CVE-2018-0822
HIGHWindows 10 and Windows Server 2016 - Elevation of Privilege via NTFS Reparse Point Handling
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2018-0822. PoCs published by Google Security Research.
AI-analyzed exploit summary The exploit leverages the Global Reparse Point feature in Windows 10 1709 to bypass sandbox restrictions and create arbitrary symbolic links without requiring SeCreateSymbolicLinkPrivilege. This allows for privilege escalation by redirecting file access to restricted locations.
Description
NTFS in Windows 10 Gold, 1511, 1607, 1703 and 1709, Windows Server 2016 and Windows Server, version 1709 allows an elevation of privilege vulnerability due to the way NTFS handles objects, aka "Windows NTFS Global Reparse Point Elevation of Privilege Vulnerability".
Exploits (1)
The exploit leverages the Global Reparse Point feature in Windows 10 1709 to bypass sandbox restrictions and create arbitrary symbolic links without requiring SeCreateSymbolicLinkPrivilege. This allows for privilege escalation by redirecting file access to restricted locations.
References (4)
Scores
CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H