Endpoint Vulnerability

Microsoft: Windows Default Folder Tampering Vulnerability

Description

A tampering vulnerability exists in Microsoft Windows that could allow an authenticated attacker to modify the C:\\Users\\DEFAULT folder structure. An attacker who successfully exploited this vulnerability could potentially modify files and folders that are synchronized the first time when a user logs in locally to the computer.

Affected Products

Windows 10,Windows Server 2016

References

CVE-2017-0295,