Microsoft Windows Graphics CVE-2017-0155 Local Privilege Escalation Vulnerability

Microsoft Windows is prone to a local privilege-escalation vulnerability.

A local attacker can exploit this issue to execute arbitrary code within the context of the kernel privileges.

Information

Bugtraq ID: 97471
Class: Unknown
CVE: CVE-2017-0155

Remote: No
Local: Yes
Published: Apr 11 2017 12:00AM
Updated: Apr 12 2017 12:03AM
Credit: bear13oy of CloverSec Labs working with Trend Micro's Zero Day Initiative.
Vulnerable: Microsoft Windows Vista x64 Edition Service Pack 2 0
Microsoft Windows Vista Service Pack 2 0
Microsoft Windows Server 2008 R2 for x64-based Systems SP1
Microsoft Windows Server 2008 R2 for Itanium-based Systems SP1
Microsoft Windows Server 2008 for x64-based Systems SP2
Microsoft Windows Server 2008 for Itanium-based Systems SP2
Microsoft Windows Server 2008 for 32-bit Systems SP2
Microsoft Windows 7 for x64-based Systems SP1
Microsoft Windows 7 for 32-bit Systems SP1

Not Vulnerable:

References:

• Microsoft Homepage (Microsoft)
  
• Microsoft Windows Homepage (Microsoft )
  
• CVE-2017-0155 | Windows Graphics Elevation of Privilege Vulnerability (Microsoft)
  

Source: www.securityfocus.com