Shulou(Shulou.com)05/31 Report--

How to analyze Windows 0-day vulnerabilities, I believe that many inexperienced people are at a loss about this. Therefore, this paper summarizes the causes and solutions of the problem. Through this article, I hope you can solve this problem.

Trend Micro's ZDI team recently released information about several unfixed security vulnerabilities in Microsoft Windows.

Both CVE-2020-0916 and CVE-2020-0915 have a CVSS score of 7.0.These three vulnerabilities can be exploited to elevate privileges on affected systems. CVE-2020-0915 can also lead to information disclosure.

These vulnerabilities lie in the user-mode printer driver host process splwow64.exe due to the program's failure to properly validate input submitted by the user before backreferencing it.

To exploit these vulnerabilities, an attacker first needs to gain low access to the system. Successful exploitation of these vulnerabilities could allow an attacker to execute code in the context of the current user.

There is also a security vulnerability in the function of processing WLAN connection profile, which has no CVE number and a CVSS score of 7.0. an attacker can take advantage of this vulnerability to escalate privileges.

ZDI said that by creating a malicious configuration file, an attacker could obtain the credentials of the computer account. An attacker can exploit this vulnerability to escalate privileges and execute code in the context of the administrator.

After reading the above, have you mastered how to analyze Windows 0-day vulnerabilities? If you want to learn more skills or want to know more about it, you are welcome to follow the industry information channel, thank you for reading!

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.