Vulnerability Name: | CCN-144252 | ||||||
Published: | 2018-05-31 | ||||||
Updated: | 2018-05-31 | ||||||
Summary: | Microsoft Windows could allow a local authenticated attacker to bypass security restrictions, caused by a file handler hijacking vulnerability in slui.exe. By hijacking a special key in the Registry under the Current User hive, an attacker could exploit this vulnerability to bypass UAC on Windows. | ||||||
CVSS v3 Severity: | 5.5 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N) 5.2 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N/E:F/RL:U/RC:R)
| ||||||
CVSS v2 Severity: | 4.6 Medium (CCN CVSS v2 Vector: AV:L/AC:L/Au:S/C:N/I:C/A:N)
| ||||||
Vulnerability Consequences: | Bypass Security | ||||||
References: | Source: XF Type: UNKNOWN microsoft-sluifile-sec-bypass(144252) Source: CCN Type: Packet Storm Security [05-31-2018] Windows UAC Protection Bypass (Via Slui File Handler Hijack) Source: EXPLOIT-DB Type: EXPLOIT Offensive Security Exploit Database [06-04-2018] Source: CCN Type: Microsoft Web site Windows 8-10 | ||||||
Vulnerable Configuration: | Configuration CCN 1: Denotes that component is vulnerable | ||||||
BACK |