Privilege escalation in Microsoft Streaming Service Proxy

 

Privilege escalation in Microsoft Streaming Service Proxy

CVE-2023-36802

descrption:-

Privilege escalation refers to a security weakness that allows an attacker to elevate their access level on a system or network. The Microsoft Streaming Service Proxy has a vulnerability related to privilege escalation, which can be exploited by someone, with access. This exploit involves triggering memory corruption leading to gaining privileges. It is important to note that this vulnerability is actively being targeted in real world attacks. To address this issue Microsoft has released a security update as part of their September 2023 Patch Tuesday release. It is highly recommended to apply this update in order to reduce the risk of exploitation.

Advisory: SB2023091251 - Privilege escalation in Microsoft Streaming Service Proxy

Vulnerable component: Windows

CVE-ID: CVE-2023-36802

CVSSv3 score: CVSS:3.1 7.8 / 6.8

CWE-ID: CWE-119 - Memory corruption

Mitigation:-

To mitigate the privilege escalation vulnerability in Microsoft Streaming Service Proxy, the following steps can be taken:

Apply the security update released by Microsoft as part of their September 2023 Patch Tuesday.

This will address the vulnerability and reduce the risk of exploitation.

https://www.linkedin.com/in/rajababupinapothula%F0%9F%A7%91%E2%80%8D%F0%9F%92%BB-ba88a525a