CVE-2017-0103

Name of the Vulnerable Software and Affected Versions Microsoft Windows Vista SP2 Microsoft Windows Server 2008 SP2 and R2 SP1 Microsoft Windows 7 SP1 Microsoft Windows Server 2012

Description The issue is related to the mishandling of registry objects in memory by the kernel API, allowing local users to gain privileges via a crafted application. This is due to a buffer overflow operation in memory. The exploitation of this issue may allow an attacker to elevate their privileges.

Recommendations For Microsoft Windows Vista SP2, update to a newer version that includes the fix for this issue. For Microsoft Windows Server 2008 SP2 and R2 SP1, update to a newer version that includes the fix for this issue. For Microsoft Windows 7 SP1, update to a newer version that includes the fix for this issue. For Microsoft Windows Server 2012, update to a newer version that includes the fix for this issue.