PT-2025-6336 · Microsoft · Windows Ancillary Function Driver For Winsock+1
Published
2025-02-11
·
Updated
2025-07-28
·
CVE-2025-21418
CVSS v3.1
7.8
High
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Windows Ancillary Function Driver for WinSock (affected versions not specified)
Description
The issue is an elevation-of-privilege vulnerability that allows attackers to gain SYSTEM privileges, giving them full control over a machine. This vulnerability is related to a heap-based buffer overflow in the Windows Ancillary Function Driver for WinSock. The vulnerability has been exploited in the wild, and it is estimated that millions of devices worldwide are threatened. Attackers can exploit this vulnerability by sending specially crafted requests, potentially leading to full system compromise, data destruction, or unauthorized access.
Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
LPE
Heap Based Buffer Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Windows
Windows Ancillary Function Driver For Winsock