CVE-2017-0165

An elevation of privilege vulnerability exists when Microsoft Windows running on Windows 10, Windows 10 1511, Windows 8.1, Windows RT 8.1, and Windows Server 2012 R2 fails to properly sanitize handles in memory, aka "Windows Elevation of Privilege Vulnerability."

Published: Apr 12, 2017
Updated: Apr 13, 2023
CVE: CVE-2017-0165
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 7.8
AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CVSS v2:

Severity: High
Score: 7.2
AV:L/AC:L/Au:N/C:C/I:C/A:C

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
microsoft / windows_rt_8.1	-	-
microsoft / windows_server_2012	r2	r2.x
microsoft / windows_10	1511	1511.x
microsoft / windows_8.1	-	-
microsoft / windows_10	-	-

http://www.securityfocus.com/bid/97467
http://www.securitytracker.com/id/1038239
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-0165
https://www.exploit-db.com/exploits/41901/

Vulnerability Database

289,599

CVE-2017-0165