Microsoft Windows CVE-2017-8563 Remote Privilege Escalation Vulnerability

by CIRT Team

Description: Microsoft Windows 7 SP1, Windows Server 2008 SP2 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an elevation of privilege vulnerability due to Kerberos falling back to NT LAN Manager (NTLM) Authentication Protocol as the default authentication protocol, aka “Windows Elevation of Privilege Vulnerability”.

Impact: An attackers may exploit this issue to gain elevated privileges.

Mitigation: Updates are available. Please check specific vendor advisory for more information.

Reference URL’s:

• http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=2017-8563
• http://www.securityfocus.com/bid/99402/info
• https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8563

CIRT Team

Recommended Posts

Active Exploitation of Critical F5 BIG – IP Vulnerability (CVE–2023-46747) Uncovered in Bangladesh

06 Nov 2024 - Security Advisories & Alerts

Emerging Threat_Stealer Malware (Lumma C2) Campaign with fake CAPTCHA pages

08 Oct 2024 - Security Advisories & Alerts

Detection of Fog Ransomware Footprint in Cyber Space of Bangladesh

12 Sep 2024 - Security Advisories & Alerts