Vulners
Lucene search
CVE-2017-0165
🗓️ 12 Apr 2017 14:00:00Reported by microsoftType 
cve🔗 web.nvd.nist.gov📰️ 2 Media mentions👁 87 Views🌐 WEB
| Reporter | Title | Published | Views | Family All 22 |
|---|---|---|---|---|
 | Microsoft Windows 10 10586 - IEETWCollector Arbitrary Directory/File Deletion Privilege Escalation E | 20 Apr 201700:00 | – | zdt |
| Microsoft Windows 10 (Build 10586) - IEETWCollector Arbitrary Directory/File Deletion Privilege Esca | 21 Apr 201700:00 | – | zdt |
 | CVE-2017-0165 | 20 Apr 201700:00 | – | circl |
 | Microsoft Windows Local Elevation of Privilege Vulnerability (CNVD-2017-05759) | 14 Apr 201700:00 | – | cnvd |
 | Microsoft Windows Elevation of Privilege (CVE-2017-0165) | 11 Apr 201700:00 | – | checkpoint_advisories |
 | CVE-2017-0165 | 12 Apr 201714:00 | – | cvelist |
 | April 11, 2017—KB4015219 (OS Build 10586.873) | 11 Apr 201707:00 | – | mskb |
| April 11, 2017—KB4015221 (OS Build 10240.17354) | 11 Apr 201707:00 | – | mskb |
| April 11, 2017—KB4015547 (Security-only update) | 11 Apr 201707:00 | – | mskb |
| April 11, 2017—KB4015550 (Monthly Rollup) | 11 Apr 201707:00 | – | mskb |
10
Node
[
{
"product": "Windows",
"vendor": "Microsoft Corporation",
"versions": [
{
"status": "affected",
"version": "Windows 10, Windows 10 1511, Windows 8.1, Windows RT 8.1, and Windows Server 2012 R2"
}
]
}
]| Source | Link |
|---|---|
| securitytracker | www.securitytracker.com/id/1038239 |
| securityfocus | www.securityfocus.com/bid/97467 |
| portal | www.portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-0165 |
| exploit-db | www.exploit-db.com/exploits/41901/ |
| Parameter | Position | Path | Description | CWE |
|---|---|---|---|---|
| dir_to_delete | nested | \\?\GLOBALROOT\RPC Control\xyz | PoC demonstrates using IEETwCollector to delete an arbitrary directory by abusing symbolic links during ETW session cleanup. | Elevation of Privilege |
| LogName | nested | \\?\GLOBALROOT\RPC Control\xyz | PoC demonstrates using IEETwCollector to delete an arbitrary directory by abusing symbolic links during ETW session cleanup. | Elevation of Privilege |
| LogGuid | nested | \\?\GLOBALROOT\RPC Control\xyz | PoC demonstrates using IEETwCollector to delete an arbitrary directory by abusing symbolic links during ETW session cleanup. | Elevation of Privilege |
| AgentName | nested | \\?\GLOBALROOT\RPC Control\xyz | PoC demonstrates using IEETwCollector to delete an arbitrary directory by abusing symbolic links during ETW session cleanup. | Elevation of Privilege |
| AgentClsid | nested | \\?\GLOBALROOT\RPC Control\xyz | PoC demonstrates using IEETwCollector to delete an arbitrary directory by abusing symbolic links during ETW session cleanup. | Elevation of Privilege |
Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
13 May 2026 00:24Current
7.7High risk
Vulners AI Score7.7
CVSS 27.2
CVSS 37.8
EPSS0.12685