Microsoft Windows Subsystem for Linux CVE-2018-8441 Local Privilege Escalation Vulnerability
BID:105271
CVE-2018-8441 |Info
Microsoft Windows Subsystem for Linux CVE-2018-8441 Local Privilege Escalation Vulnerability
| Bugtraq ID: | 105271 |
| Class: | Design Error |
| CVE: |
CVE-2018-8441 |
| Remote: | No |
| Local: | Yes |
| Published: | Sep 11 2018 12:00AM |
| Updated: | Sep 11 2018 12:00AM |
| Credit: | Anthony LAOU HINE TSUEI of Tencent Keen Security Lab. |
| Vulnerable: |
Microsoft Windows Server 1803 0 Microsoft Windows 10 Version 1803 for x64-based Systems 0 Microsoft Windows 10 Version 1803 for 32-bit Systems 0 |
| Not Vulnerable: | |
Discussion
Microsoft Windows Subsystem for Linux CVE-2018-8441 Local Privilege Escalation Vulnerability
Microsoft Windows is prone to a local privilege-escalation vulnerability.
An attacker can exploit this issue to execute arbitrary code with elevated privileges.
Microsoft Windows is prone to a local privilege-escalation vulnerability.
An attacker can exploit this issue to execute arbitrary code with elevated privileges.
Exploit / POC
Microsoft Windows Subsystem for Linux CVE-2018-8441 Local Privilege Escalation Vulnerability
Currently, we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Currently, we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution / Fix
Microsoft Windows Subsystem for Linux CVE-2018-8441 Local Privilege Escalation Vulnerability
Solution:
Updates are available. Please see the references or vendor advisory for more information.
Solution:
Updates are available. Please see the references or vendor advisory for more information.
References
Microsoft Windows Subsystem for Linux CVE-2018-8441 Local Privilege Escalation Vulnerability
References:
References:
- Microsoft Homepage (Microsoft)
- CVE-2018-8441 | Windows Subsystem for Linux Elevation of Privilege Vulnerability (Microsoft)