Endpoint Vulnerability

LDAP Elevation of Privilege Vulnerability

Description

An elevation of privilege vulnerability exists when LDAP request buffer lengths are improperly calculated. In a remote attack scenario, an attacker could exploit this vulnerability by running a specially crafted application to send malicious traffic to a Domain Controller. An attacker who successfully exploited this vulnerability could run processes in an elevated context.

Affected Products

Windows 10,Windows 7,Windows 8,Windows RT 8.1,Windows Server 2008,Windows Server 2012,Windows Server 2016,Windows Vista Service Pack 2,Windows Vista x64 Edition Service Pack 2

References

CVE-2017-0166,