Endpoint Vulnerability

Microsoft PowerShell Remote Code Execution Vulnerability

Description

A remote code execution vulnerability exists when PowerShell improperly handles specially crafted files. An attacker who successfully exploited this vulnerability could execute malicious code on a vulnerable system. To exploit the vulnerability, an attacker must send a specially crafted file to a vulnerable system. The security update fixes the vulnerability by ensuring PowerShell properly handles files.

Affected Products

Windows RT 8.1,Microsoft.PowerShell.Archive 1.2.2.0,Windows Server, version 1709 (Server Core Installation),Windows Server 2016,PowerShell Core 6.1,Windows Server, version 1803 (Server Core Installation),Windows Server 2012,Windows 8,Windows 7,Windows 10

References

CVE-2018-8256,