PT-2017-12241 · Microsoft · Windows Server 2012 R2+5

Published

2017-10-10

Updated

2019-10-03

CVE-2017-11783

CVSS v3.1

7.0

High

Vector

AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Microsoft Windows versions 8.1, 10 (Gold, 1511, 1607, 1703), Windows Server versions 2012 R2, 2016, and Windows RT 8.1

Description The issue allows an elevation of privilege due to the way the system handles calls to Advanced Local Procedure Call (ALPC). This enables attackers to affect the system.

Recommendations For Microsoft Windows versions 8.1, 10, Windows Server 2012 R2, 2016, and Windows RT 8.1, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2017-11783

Affected Products

Windows

Windows 10

Windows 8.1

Windows Rt 8.1

Windows Server 2012 R2

Windows Server 2016

PT-2017-12241 · Microsoft · Windows Server 2012 R2+5

CVE-2017-11783

Related Identifiers

Affected Products

References · 8