Vulnerability identifier: #VU45518
Vulnerability risk: Low
Exploitation vector: Local
Exploit availability: No
The vulnerability allows a local user to escalate privilege so the system.
The vulnerability exists due to a boundary error in the Windows Graphics Device Interface (GDI) when handling objects in memory. A local user can create a specially crafted application, trigger memory corruption and execute arbitrary code on the target system with elevated privileges.
Install update from vendor's website.
Vulnerable software versions
Windows: 7 - 10 2004
Windows Server: 2008 - 2019 2004
Can this vulnerability be exploited remotely?
Is there known malware, which exploits this vulnerability?