Windows Installer in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and 1709, Windows Server 2016 and Windows Server, version 1709 allows an elevation of privilege vulnerability due to how input is sanitized, aka "Windows Installer Elevation of Privilege Vulnerability".
References
Link | Resource |
---|---|
http://www.securityfocus.com/bid/103236 | Third Party Advisory VDB Entry |
http://www.securitytracker.com/id/1040520 | VDB Entry Third Party Advisory |
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-0868 | Patch Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
No history.
Information
Published : 2018-03-14 17:29
Updated : 2024-02-04 19:46
NVD link : CVE-2018-0868
Mitre link : CVE-2018-0868
CVE.ORG link : CVE-2018-0868
JSON object : View
Products Affected
microsoft
- windows_server_2012
- windows_8.1
- windows_server_2016
- windows_7
- windows_server_2008
- windows_10
- windows_rt_8.1
CWE
CWE-20
Improper Input Validation