Lucene search
JeongOh Kyea(@kkokkokye) of THEORIZDI-20-281HistoryMar 12, 2020 - 12:00 a.m.
Microsoft Windows AppX Deployment Service Hard Link Escalation of Privilege Vulnerability
2020-03-1200:00:00
JeongOh Kyea(@kkokkokye) of THEORI
www.zerodayinitiative.com
13
EPSS
0.001
Percentile
41.7%
This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the AppX Deployment Service. By creating a hard link, an attacker can abuse the service to overwrite the contents of a chosen file. An attacker can leverage this vulnerability to escalate privileges and execute code in the context of SYSTEM.
Related
mscve
mscve
Windows Hard Link Elevation of Privilege Vulnerability
2020-03-10 07:00:00
prion
prion
Privilege escalation
2020-03-12 16:15:00
Privilege escalation
2020-03-12 16:15:00
Privilege escalation
2020-03-12 16:15:00
cvelist
cvelist
cve
cve
nvd
nvd
mskb
mskb
March 10, 2020âKB4541505 (Security-only update)
2020-03-10 07:00:00
March 10, 2020âKB4541509 (Monthly Rollup)
2020-03-10 07:00:00
March 10, 2020âKB4540693 (OS Build 10240.18519)
2020-03-10 07:00:00
nessus
nessus
KB4541505: Windows 8.1 and Windows Server 2012 R2 March 2020 Security Update
2020-03-10 00:00:00
KB4540693: Windows 10 March 2020 Security Update
2020-03-10 00:00:00
openvas
openvas
Microsoft Windows Multiple Vulnerabilities (KB4541509)
2020-03-11 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB4540693)
2020-03-11 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB4540681)
2020-03-11 00:00:00
kaspersky
kaspersky
KLA11689 Multiple vulnerabilities in Microsoft Windows
2020-03-10 00:00:00