Microsoft Windows NTFS Privilege Escalation Vulnerability

A vulnerability allowing out-of-bounds read in the Windows NTFS file system has been identified. This flaw enables an unauthorized attacker to locally elevate privileges. The vulnerability arises from improper handling of certain data, which could be exploited to gain higher system privileges, specifically SYSTEM rights.

Impact

Exploitation of this vulnerability could lead to unauthorized privilege escalation, allowing an attacker to gain SYSTEM privileges on the affected machine.

Reproduction

To reproduce this vulnerability, a local user must be tricked into mounting a specially crafted virtual hard disk (VHD) that exploits the out-of-bounds read condition in NTFS. This can be done by an attacker with access to the user's account.

Remediation

Security updates addressing this vulnerability have been released and are available through the Microsoft Update Catalog. Specific update details can be found in the Microsoft Knowledge Base articles KB5055547, KB5055519, KB5055521, KB5055557, and KB5055609.