Information disclosure in Windows and Windows Server - CVE-2017-0299
Published: June 13, 2017 / Updated: September 14, 2018
Vulnerability identifier: #VU7041
CSH Severity: Low
CVSS v4.0: CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/U:Clear
CVE-ID: CVE-2017-0299
CWE-ID: CWE-200
Exploitation vector: Local access
Exploit availability:
Public exploit is available
Vendor: Microsoft
Affected software:
Windows
Windows Server
Windows
Windows Server
Detailed vulnerability description
The vulnerability allows a local authenticated attacker to obtain potentially sensitive information on the target system.
The weakness exists due to improper initialization of memory address by the Windows kernel. A local attacker can run a specially crafted application to retrieve the base address of the kernel driver from a compromised process and bypass Kernel Address Space Layout Randomization (KASLR).
Successful exploitation of the vulnerability may result in security bypass.
The weakness exists due to improper initialization of memory address by the Windows kernel. A local attacker can run a specially crafted application to retrieve the base address of the kernel driver from a compromised process and bypass Kernel Address Space Layout Randomization (KASLR).
Successful exploitation of the vulnerability may result in security bypass.
How to mitigate CVE-2017-0299
Install update from vendor's website.