Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2020-1337

An elevation of privilege vulnerability exists when the Windows Print Spooler service improperly allows arbitrary writing to the file system. An attacker who successfully exploited this vulnerability could run arbitrary code with elevated system privileges. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. To exploit this vulnerability, an attacker would have to log on to an affected system and run a specially crafted script or application. The update addresses the vulnerability by correcting how the Windows Print Spooler Component writes to the file system.

Published

2020-08-17T19:15:14.210

Last Modified

2024-11-21T05:10:16.580

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 7.8 (HIGH)

CVSSv2 Vector

AV:L/AC:L/Au:N/C:C/I:C/A:C

Access Vector: LOCAL
Access Complexity: LOW
Authentication: NONE
Confidentiality Impact: COMPLETE
Integrity Impact: COMPLETE
Availability Impact: COMPLETE

Exploitability Score

3.9

Impact Score

10.0

Weaknesses

Type: Primary
CWE-367

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Operating System	microsoft	windows_10	-	Yes
Operating System	microsoft	windows_10	1607	Yes
Operating System	microsoft	windows_10	1709	Yes
Operating System	microsoft	windows_10	1803	Yes
Operating System	microsoft	windows_10	1809	Yes
Operating System	microsoft	windows_10	1903	Yes
Operating System	microsoft	windows_10	1909	Yes
Operating System	microsoft	windows_10	2004	Yes
Operating System	microsoft	windows_7	sp1	Yes
Operating System	microsoft	windows_8.1	-	Yes
Operating System	microsoft	windows_rt_8.1	-	Yes
Operating System	microsoft	windows_server_2008	-	Yes
Operating System	microsoft	windows_server_2008	r2	Yes
Operating System	microsoft	windows_server_2012	-	Yes
Operating System	microsoft	windows_server_2012	r2	Yes
Operating System	microsoft	windows_server_2016	-	Yes
Operating System	microsoft	windows_server_2016	1903	Yes
Operating System	microsoft	windows_server_2016	1909	Yes
Operating System	microsoft	windows_server_2016	2004	Yes
Operating System	microsoft	windows_server_2019	-	Yes

References

http://packetstormsecurity.com/files/160028/Microsoft-Windows-Local-Spooler-Bypass.html Exploit, Third Party Advisory, VDB Entry ([email protected])
http://packetstormsecurity.com/files/160993/Microsoft-Spooler-Local-Privilege-Elevation.html Exploit, Third Party Advisory, VDB Entry ([email protected])
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1337 Patch, Vendor Advisory ([email protected])
http://packetstormsecurity.com/files/160028/Microsoft-Windows-Local-Spooler-Bypass.html Exploit, Third Party Advisory, VDB Entry (af854a3a-2127-422b-91ae-364da2661108)
http://packetstormsecurity.com/files/160993/Microsoft-Spooler-Local-Privilege-Elevation.html Exploit, Third Party Advisory, VDB Entry (af854a3a-2127-422b-91ae-364da2661108)
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1337 Patch, Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)