A vulnerability in the Common Log File System (CLFS) driver allows a local user to gain elevated privileges on Windows 11

ssd-disclosure.com

cross-posted to:
cybersecurity

A vulnerability in the Common Log File System (CLFS) driver allows a local user to gain elevated privileges on Windows 11

ssd-disclosure.com

@bOtM to Technical Information Security Content & Discussion • 1 month ago

cross-posted to:
cybersecurity

SSD Advisory - Common Log File System (CLFS) driver PE - SSD Secure Disclosure

ssd-disclosure.com

Summary A vulnerability in the Common Log File System (CLFS) driver allows a local user to gain elevated privileges on Windows 11. The vulnerability is in the CClfsBaseFilePersisted::WriteMetadataBlock function, and is due to return value of ClfsDecodeBlock not being checked, it is possible to corrupt the data of internal CLFS structure, allowing attackers to escalate … SSD Advisory – Common Log File System (CLFS) driver PE Read More »

The original post: /r/netsec by /u/SSDisclosure on 2024-10-25 09:23:05.

You must log in or register to comment.

Chat