Lucene search
AnonymousZDI-20-1130HistorySep 10, 2020 - 12:00 a.m.
Microsoft Windows State Repository Service Race Condition Use-After-Free Information Disclosure Vulnerability
2020-09-1000:00:00
Anonymous
www.zerodayinitiative.com
16
0.001 Low
EPSS
Percentile
36.9%
This vulnerability allows local attackers to disclose sensitive information on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the State Repository Service. The issue results from the lack of proper locking when performing operations on an object, which can cause a pointer to be reused after it has been freed. An attacker can leverage this in conjunction with other vulnerabilities to escalate privileges and execute code in the context of SYSTEM.
Related
cnvd
cnvd
cvelist
cvelist
nvd
nvd
CVE-2020-0914
2020-09-11 17:15:14
prion
prion
Information disclosure
2020-09-11 17:15:00
cve
cve
CVE-2020-0914
2020-09-11 17:15:14
mscve
mscve
Windows State Repository Service Information Disclosure Vulnerability
2020-09-08 07:00:00
openvas
openvas
Microsoft Windows Multiple Vulnerabilities (KB4577049)
2020-09-09 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB4577032)
2020-09-09 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB4577015)
2020-09-09 00:00:00
nessus
nessus
KB4577049: Windows 10 September 2020 Security Update
2020-09-08 00:00:00
KB4577041: Windows 10 Version 1709 September 2020 Security Update
2020-09-08 00:00:00
mskb
mskb
September 8, 2020âKB4577049 (OS Build 10240.18696)
2021-02-09 08:00:00
September 8, 2020âKB4577041 (OS Build 16299.2107)
2020-10-13 07:00:00
September 8, 2020âKB4577032 (OS Build 17134.1726)
2021-02-09 08:00:00
kaspersky
kaspersky
KLA11951 Multiple vulnerabilities in Microsoft Windows
2020-09-08 00:00:00
avleonov
avleonov