Microsoft Windows Secondary Logon Service Privilege Escalation Vulnerability

When

2022-03-03 00:00 UTC · day precision

Where

Global (internet)

Category

cyber_exploit · ransomware

A privilege escalation vulnerability exists in Microsoft Windows if the Windows Secondary Logon Service fails to properly manage request handles in memory. An attacker who successfully exploited this vulnerability could run arbitrary code as an administrator.

Involved actors & entities

People, organizations and places machine-extracted from the source reporting — they power search and the correlation graph. Extracted automatically, so they can include noise, especially on events still marked unverified.

• Microsoft
• Windows
• CVE-2016-0099

Sources

• CISA ↗ · first seen 2022-03-03 00:00 UTC

Defaxon links out to the original reporting and never republishes article text.

Correlated events

Computed by the Defaxon correlation engine — linked by shared actors, co-location, and temporal proximity. Scored hypotheses, never causal claims.

No correlated events found in the current window. As more events arrive, connections form automatically.

← Back to the live map