Lucene search
Iván Almuiña from Hacking Corporation SàrlZDI-24-294HistoryMar 13, 2024 - 12:00 a.m.
Microsoft Office Performance Monitor Link Following Local Privilege Escalation Vulnerability
2024-03-1300:00:00
Iván Almuiña from Hacking Corporation Sàrl
www.zerodayinitiative.com
15
microsoft office
privilege escalation
vulnerability
local attackers
execute code
symbolic link
arbitrary files
system context
This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Office. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the Office Performance Monitor executable. By creating a symbolic link, an attacker can abuse the process to delete arbitrary files. An attacker can leverage this vulnerability to escalate privileges and execute arbitrary code in the context of SYSTEM.
Related
vulnrichment
vulnrichment
CVE-2024-26199 Microsoft Office Elevation of Privilege Vulnerability
2024-03-12 16:57:54
nessus
nessus
Security Updates for Microsoft Office Products C2R (March 2024)
2024-03-29 00:00:00
cve
cve
CVE-2024-26199
2024-03-12 17:15:58
mscve
mscve
Microsoft Office Elevation of Privilege Vulnerability
2024-03-12 07:00:00
cvelist
cvelist
CVE-2024-26199 Microsoft Office Elevation of Privilege Vulnerability
2024-03-12 16:57:54
nvd
nvd
CVE-2024-26199
2024-03-12 17:15:58
openvas
openvas
prion
prion
Privilege escalation
2024-03-12 17:15:00
kaspersky
kaspersky
KLA65127 Multiple vulnerabilities in Microsoft Office
2024-03-12 00:00:00
rapid7blog
rapid7blog
Patch Tuesday - March 2024
2024-03-12 19:47:44