CVE-2020-0787

HIGH KEV RANSOMWARE

Microsoft Windows 10 1507 - Symlink Following

Title source: rule

Description

An elevation of privilege vulnerability exists when the Windows Background Intelligent Transfer Service (BITS) improperly handles symbolic links, aka 'Windows Background Intelligent Transfer Service Elevation of Privilege Vulnerability'.

Exploits (12)

nomisec WORKING POC 722 stars

by cbwang505 · local

https://github.com/cbwang505/CVE-2020-0787-EXP-ALL-WINDOWS-VERSION

View Code ZIP pw:eip

nomisec WORKING POC 33 stars

by yanghaoi · local

https://github.com/yanghaoi/CVE-2020-0787

View Code ZIP pw:eip

nomisec

by MasterSploit · poc

https://github.com/MasterSploit/CVE-2020-0787-BitsArbitraryFileMove-master

View on nomisec

nomisec

by MasterSploit · poc

https://github.com/MasterSploit/CVE-2020-0787

View on nomisec

metasploit WORKING POC EXCELLENT

by itm4n, gwillcox-r7 · rubypoc

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/local/cve_2020_0787_bits_arbitrary_file_move.rb

View Code ZIP pw:eip

patchapalooza WORKING POC

by dugd520 · poc

https://gitee.com/dugd520/CVE-2020-0787-EXP-ALL-WINDOWS-VERSION

View Code ZIP pw:eip

patchapalooza WORKING POC

by kenyons · poc

https://gitee.com/kenyons/CVE-2020-0787-EXP-ALL-WINDOWS-VERSION

View Code ZIP pw:eip

patchapalooza WORKING POC

by mirrors_cbwang505 · poc

https://gitee.com/mirrors_cbwang505/CVE-2020-0787-EXP-ALL-WINDOWS-VERSION

View Code ZIP pw:eip

patchapalooza WORKING POC

by F123BBXX · poc

https://gitee.com/F123BBXX/CVE-2020-0787-EXP-ALL-WINDOWS-VERSION

View Code ZIP pw:eip

patchapalooza WRITEUP

by Ascotbe · local

https://github.com/Ascotbe/Kernelhub

View Code ZIP pw:eip

patchapalooza WORKING POC

by rockmelodies · poc

https://gitee.com/rockmelodies/CVE-2020-0787-EXP-ALL-WINDOWS-VERSION

View Code ZIP pw:eip

patchapalooza WORKING POC

by cbwang505 · poc

https://gitee.com/cbwang505/CVE-2020-0787-EXP-ALL-WINDOWS-VERSION

View Code ZIP pw:eip

References (3)

[Exploit, Third Party Advisory, VDB Entry] http://packetstormsecurity.com/files/158056/Background-Intelligent-Transfer-Service-Privilege-Escalation.html

[Patch, Vendor Advisory] https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0787

[US Government Resource] https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2020-0787

Scores

CVSS v3 7.8

EPSS 0.6039

EPSS Percentile 98.3%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Details

CISA KEV 2022-01-28

VulnCheck KEV 2021-02-25

InTheWild.io 2020-10-26

ENISA EUVD EUVD-2020-2274

Ransomware Use Confirmed

CWE

CWE-59

Status published

Products (19)

microsoft/windows_10_1507

microsoft/windows_10_1607

microsoft/windows_10_1709

microsoft/windows_10_1803

microsoft/windows_10_1809

microsoft/windows_10_1903

microsoft/windows_10_1909

microsoft/windows_7

microsoft/windows_8.1

microsoft/windows_rt_8.1

... and 9 more

Published Mar 12, 2020

KEV Added Jan 28, 2022

Tracked Since Feb 18, 2026