|CVSS SCORE||7.2, (AV:L/AC:L/Au:N/C:C/I:C/A:C)|
The specific flaw exists within the handling of entries within the ElevationPolicy. The issue lies in the ability to call PresentationHost.exe to load a page outside of the sandbox. An attacker can leverage this vulnerability to execute code in the context of the current user at medium integrity.
03/13/2014 - ZDI disclosed to vendor at Pwn2Own
Set the Policy value for PresentationHost.exe to either 0 or 2 within the ElevationPolicy in the registry.
-- Vendor Response:
Microsoft has issued an update to correct this vulnerability. More details can be found at:
|CREDIT||Zeguang Zhao of Team509
Liang Chen of KeenTeam