CVE-2017-8487

HIGH EXPLOITED

Windows XP and Windows Server 2003 - Remote Code Execution via Crafted File in OLE

Title source: llm

Exploitation Summary

CVE-2017-8487 has been observed exploited in the wild (reported by VulnCheck KEV). EIP tracks 1 public exploit from researchers including Google Security Research.

AI-analyzed exploit summary This exploit demonstrates an information leak vulnerability in the Windows kernel (CVE-2017-8487) by sending a crafted IOCTL to the \Device\KsecDD device, which returns uninitialized pool memory in the output buffer. The PoC includes a detailed analysis of the leaked memory offsets and a functional code to trigger the vulnerability.

Description

Windows OLE in Windows XP and Windows Server 2003 allows an attacker to execute code when a victim opens a specially crafted file or program aka "Windows olecnv32.dll Remote Code Execution Vulnerability."

Exploits (1)

exploitdb WORKING POC VERIFIED

by Google Security Research · c++doswindows

https://www.exploit-db.com/exploits/42211

View Code ZIP pw:eip

This exploit demonstrates an information leak vulnerability in the Windows kernel (CVE-2017-8487) by sending a crafted IOCTL to the \Device\KsecDD device, which returns uninitialized pool memory in the output buffer. The PoC includes a detailed analysis of the leaked memory offsets and a functional code to trigger the vulnerability.

Classification

Working Poc 95%

Attack Type

Info Leak

Complexity

Moderate

Reliability

Reliable

Target: Microsoft Windows (affects Windows 7 and later)

Auth required

Prerequisites: Local access to the target system · Ability to execute code with sufficient privileges to interact with the KsecDD device

MITRE ATT&CK

T1003 - OS Credential Dumping T1211 - Exploitation for Defense Evasion

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4

Core References

Exploit, Third Party Advisory, VDB Entry exploit x_refsource_exploit-db

https://www.exploit-db.com/exploits/42211/

Patch, Vendor Advisory x_refsource_confirm

https://support.microsoft.com/en-us/help/4025218/security-update-for-windows-xp-and-windows-server-2003

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/99013

Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack

http://www.securitytracker.com/id/1038702

Scores

CVSS v3 7.8

EPSS 0.6934

EPSS Percentile 98.7%

Attack Vector LOCAL

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Details

VulnCheck KEV 2017-11-16

Status published

Products (3)

microsoft/windows_server_2003

microsoft/windows_xp

Microsoft Corporation/Microsoft Windows Windows XP SP3, Windows XP x64 SP2, Windows Server 2003 SP2

Published Jun 15, 2017

Tracked Since Feb 18, 2026