the vulnerability may allow an attacker to grant write permissions to critical system files and escalate privileges on the system.

Remediation

Cybersecurity Help is currently unaware of any official solution to address this vulnerability.

External links

https://github.com/SandboxEscaper/polarbearrepo/tree/master/angrypolarbearbug2

#VU18580 Race condition in Windows

Description

Remediation

External links

Please verify you're human