To exploit the vulnerability, an attacker would first have to log on to the system, and then run a specially crafted application to take control over the affected system.
The security update addresses the vulnerability by correcting how CLFS handles objects in memory.
"> Windo ws,Common,Log,File,System,(CLFS),driver,improperly,handles,objects in,memory.,An,attacker,who,successfully,exploited,this,vulnerability could,run,processes,in,an,elevated,context.,To,exploit,the vulnerability,,an,attacker,would,first,have,to,log,on,to,the,system, and,then,run,a,specially,crafted,application,to,take,control,over,the affected,system.
,The,security,update,addresses,the vulnerability,by,correcting,how,CLFS,handles,objects,in,memory.
">  |
Home ▼ Bookkeeping
Online ▼ Security
Audits ▼
Managed
DNS ▼
About
Order
FAQ
Acceptable Use Policy
Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password Network
Monitor ▼
Enterprise Package
Advanced Package
Standard Package
Free Trial
FAQ
Price/Feature Summary
Order/Renew
Examples
Configure/Status Alert Profiles | ||
| CVE ID: | CVE-2020-1115 |
| Description: | An elevation of privilege vulnerability exists when the Windo ws Common Log File System (CLFS) driver improperly handles objects in memory. An attacker who successfully exploited this vulnerability could run processes in an elevated context. To exploit the vulnerability, an attacker would first have to log on to the system, and then run a specially crafted application to take control over the affected system. The security update addresses the vulnerability by correcting how CLFS handles objects in memory. |
| Test IDs: | None available |
| Cross References: |
Common Vulnerability Exposure (CVE) ID: CVE-2020-1115 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1115 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1115 |