Microsoft Windows task scheduler zero-day escalation vulnerability

Posted: 28 Aug 2018

Overview

Microsoft Windows task scheduler contains a local privilege escalation vulnerability in the Advanced Local Procedure Call (ALPC) interface, which can allow a local user to obtain SYSTEM privileges.

Description

Microsoft Windows task scheduler contains a vulnerability in the handling of ALPC, which can allow a local user to gain SYSTEM privileges. We have confirmed that the public exploit code works on 64-bit Windows 10 and Windows Server 2016 systems. Compatibility with other Windows versions may be possible with modification of the publicly-available exploit source code.

Impact

A local user may be able to gain elevated (SYSTEM) privileges.

Solution

The CERT/CC is currently unaware of a practical solution to this problem.

Vendor Information (Learn More)

Vendor Status Date Notified Date Updated

Microsoft Affected 27 Aug 2018 27 Aug 2018

Read more:

https://www.kb.cert.org/vuls/id/906424
https://www.theregister.co.uk/2018/0...espan_twitter/

Vendor	Status	Date Notified	Date Updated
Microsoft	Affected	27 Aug 2018	27 Aug 2018

Posted By: Brink
28 Aug 2018

Superfly

Posts : 3,453

New 28 Aug 2018 #1

Yep.... found that out here: Windows 10 April 2018 Update now available Monday, April 30 - Page 73 - Windows 10 Forums

Superfly said:

problem is, as System has higher authority it overides Admin and updates the registry without UAC prompt (which is not supposed to happen .. a big security hole IMHO)
My Computer
- My Computer
Quote

Subscribe to Thread

Related Discussions

Our Sites

Site Links

About Us

Windows 10 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 10" and related materials are trademarks of Microsoft Corp.

© Designer Media Ltd
All times are GMT -5. The time now is 21:42.

Find Us