Microsoft Windows Subsystem for Linux CVE-2018-8337 Local Security Bypass Vulnerability
BID:105250
CVE-2018-8337 |Info
Microsoft Windows Subsystem for Linux CVE-2018-8337 Local Security Bypass Vulnerability
| Bugtraq ID: | 105250 |
| Class: | Design Error |
| CVE: |
CVE-2018-8337 |
| Remote: | No |
| Local: | Yes |
| Published: | Sep 11 2018 12:00AM |
| Updated: | Sep 11 2018 12:00AM |
| Credit: | Michael Weber of NCC Group. |
| Vulnerable: |
Microsoft Windows Server 1709 0 Microsoft Windows 10 version 1709 for x64-based Systems 0 Microsoft Windows 10 version 1709 for 32-bit Systems 0 |
| Not Vulnerable: | |
Discussion
Microsoft Windows Subsystem for Linux CVE-2018-8337 Local Security Bypass Vulnerability
Microsoft Windows Subsystem for Linux is prone to a local security-bypass vulnerability.
An attacker can exploit this issue to bypass certain security restrictions and perform unauthorized actions. This may aid in further attacks.
Microsoft Windows Subsystem for Linux is prone to a local security-bypass vulnerability.
An attacker can exploit this issue to bypass certain security restrictions and perform unauthorized actions. This may aid in further attacks.
Exploit / POC
Microsoft Windows Subsystem for Linux CVE-2018-8337 Local Security Bypass Vulnerability
Currently, we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Currently, we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution / Fix
Microsoft Windows Subsystem for Linux CVE-2018-8337 Local Security Bypass Vulnerability
Solution:
Updates are available. Please see the references or vendor advisory for more information.
Solution:
Updates are available. Please see the references or vendor advisory for more information.
References
Microsoft Windows Subsystem for Linux CVE-2018-8337 Local Security Bypass Vulnerability
References:
References:
- Microsoft Homepage (Microsoft)
- CVE-2018-8337 | Windows Subsystem for Linux Security Feature Bypass Vulnerabilit (Microsoft)