PT-2018-1577 · Microsoft · Windows 10 Servers+3

Michael Weber

Publicado

2018-09-11

Atualizado

2019-10-03

CVE-2018-8337

CVSS v3.1

5.3

Média

Vetor

AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

Name of the Vulnerable Software and Affected Versions Windows Subsystem for Linux (affected versions not specified) Windows 10 Windows 10 Servers

Description A security feature bypass issue exists due to improper handling of case sensitivity in Windows Subsystem for Linux. This could allow an attacker to replace or delete arbitrary files using a specially crafted application. The estimated number of potentially affected devices worldwide is not available. There is no information about real-world incidents where this issue was exploited.

Recommendations For Windows 10 and Windows 10 Servers, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

Improperly Implemented Security Check for Standard

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-358CWE-178

Identificadores relacionados

BDU:2018-01134

CVE-2018-8337

Produtos afetados

Windows

Windows 10

Windows 10 Servers

Windows Subsystem For Linux

PT-2018-1577 · Microsoft · Windows 10 Servers+3

CVE-2018-8337

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 5