Intrusion PreventionMS.Windows.Desktop.Bridge.Privilege.Elevation
Description
This indicates an attack attempt to exploit an Privilege Escalation vulnerability in Microsoft Windows Desktop Bridge.
This vulnerability is due to improper management of virtual registry in the application. A remote attacker may be able to exploit this bug to escalate his/her privileges via a crafted file.
Affected Products
Windows Server 2016
Windows 10 Version 1607 for 32-bit Systems
Windows 10 Version 1607 for x64-based Systems
Windows Server 2016 (Server Core installation)
Windows 10 Version 1703 for 32-bit Systems
Windows 10 Version 1703 for x64-based Systems
Windows 10 Version 1709 for 32-bit Systems
Windows 10 Version 1709 for x64-based Systems
Windows Server, version 1709 (Server Core Installation)
Windows 10 Version 1803 for 32-bit Systems
Windows 10 Version 1803 for x64-based Systems
Windows Server, version 1803 (Server Core Installation)
Impact
Privilege Escalation: Remote attackers can leverage their privilege on the vulnerable systems
Recommended Actions
Apply the most recent upgrade or patch from the vendor
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8214
Coverage
| IPS (Regular DB) | |
| IPS (Extended DB) |
Version Updates
| Date | Version | Status | Detail |
|---|---|---|---|
| 2024-07-15 | 28.826 |
Modified
|
Name:MS. Windows. Desktop. Bridge. Privilege. Escalation:MS. Windows. Desktop. Bridge. Privilege. Elevation |
| ID | 46239 |
| Created | Jun 12, 2018 |
| Updated | Jul 11, 2024 |
| CVE ID | |
| Risk |
|
| Exploit Prediction Score | 37.36% |
| Default Action | drop |
| Active | |
| Affected OS | Windows |
| Affected App | Other |
| Profile Type | Permission/Privilege/Access Control |