Zero-day in Windows Kernel Transaction Manager (CVE-2018-8611)
#1
Information 
[Image: 181211-zeroday-1.png]
Quote:Executive summary

In October 2018, our AEP (Automatic Exploit Prevention) systems detected an attempt to exploit a vulnerability in the Microsoft Windows operating system. Further analysis led us to uncover a zero-day vulnerability in ntoskrnl.exe. We reported it to Microsoft on October 29, 2018. The company confirmed the vulnerability and assigned it CVE-2018-8611. Microsoft just released a patch, part of its December update, crediting Kaspersky Lab researchers [b]Boris Larin[/b] (Oct0xor) and [b]Igor Soumenkov[/b] (2igosha) with the discovery.
[img=0x16]https://media.kasperskycontenthub.com/wp-content/uploads/sites/43/2018/12/12085448/181211-zeroday-4-300x138.png[/img]
This is the third consecutive exploited Local Privilege Escalation vulnerability in Windows we discovered this autumn using our technologies. Unlike the previously reported vulnerabilities in win32k.sys (CVE-2018-8589 and CVE-2018-8453), CVE-2018-8611 is an especially dangerous threat – a vulnerability in the Kernel Transaction Manager driver. It can also be used to escape the sandbox in modern web browsers, including Chrome and Edge, since syscall filtering mitigations do not apply to ntoskrnl.exe system calls.

Just like with CVE-2018-8589, we believe this exploit is used by several threat actors including, but possibly not limited to, FruityArmor and SandCat. While FruityArmor is known to have used zero-days before, SandCat is a new APT we discovered only recently. In addition to this zero-day and CHAINSHOT, SandCat also uses the FinFisher / FinSpy framework.
Full reading: https://securelist.com/zero-day-in-windo...611/89253/
[-] The following 1 user says Thank You to harlan4096 for this post:
  • silversurfer
Reply


Forum Jump:


Users browsing this thread: 1 Guest(s)
[-]
Welcome
You have to register before you can post on our site.

Username/Email:


Password:





[-]
Recent Posts
Google Chrome 150.0.7871.124/.125
Google Chrome 150....harlan4096 — 12:16
Microsoft July 2026 Patch Tuesday Fixes ...
Microsoft has rele...harlan4096 — 11:08
uBOLite 2026.714.1952 (already available...
uBOLite 2026.714.1...harlan4096 — 09:58
Vivaldi 8.1 Build 4087.53
Vivaldi 8.1 Build ...harlan4096 — 08:44
Privazer 4.0.124.3 (14 July 2026)
v4.0.124.3 (14 Jul...harlan4096 — 06:22

[-]
Birthdays
Today's Birthdays
avatar (46)RidgeDimb
Upcoming Birthdays
avatar (43)lapedDow
avatar (49)rituabew
avatar (37)omyjul
avatar (41)papedDow
avatar (50)ArnoldFum
avatar (38)yfaza
avatar (49)Kevensi
avatar (39)boineDon
avatar (40)Grompelbawn
avatar (41)vkseogaF
avatar (37)usogy
avatar (40)ywixazok
avatar (38)ixoqe
avatar (36)pa.OpenTran

[-]
Online Staff
There are no staff members currently online.

>