Lucene search
Symantec Security ResponseSMNTC-98102HistoryMay 09, 2017 - 12:00 a.m.
Microsoft Windows COM CVE-2017-0213 Local Privilege Escalation Vulnerability
2017-05-0900:00:00
Symantec Security Response
www.symantec.com
237
0.01 Low
EPSS
Percentile
81.5%
Description
Microsoft Windows is prone to a local privilege-escalation vulnerability. A local attacker can exploit this issue to execute arbitrary code within the context of the application.
Technologies Affected
- Microsoft Windows 10 Version 1607 for 32-bit Systems
- Microsoft Windows 10 Version 1607 for x64-based Systems
- Microsoft Windows 10 for 32-bit Systems
- Microsoft Windows 10 for x64-based Systems
- Microsoft Windows 10 version 1511 for 32-bit Systems
- Microsoft Windows 10 version 1511 for x64-based Systems
- Microsoft Windows 10 version 1703 for 32-bit Systems
- Microsoft Windows 10 version 1703 for x64-based Systems
- Microsoft Windows 7 for 32-bit Systems SP1
- Microsoft Windows 7 for x64-based Systems SP1
- Microsoft Windows 8.1 for 32-bit Systems
- Microsoft Windows 8.1 for x64-based Systems
- Microsoft Windows RT 8.1
- Microsoft Windows Server 2008 R2 for Itanium-based Systems SP1
- Microsoft Windows Server 2008 R2 for x64-based Systems SP1
- Microsoft Windows Server 2008 for 32-bit Systems SP2
- Microsoft Windows Server 2008 for Itanium-based Systems SP2
- Microsoft Windows Server 2008 for x64-based Systems SP2
- Microsoft Windows Server 2012
- Microsoft Windows Server 2012 R2
- Microsoft Windows Server 2016
Recommendations
Permit local access for trusted individuals only. Where possible, use restricted environments and restricted shells.
To exploit this vulnerability, an attacker requires local access to an affected computer. Grant local access for trusted and accountable users only.
Updates are available. Please see the references or vendor advisory for more information.
Related
checkpoint_advisories
checkpoint_advisories
Microsoft Windows COM Elevation of Privilege (CVE-2017-0213)
2017-05-09 00:00:00
threatpost
threatpost
Iran-Linked 'Newbie' Hackers Spread Dharma Ransomware Via RDP Ports
2020-08-24 15:23:37
Major Gaming Companies Hit with Ransomware Linked to APT27
2021-01-05 15:26:12
mscve
mscve
Windows COM Elevation of Privilege Vulnerability
2017-05-09 07:00:00
trellix
trellix
Analysis and Protections for RagnarLocker Ransomware
2022-02-28 00:00:00
Analysis and Protections for RagnarLocker Ransomware
2022-02-28 00:00:00
Take a "NetWalk" on the Wild Side
2020-08-03 00:00:00
cisa_kev
cisa_kev
Microsoft Windows Privilege Escalation Vulnerability
2022-03-28 00:00:00
zdt
zdt
myhack58
myhack58
seebug
seebug
attackerkb
attackerkb
CVE-2017-0213
2017-05-12 00:00:00
prion
prion
Privilege escalation
2017-05-12 14:29:00
Privilege escalation
2017-05-12 14:29:00
mskb
mskb
Security update for the Windows COM Elevation of Privilege Vulnerability in Windows Server 2008: May 9, 2017
2017-05-09 07:00:00
May 9, 2017—KB4019213 (Security-only update)
2017-05-09 07:00:00
cve
cve
CVE-2017-0214
2017-05-12 14:29:00
CVE-2017-0213
2017-05-12 14:29:00
fireeye
fireeye
OVERRULED: Containing a Potentially Destructive Adversary
2018-12-21 14:00:00
githubexploit
githubexploit
Exploit for Vulnerability in Microsoft
2020-06-01 04:44:05
openvas
openvas
Microsoft COM Multiple Vulnerabilities (KB4018556)
2017-05-10 00:00:00
Microsoft Windows Monthly Rollup (KB4019214)
2017-05-10 00:00:00
Microsoft Windows Monthly Rollup (KB4019215)
2017-05-10 00:00:00
nessus
nessus
Windows Server 2012 May 2017 Security Updates
2017-05-09 00:00:00
Windows 7 and Windows Server 2008 R2 May 2017 Security Updates
2017-05-09 00:00:00
Windows 2008 May 2017 Multiple Security Updates
2017-05-09 00:00:00
kaspersky
kaspersky
KLA11009 Multiple vulnerabilities in Microsoft Windows
2017-05-09 00:00:00
KLA11077 Multiple vulnerabilities in Microsoft Products (ESU)
2017-05-09 00:00:00
trendmicroblog
trendmicroblog
TippingPoint Threat Intelligence and Zero-Day Coverage – Week of May 8, 2017
2017-05-12 16:47:57