Microsoft Releases Out-of-Band Patch KB4578013 for Win8.1
Microsoft has released KB4578013 for Win8.1 and Windows Server 2012 R2 on 8/18/2020. This Update covers CVE-2020-1530 and CVE-2020-1537 Windows Remote Access Elevation of Privilege Vulnerabilities.
These vulnerabilities were covered for other versions of Windows in the August Patch Tuesday updates.
KB4578013 is being offered as a checked Important update through Windows Update.
An elevation of privilege vulnerability exists when Windows Remote Access improperly handles memory.
To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted application to elevate privileges.
The security update addresses the vulnerability by correcting how Windows Remote Access handles memory.
An elevation of privilege vulnerability exists when the Windows Remote Access improperly handles file operations. An attacker who successfully exploited this vulnerability could gain elevated privileges.
To exploit the vulnerability, an attacker would first need code execution on a victim system. An attacker could then run a specially crafted application.
The security update addresses the vulnerability by ensuring the Windows Remote Access properly handles file operations.