CVE-2018-8342

Summary

An elevation of privilege vulnerability exists in the Network Driver Interface Specification (NDIS) when ndis.sys fails to check the length of a buffer prior to copying memory to it, aka "Windows NDIS Elevation of Privilege Vulnerability." This affects Windows 7, Windows Server 2008 R2. This CVE ID is unique from CVE-2018-8343.

Affected Software

VendorProductVersion RangeStatus
MicrosoftWindows 732-bit Systems Service Pack 1affected
MicrosoftWindows 7x64-based Systems Service Pack 1affected
MicrosoftWindows Server 2008 R2Itanium-Based Systems Service Pack 1affected
MicrosoftWindows Server 2008 R2x64-based Systems Service Pack 1affected
MicrosoftWindows Server 2008 R2x64-based Systems Service Pack 1 (Server Core installation)affected

Weaknesses

  • Elevation of Privilege

ADP Enrichment

CVE Program Container

Additional References

References