Fortinet Discovers Microsoft Windows Kernel Integer Overflow Vulnerability
Fortinet's FortiGuard Labs has discovered an integer overflow vulnerability within the Ntoskrnl component of Microsoft Windows.
Ntoskrnl (short for Windows NT operating system kernel) provides the kernel and executive layers of the Windows NT kernel space, and is responsible for various system services such as hardware virtualization, process and memory management, thus making it a fundamental part of the system.
The integer overflow vulnerability can be triggered by loading malicious registry hive files. Successful exploitation of this issue could lead to local privilege elevation.
Users should apply the solution provided by Microsoft.
Following products are affected by this vulnerability.
Windows RT 8.1
Windows Server 2008
Windows Server 2008 R2
Windows Server 2012
Windows Server 2012 R2
This vulnerability was discovered by Honggang Ren of Fortinet's FortiGuard Labs.