|CVSS SCORE||1.9, (AV:L/AC:M/Au:N/C:P/I:N/A:N)|
The specific flaw exists within the kernel-mode portion of the Windows SMB client. Crafted data in an SMB reply can trigger a read past the end of an allocated buffer. An attacker can leverage this in conjunction with other vulnerabilities to escalate privilege to the level of SYSTEM.
Microsoft has issued an update to correct this vulnerability. More details can be found at:
|CREDIT||Haikuo Xie of Baidu Security Lab