KLA10983
Privilege escalation vulnerability in Windows IIS

Updated: 05/22/2020

Detect date ?	03/14/2017
Severity ?	Warning
Description	An improper sanitizing of a specially designed request was found in Microsoft IIS Server. By exploiting this vulnerability malicious users can gain privileges. This vulnerability can be exploited remotely via a specially designed URL.
Affected products	Windows Vista Service Pack 2 Windows 7 Service Pack 1 Windows 8.1 Windows RT Windows 10 Windows Server 2008 Windows Server 2008 R2 Windows Server 2012 Windows Server 2012 R2
Solution	Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)
Original advisories	MS17-016 CVE-2017-0055
Impacts ?	ACE [?] OSI [?] DoS [?] SB [?] PE [?]
Related products	Microsoft Windows Vista Microsoft Windows Server 2012 Microsoft Windows 7 Microsoft Windows Server 2008 Windows RT
CVE-IDS ?	CVE-2017-00554.3Warning
Microsoft official advisories	Microsoft Security Update Guide
KB list	4012217 4012215 4012216 4012606 4013198 4013429 4012212 4012214 4012213 4012373 4013074

KLA10983Privilege escalation vulnerability in Windows IIS