Lucene search

K
zdiHeeChan Kim (@heegong123) of THEORIZDI-24-451
HistoryMay 14, 2024 - 12:00 a.m.

Microsoft Windows Search Service Link Following Local Privilege Escalation Vulnerability

2024-05-1400:00:00
HeeChan Kim (@heegong123) of THEORI
www.zerodayinitiative.com
6
microsoft
windows
search service
privilege escalation
local attackers
vulnerability
low-privileged code
symbolic link
arbitrary code
system context

6.8 Medium

AI Score

Confidence

High

0.0005 Low

EPSS

Percentile

16.3%

This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the Windows Search service. By creating a symbolic link, an attacker can abuse the service to delete a file. An attacker can leverage this vulnerability to escalate privileges and execute arbitrary code in the context of SYSTEM.

6.8 Medium

AI Score

Confidence

High

0.0005 Low

EPSS

Percentile

16.3%