Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
zdiChenNan and RanchoIce of Tencent ZhanluLabZDI-18-951
HistoryAug 14, 2018 - 12:00 a.m.

Microsoft Windows BasicRender Driver Race Condition Privilege Escalation Vulnerability

2018-08-1400:00:00
ChenNan and RanchoIce of Tencent ZhanluLab
www.zerodayinitiative.com
15

EPSS

0.001

Percentile

30.1%

JSON

This vulnerability allows local attackers to escalate privileges on vulnerable installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within processing of the D3DKMTMarkDeviceAsError API and the D3DKMTSubmitCommand API by the BasicRender driver. Shared resources are not properly secured, which can result in a memory corruption condition. An attacker can leverage this vulnerability to escalate privileges to SYSTEM.

Related

zdi 1
checkpoint_advisories 1
mscve 1
symantec 1
prion 4
attackerkb 3
cvelist 4
cve 4
nvd 4
kaspersky 1
mskb 5
openvas 5
nessus 5
talosblog 1
zdi
zdi
Microsoft Windows D3DKMTSubmitCommand BasicRender Driver Out-of-bounds Memory Access Privilege Escalation Vulnerability
2018-08-14 00:00:00
checkpoint_advisories
checkpoint_advisories
Microsoft DirectX Graphics Kernel Elevation of Privilege (CVE-2018-8401)
2018-08-14 00:00:00
mscve
mscve
DirectX Graphics Kernel Elevation of Privilege Vulnerability
2018-08-14 07:00:00
symantec
symantec
Microsoft Windows DirectX Graphics Kernel CVE-2018-8401 Local Privilege Escalation Vulnerability
2018-08-14 00:00:00
prion
prion
Privilege escalation
2018-08-15 17:29:00
Privilege escalation
2018-08-15 17:29:00
Privilege escalation
2018-08-15 17:29:00
attackerkb
attackerkb
CVE-2018-8406
2018-08-15 00:00:00
CVE-2018-8401
2018-08-15 00:00:00
CVE-2018-8405
2018-08-15 00:00:00
cvelist
cvelist
CVE-2018-8400
2018-08-15 17:00:00
CVE-2018-8406
2018-08-15 17:00:00
CVE-2018-8405
2018-08-15 17:00:00
cve
cve
CVE-2018-8406
2018-08-15 17:29:10
CVE-2018-8401
2018-08-15 17:29:09
CVE-2018-8400
2018-08-15 17:29:09
nvd
nvd
CVE-2018-8405
2018-08-15 17:29:10
CVE-2018-8406
2018-08-15 17:29:10
CVE-2018-8400
2018-08-15 17:29:09
kaspersky
kaspersky
KLA11309 Multiple vulnerabilities in Microsoft Windows
2018-08-14 00:00:00
mskb
mskb
August 14, 2018—KB4343892 (OS Build 10240.17946)
2018-08-14 07:00:00
August 14, 2018—KB4343887 (OS Build 14393.2430)
2018-08-14 07:00:00
August 14, 2018—KB4343885 (OS Build 15063.1266)
2018-08-14 07:00:00
openvas
openvas
Microsoft Windows Multiple Vulnerabilities (KB4343892)
2018-08-15 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB4343887)
2018-08-15 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB4343885)
2018-08-15 00:00:00
nessus
nessus
KB4343892: Windows 10 August 2018 Security Update (Foreshadow)
2018-08-14 00:00:00
KB4343887: Windows 10 Version 1607 and Windows Server 2016 August 2018 Security Update (Foreshadow)
2018-08-14 00:00:00
KB4343885: Windows 10 Version 1703 August 2018 Security Update (Foreshadow)
2018-08-14 00:00:00
talosblog
talosblog
Microsoft Tuesday August 2018
2018-08-14 11:26:00

EPSS

0.001

Percentile

30.1%

JSON
Related for ZDI-18-951
zdi1checkpoint_advisories1mscve1symantec1prion4attackerkb3cvelist4cve4nvd4kaspersky1mskb5openvas5nessus5talosblog1