Published: 04/01/2018 Updated: 03/10/2019

CVSS v2 Base Score: 4.4 | Impact Score: 6.4 | Exploitability Score: 3.4

CVSS v3 Base Score: 7 | Impact Score: 5.9 | Exploitability Score: 1

VMScore: 445

Vector: AV:L/AC:M/Au:N/C:P/I:P/A:P

Windows Subsystem for Linux in Windows 10 version 1703, Windows 10 version 1709, and Windows Server, version 1709 allows an elevation of privilege vulnerability due to the way objects are handled in memory, aka "Windows Subsystem for Linux Elevation of Privilege Vulnerability".

Vulnerable Product	Search on Vulmon	Subscribe to Product
microsoft windows 10 1709
microsoft windows 10 1703
microsoft windows server 2016 1709

#define _GNU_SOURCE #include <errnoh> #include <stdioh> #include <stdlibh> #include <stringh> #include <unistdh> #include <fcntlh> #include <sys/socketh> #include <sys/stath> #include <sys/waith> #include <sys/typesh> #include <sys/mmanh> #include <unistdh> #includ ...

Hardcore corruption of my execve() vulnerability in WSL

execve_exploit This repo contains my slides and full exploit for my execve() vulnerability in WSL, CVE-2018-0743 A detailed explanation of the vulnerability and exploit was presented at Bluehat IL 2018 Slides are in the repo, video here The patch available here Notes: All the offsets, values and constants are based on Win10 16179 (10016179) These can easily be changed to

NVD-CWE-noinfo https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-0743 https://twitter.com/AmarSaar/status/948892321755598848 http://www.securitytracker.com/id/1040094 http://www.securityfocus.com/bid/102350 https://github.com/saaramar/execve_exploit https://www.exploit-db.com/exploits/43962/https://nvd.nist.gov https://github.com/saaramar/execve_exploit https://www.exploit-db.com/exploits/43962/

CVE-2018-0743

Vulnerability Summary

Vulnerability Trend

Exploits

Github Repositories

References

Vulmon Search

About

Products

Connect