EUVD-2018-1553

🗓️ 04 Jan 2018 14:00:00Reported by EUVDType

Windows Subsystem for Linux in Windows allows elevation of privilege vulnerability due to memory handling.

Reporter	Title	Published	Views	Family All 19
0day.today	Microsoft Windows Subsystem for Linux - execve() Local Privilege Escalation Exploit	3 Feb 201800:00	–	zdt
Circl	CVE-2018-0743	2 Feb 201800:00	–	circl
CNVD	Microsoft Windows Subsystem for Linux Elevation of Privilege Vulnerability (CNVD-2018-00519)	5 Jan 201800:00	–	cnvd
CVE	CVE-2018-0743	4 Jan 201814:00	–	cve
Cvelist	CVE-2018-0743	4 Jan 201814:00	–	cvelist
Microsoft KB	January 3, 2018—KB4056891 (OS Build 15063.850)	9 Jan 201808:00	–	mskb
Microsoft KB	January 3, 2018—KB4056892 (OS Build 16299.192)	9 Jan 201808:00	–	mskb
Kaspersky	KLA11165 Microsoft vulnerabilities in Microsoft Windows	3 Jan 201800:00	–	kaspersky
Microsoft CVE	Windows Subsystem for Linux Elevation of Privilege Vulnerability	3 Jan 201808:00	–	mscve
NVD	CVE-2018-0743	4 Jan 201814:29	–	nvd

[
  {
    "enisaIdVendor": [
      {
        "id": "1046df00-794b-3613-924a-21ebc4dd0748",
        "vendor": {
          "name": "Microsoft Corporation"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "2bec4171-ea97-3627-81a2-de94405f5d4d",
        "product": {
          "name": "Windows Subsystem for Linux"
        },
        "product_version": "Windows 10 version 1703, Windows 10 version1709, and Windows Server, version 1709"
      }
    ]
  }
]

Source	Link
packetstormsecurity	www.packetstormsecurity.com/files/cve/CVE-2018-0743
securitytracker	www.securitytracker.com/id/1040094
github	www.github.com/saaramar/execve_exploit
twitter	www.twitter.com/AmarSaar/status/948892321755598848
exploit-db	www.exploit-db.com/exploits/43962/
portal	www.portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-0743
securityfocus	www.securityfocus.com/bid/102350

17 Sep 2024 03:38Current

7.2High risk

Vulners AI Score7.2

CVSS 37

CVSS 24.4

EPSS0.06625