Lucene search
RanchoIce and ChenNan of Tencent ZhanluLabZDI-18-949HistoryAug 14, 2018 - 12:00 a.m.
Microsoft Windows D3DKMTSubmitCommand BasicRender Driver Out-of-bounds Memory Access Privilege Escalation Vulnerability
2018-08-1400:00:00
RanchoIce and ChenNan of Tencent ZhanluLab
www.zerodayinitiative.com
24
EPSS
0.001
Percentile
30.1%
This vulnerability allows local attackers to escalate privileges on vulnerable installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within processing of data from the D3DKMTSubmitCommand API by the BasicRender device driver. The issue results from the lack of proper validation of user-supplied data, which can result in a memory access past the end of an allocated buffer. An attacker can leverage this vulnerability to escalate privileges to SYSTEM.
Related
zdi
zdi
mscve
mscve
DirectX Graphics Kernel Elevation of Privilege Vulnerability
2018-08-14 07:00:00
symantec
symantec
checkpoint_advisories
checkpoint_advisories
Microsoft DirectX Graphics Kernel Elevation of Privilege (CVE-2018-8401)
2018-08-14 00:00:00
prion
prion
Privilege escalation
2018-08-15 17:29:00
Privilege escalation
2018-08-15 17:29:00
Privilege escalation
2018-08-15 17:29:00
attackerkb
attackerkb
cve
cve
cvelist
cvelist
nvd
nvd
kaspersky
kaspersky
KLA11309 Multiple vulnerabilities in Microsoft Windows
2018-08-14 00:00:00
mskb
mskb
August 14, 2018âKB4343892 (OS Build 10240.17946)
2018-08-14 07:00:00
August 14, 2018âKB4343887 (OS Build 14393.2430)
2018-08-14 07:00:00
August 14, 2018âKB4343897 (OS Build 16299.611)
2018-08-14 07:00:00
openvas
openvas
Microsoft Windows Multiple Vulnerabilities (KB4343892)
2018-08-15 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB4343887)
2018-08-15 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB4343909)
2018-08-15 00:00:00
nessus
nessus
talosblog
talosblog
Microsoft Tuesday August 2018
2018-08-14 11:26:00