New Search

Windows Search Remote Code Execution Vulnerability - CVE-2018-8450

oval:org.cisecurity:def:5923

A remote code execution vulnerability exists when Windows Search handles objects in memory. An attacker who successfully exploited this vulnerability could take control of the affected system. An attacker could then install programs; view change or delete data; or create new accounts with full user rights. To exploit the vulnerability the attacker could send specially crafted messages to the Windows Search service. An attacker with access to a target computer could exploit this vulnerability to elevate privileges and take control of the computer. Additionally in an enterprise scenario a remote authenticated attacker could remotely trigger the vulnerability through an SMB connection and then take control of a target computer. The security update addresses the vulnerability by correcting how Windows Search handles objects in memory.

Family:
windows
Status:
ACCEPTED
Platform(s):
  • Microsoft Windows Server 2008 R2
  • Microsoft Windows Server 2012
  • Microsoft Windows Server 2008
  • Microsoft Windows 7
  • Microsoft Windows Server 2012 R2
  • Microsoft Windows 8.1
  • Microsoft Windows Server 2016
  • Microsoft Windows 10
Class:
vulnerability
Reference(s):
  • CVE-2018-8450
  • MSRC-CVE-2018-8450
  • KB4467106
  • KB4467700
  • KB4467678
  • KB4467703
  • KB4467680
  • KB4467691
  • KB4467696
  • KB4467686
Product(s):