← back
CVE-2017-3141

Windows service and uninstall paths are not quoted when BIND is installed

CVSS 7.2 HIGHEPSS 1.4%
The BIND installer on Windows uses an unquoted service path which can enable a local user to achieve privilege escalation if the host file system permissions allow this. Affects BIND 9.2.6-P2->9.2.9, 9.3.2-P1->9.3.6, 9.4.0->9.8.8, 9.9.0->9.9.10, 9.10.0->9.10.5, 9.11.0->9.11.1, 9.9.3-S1->9.9.10-S1, 9.10.5-S1.
CVSS:3.0/AV:L/AC:H/PR:H/UI:R/S:C/C:H/I:H/A:H
Affected products
ISC · BIND 9
public PoCs found2
cve_referencewww.exploit-db.com/exploits/42121/unverifiedexploitdbwww.exploit-db.com/exploits/42121unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://kb.isc.org/docs/aa-01496https://security.gentoo.org/glsa/201708-01https://security.netapp.com/advisory/ntap-20180926-0001/https://www.exploit-db.com/exploits/42121/http://www.securityfocus.com/bid/99089http://www.securitytracker.com/id/1038693