Privilege escalation in Windows Server and Windows - CVE-2017-11829
Published: October 10, 2017 / Updated: October 11, 2017
Vulnerability identifier: #VU8786
CSH Severity: Low
CVSS v4.0: CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear
CVE-ID: CVE-2017-11829
CWE-ID: CWE-264
Exploitation vector: Local access
Exploit availability:
No public exploit available
Vendor: Microsoft
Affected software:
Windows Server
Windows
Windows Server
Windows
Detailed vulnerability description
The vulnerability allows a local attacker to gain elevated privileges on the target system.
The vulnerability exists in the Windows Update Delivery Optimization component of Microsoft Windows due to improper access controls when handling file shares. A local attacker can access the system and execute a Delivery Optimization job that submits malicious input, overwrite arbitrary files and execute arbitrary code with SYSTEM privileges.
Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.
How to mitigate CVE-2017-11829
Install update from vendor's website.