Attacker Value
Unknown
(1 user assessed)
Exploitability
Very Low
(1 user assessed)
User Interaction
Unknown
Privileges Required
Unknown
Attack Vector
Unknown
0

Profile API CreateEnvBlock Local Information Disclosure

Last updated February 13, 2020
Add MITRE ATT&CK tactics and techniques that apply to this CVE.

Description

The exported function CreateEnvBlock from profapi.dll (which is used by the CreateEnvironmentBlock API function) has an information disclosure vulnerability when building the environment block for a user which can be locally exploited to disclose heap memory of a process calling the API. For example it’s common when a privileged service spawns a process as another user to load the environment block, the information disclosure will be from the caller.

Add Assessment

1
Ratings
  • Exploitability
    Very Low
Technical Analysis

This is not an exploit by itself, but useful primitive that could be used with something else for an info leak.

General Information

Additional Info

Technical Analysis