Microsoft Windows Fast FAT Driver Privilege Escalation Vulnerability

A heap-based buffer overflow vulnerability has been identified in the Windows Fast FAT Driver. This vulnerability allows an unauthorized attacker to elevate privileges locally. It affects several versions of Windows Server, including 2012 R2, 2008 R2, and 2008, both in standard and Server Core installations.

Impact

Exploitation of this vulnerability could lead to unauthorized privilege escalation, allowing an attacker to gain SYSTEM privileges.

Reproduction

To reproduce this vulnerability, a local user must be tricked into mounting a specially crafted virtual hard disk (VHD) that exploits the heap-based buffer overflow in the Fast FAT Driver.

Remediation

Users can apply the security updates provided by Microsoft through the Microsoft Update Catalog. Specific update details can be found in the Microsoft Knowledge Base articles KB5062597, KB5062624, and KB5062632.