Lucene search

K
zdiAbdelhamid Naceri (halov)ZDI-21-964
HistoryAug 11, 2021 - 12:00 a.m.

Microsoft Windows Event Tracing Directory Junction Denial-of-Service Vulnerability

2021-08-1100:00:00
Abdelhamid Naceri (halov)
www.zerodayinitiative.com
13

EPSS

0.001

Percentile

18.3%

This vulnerability allows local attackers to create a denial-of-service condition on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the implementation of Event Tracing for Windows. By creating a directory junction, an attacker can abuse Event Tracing to overwrite a file. An attacker can leverage this vulnerability to create a denial-of-service condition on the system.