Lucene search
Abdelhamid NaceriZDI-22-019HistoryJan 06, 2022 - 12:00 a.m.
Microsoft Windows Remote Access Connection Manager Service Link Following Denial-of-Service Vulnerability
2022-01-0600:00:00
Abdelhamid Naceri
www.zerodayinitiative.com
15
0.001 Low
EPSS
Percentile
27.2%
This vulnerability allows local attackers to create a denial-of-service condition on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the Remote Access Connection Manager service. By creating a directory junction, an attacker can abuse the service to create a directory. An attacker can leverage this vulnerability to create a denial-of-service condition on the system.
Related
cvelist
cvelist
CVE-2021-43238 Windows Remote Access Elevation of Privilege Vulnerability
2021-12-15 14:15:21
nvd
nvd
CVE-2021-43238
2021-12-15 15:15:10
mscve
mscve
Windows Remote Access Elevation of Privilege Vulnerability
2021-12-14 08:00:00
cve
cve
CVE-2021-43238
2021-12-15 15:15:10
prion
prion
Privilege escalation
2021-12-15 15:15:00
nessus
nessus
KB5008271: Windows Server 2008 Security Update (December 2021)
2021-12-14 00:00:00
mskb
mskb
December 14, 2021âKB5008271 (Security-only update)
2021-12-14 08:00:00
December 14, 2021âKB5008274 (Monthly Rollup)
2021-12-14 08:00:00
December 14, 2021âKB5008244 (Monthly Rollup)
2021-12-14 08:00:00
kaspersky
kaspersky
KLA12388 Multiple vulnerabilities in Microsoft Products (ESU)
2021-12-14 00:00:00
KLA12387 Multiple vulnerabilities in Microsoft Windows
2021-12-14 00:00:00
openvas
openvas
Microsoft Windows Multiple Vulnerabilities (KB5008263)
2021-12-15 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB5008230)
2021-12-15 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB5008244)
2021-12-15 00:00:00
rapid7blog
rapid7blog
Patch Tuesday - December 2021
2021-12-14 22:12:53