CVE-2020-0753

HIGH

Windows Error Reporting - Privilege Escalation

Title source: llm

Exploitation Summary

EIP tracks 2 public exploits for CVE-2020-0753. PoCs published by afang5472, VikasVarshney.

AI-analyzed exploit summary This repository contains a proof-of-concept exploit for CVE-2020-0753, which involves hardlink and oplock manipulation to achieve local privilege escalation on Windows systems. The code includes utilities for creating hardlinks, setting oplocks, and triggering the vulnerability.

Description

An elevation of privilege vulnerability exists in Windows Error Reporting (WER) when WER handles and executes files, aka 'Windows Error Reporting Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0754.

Exploits (2)

nomisec WORKING POC 15 stars

by afang5472 · poc

https://github.com/afang5472/CVE-2020-0753-and-CVE-2020-0754

View Code ZIP pw:eip

This repository contains a proof-of-concept exploit for CVE-2020-0753, which involves hardlink and oplock manipulation to achieve local privilege escalation on Windows systems. The code includes utilities for creating hardlinks, setting oplocks, and triggering the vulnerability.

Classification

Working Poc 90%

Attack Type

Lpe

Complexity

Moderate

Reliability

Reliable

Target: Windows 10 (specific versions affected by CVE-2020-0753)

Auth required

Prerequisites: Local access to the target system · Ability to create hardlinks and manipulate file locks

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation T1548.002 - Bypass User Account Control

devstral-2 · analyzed Feb 16, 2026 Full analysis →

nomisec WORKING POC 6 stars

by VikasVarshney · poc

https://github.com/VikasVarshney/CVE-2020-0753-and-CVE-2020-0754

View Code ZIP pw:eip

This repository contains a proof-of-concept exploit for CVE-2020-0753, which involves hardlink attacks in Windows. The code demonstrates how to create hardlinks and manipulate file operations to exploit the vulnerability.

Classification

Working Poc 95%

Attack Type

Lpe

Complexity

Moderate

Reliability

Reliable

Target: Windows 10

Auth required

Prerequisites: Local access to the system · Administrative privileges to create hardlinks

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (1)

Core 1

Core References

Patch, Vendor Advisory x_refsource_misc

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0753

Scores

CVSS v3 7.8

EPSS 0.1851

EPSS Percentile 95.3%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

Status published

Products (18)

microsoft/windows_10

microsoft/windows_10 1607

microsoft/windows_10 1709

microsoft/windows_10 1803

microsoft/windows_10 1809

microsoft/windows_10 1903

microsoft/windows_7

microsoft/windows_8.1

microsoft/windows_rt_8.1

microsoft/windows_server_2008

... and 8 more

Published Feb 11, 2020

Tracked Since Feb 18, 2026