CVE-2017-0213
CVE-2017-0213
In short
A flaw in Windows COM (Component Object Model) system allows an attacker to run a specially crafted application to gain higher privileges on the system. This is dangerous because it lets attackers bypass security restrictions and take control of a computer.
Technical detail
The Windows COM Aggregate Marshaler contains an elevation of privilege vulnerability that can be exploited when a user executes a malicious application. The attack requires local code execution but no authentication, allowing privilege escalation from a lower-privileged context to SYSTEM or administrator level on affected Windows versions.
Summary generated and translated by AI from the official description.
Windows COM Aggregate Marshaler in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allows an elevation privilege vulnerability when an attacker runs a specially crafted application, aka "Windows COM Elevation of Privilege Vulnerability". This CVE ID is unique from CVE-2017-0214.
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
Affected products
Microsoft Corporation · Windows COMpublic PoCs found — 9
githubgithub.com/zcgonvh/CVE-2017-0213★ 58githubgithub.com/eonrickity/CVE-2017-0213★ 13githubgithub.com/jbooz1/CVE-2017-0213★ 1githubgithub.com/likekabin/CVE-2017-0213★ 0githubgithub.com/billa3283/CVE-2017-0213★ 0githubgithub.com/shaheemirza/CVE-2017-0213-★ 0githubgithub.com/Anonymous-Family/CVE-2017-0213★ 0exploitdbwww.exploit-db.com/exploits/42020unverifiedcve_referencewww.exploit-db.com/exploits/42020/unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →