CVE-2018-1038

Published: Apr 2, 2018Modified: Nov 21, 2024

7.8

Vector

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Exploitability: 1.8 / Impact: 5.9

Source: NVD

Description

The Windows kernel in Windows 7 SP1 and Windows Server 2008 R2 SP1 allows an elevation of privilege vulnerability due to the way it handles objects in memory, aka "Windows Kernel Elevation of Privilege Vulnerability."

Affected (2)

Products: Microsoft: Windows 7, Windows Server 2008

Microsoft

2 products

Windows 7

Windows Server 2008

Configuration A

2 vulnerable

Vulnerable Software	Affected Versions
Microsoft Windows 7	All versions
Microsoft Windows Server 2008	Version r2 sp1

References (10)

http://www.securityfocus.com/bid/103549

Source: secure@microsoft.com

Third Party AdvisoryVDB Entry

http://www.securitytracker.com/id/1040632

Source: secure@microsoft.com

Third Party AdvisoryVDB Entry

https://blog.xpnsec.com/total-meltdown-cve-2018-1038/

Source: secure@microsoft.com

ExploitThird Party Advisory

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-1038

Source: secure@microsoft.com

PatchVendor Advisory

https://www.exploit-db.com/exploits/44581/

Source: secure@microsoft.com

ExploitThird Party AdvisoryVDB Entry

http://www.securityfocus.com/bid/103549