KLA11040Elevation of privilege vulnerability in Microsoft Windows

2017-06-05T00:00:00
ID KLA11040
Type kaspersky
Reporter Kaspersky Lab
Modified 2020-05-22T00:00:00

Description

Detect date:

06/05/2017

Severity:

Critical

Description:

An improper handling of objects in memory in Windows kernel-mode driver was found in Microsoft Windows. By exploiting this vulnerability malicious users can gain privileges. This vulnerability can be exploited remotely via a specially designed application by a malicious user who has logged on to the system.

Affected products:

Windows 7 Service Pack 1
Windows Server 2008 Service Pack 2
Windows Server 2008 R2 Service Pack 1

Solution:

Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)

Original advisories:

CVE-2017-8552
CVE-2017-8552

Impacts:

PE

Related products:

Microsoft Windows 7

CVE-IDS:

CVE-2017-85527.2High

Microsoft official advisories:

KB list:

4019264
4019263
4019204