CVE-2018-10172

CVSS v3.1

8.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions 7-Zip versions prior to 18.02

Description The issue is related to the implementation of the "Large memory pages" option in 7-Zip, which uses the LsaAddAccountRights function to add the SeLockMemoryPrivilege privilege to the user's account. This can potentially allow attackers to bypass intended access restrictions by utilizing this privilege in a sandboxed process. The exploitation of this issue may enable an attacker to circumvent existing access limitations using the SeLockMemoryPrivilege privilege.

Recommendations For 7-Zip versions prior to 18.02, consider disabling the "Large memory pages" option as a temporary workaround to minimize the risk of exploitation. Restrict access to the LsaAddAccountRights function to prevent potential misuse of the SeLockMemoryPrivilege privilege.

Exploit

Fix

Improper Privilege Management

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-264CWE-269

Related Identifiers

BDU:2018-00773

CVE-2018-10172

Affected Products

7-Zip

CVE-2018-10172

Weakness Enumeration

Related Identifiers

Affected Products

References · 5