Primary

Context

Microsoft Windows NTFS Stack-Based Buffer Overflow Vulnerability Allowing Local Remote Code Execution

Vulnerability

A stack-based buffer overflow vulnerability has been identified in the Windows NTFS file system. This vulnerability allows an authorized attacker to execute code locally. It affects several versions of Windows Server, including 2012 R2, 2008 R2, and 2008, across different installation types such as Server Core and standard installations.

Impact

Exploitation of this vulnerability could lead to unauthorized local execution of code with the privileges of the user running the application or process that triggers the vulnerability.

Remediation

Users can apply the security update for this vulnerability, which is included in the September 2025 Monthly Rollup, available through the Microsoft Update Catalog. Specific Knowledge Base articles for each affected Windows Server version are also available.

Added: Sep 9, 2025, 5:56 PM

Updated: Sep 9, 2025, 5:56 PM

Vulnerability Rating

Custom Algorithm

spread

8.1

impact

2.5

exploitability

3.5

remediation

7.7

relevance

0.5

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

8.1

impact

2.5

exploitability

3.5

remediation

7.7

relevance

0.5

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Microsoft Windows NTFS Stack-Based Buffer Overflow Vulnerability Allowing Local Remote Code Execution

Vulnerability

Impact

Remediation

Affected Products

Microsoft Windows Server 2012

Microsoft Windows Server 2008

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating