CVE-2021-1697 – Windows InstallService Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2021-1697
Windows InstallService Elevation of Privilege Vulnerability Una Vulnerabilidad de Elevación de Privilegios de Windows InstallService This vulnerability allows local attackers to create a denial-of-service condition on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the Microsoft Store Install Service. By creating a directory junction, an attacker can abuse the service to delete a file. An attacker can leverage this vulnerability to create a denial-of-service condition on the system. • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-1697 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-1697 • CWE-269: Improper Privilege Management •
CVE-2021-1695 – Windows Print Spooler Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2021-1695
Windows Print Spooler Elevation of Privilege Vulnerability Una Vulnerabilidad de Elevación de Privilegios en Windows Print Spooler This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the Print Spooler service. By creating a directory junction, an attacker can abuse the Print Spooler service to create a file in an arbitrary location. An attacker can leverage this vulnerability to escalate privileges and execute code in the context of SYSTEM. • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-1695 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-1695 • CWE-269: Improper Privilege Management •
CVE-2021-1694 – Windows Update Stack Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2021-1694
Windows Update Stack Elevation of Privilege Vulnerability Una Vulnerabilidad de Elevación de Privilegios de Windows Update Stack • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-1694 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-1694 • CWE-269: Improper Privilege Management •
CVE-2021-1693 – Windows CSC Service Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2021-1693
Windows CSC Service Elevation of Privilege Vulnerability Una Vulnerabilidad de Elevación de Privilegios del Windows CSC Service. Este ID de CVE es diferente de CVE-2021-1652, CVE-2021-1653, CVE-2021-1654, CVE-2021-1655, CVE-2021-1659, CVE-2021-1688 • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-1693 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-1693 • CWE-269: Improper Privilege Management •
CVE-2021-1691 – Windows Hyper-V Denial of Service Vulnerability
https://notcve.org/view.php?id=CVE-2021-1691
Windows Hyper-V Denial of Service Vulnerability Una Vulnerabilidad de Denegación de Servicio de Hyper-V. Este ID de CVE es diferente de CVE-2021-1692 • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-1691 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-1691 •