Rapid7 Vulnerability & Exploit Database

Microsoft CVE-2020-0707: Windows IME Elevation of Privilege Vulnerability

Free InsightVM Trial No Credit Card Necessary

Watch Demo See how it all works

Back to Search

Microsoft CVE-2020-0707: Windows IME Elevation of Privilege Vulnerability

Severity

CVSS

(AV:L/AC:L/Au:N/C:C/I:C/A:C)

Published

02/11/2020

Created

02/12/2020

Added

02/11/2020

Modified

11/18/2021

Description

An elevation of privilege vulnerability exists when the Windows IME improperly handles memory.To exploit this vulnerability, an attacker would first have to gain execution on the victim system, aka 'Windows IME Elevation of Privilege Vulnerability'.

Solution(s)

msft-kb4532691-0e78339f-1546-434c-85f1-ec5617eb15b2
msft-kb4532691-d959bd97-3c54-40d0-8100-6d302772e599
msft-kb4532691-e34e7c64-e906-423c-8e30-7a79d1d0c745
msft-kb4532693-0b4acda9-369c-4ffd-b1ec-792428aff755
msft-kb4532693-2af89f5f-4888-4c15-87a0-467219280044
msft-kb4532693-5f59add0-ba47-42c3-af2a-9aa334c053bb
msft-kb4532693-a9b1a21b-4d78-4445-a122-0920a6bed52a
msft-kb4532693-bb723d9d-43f9-41c3-ac36-25a6146ee6e3
msft-kb4532693-caec06fd-2ec3-455a-a38c-206eae8f2e18
msft-kb4537762-21b1dad8-3ca4-4890-884c-5312344085c5
msft-kb4537762-8e02820e-88cd-4d1a-bd06-02a6ae14e6a5
msft-kb4537762-d31c92db-ef15-475c-a50c-ee0f3b03888e
msft-kb4537764-410d8580-5e5f-491f-915e-3ea17e7009e9
msft-kb4537764-652fa296-32a1-4c9f-b939-ed54f005703b
msft-kb4537764-848266ac-377c-4d58-8b13-d694790d047d
msft-kb4537776-14aef02b-32ec-431e-87e1-9ed84e3855f8
msft-kb4537776-81e25794-31c8-4b80-929d-7451b98d4bb1
msft-kb4537789-bdb36b34-0fab-4531-b022-41df12b633b7
msft-kb4537789-f2dca7c2-e09a-4a84-8166-1dd90115c57e
msft-kb4537794-568a5fd6-48c6-43f9-9ba0-2623e21003a0
msft-kb4537794-60748418-e339-4f4d-b2e9-afc7057a77ac
msft-kb4537794-8ae8ed3e-0077-405b-8f55-4f7c6a13238c
msft-kb4537803-14ae1eab-47ad-4f74-82ee-b2f75e6a258e
msft-kb4537803-abdc886d-fd3f-4006-9344-8497d4e85cbd
msft-kb4537803-dae0b2b7-0ee2-45e2-b59d-811480ec470e

References

https://attackerkb.com/topics/cve-2020-0707
CVE - 2020-0707
4532691
4532693
4537762
4537764
4537776
4537789
4537794
4537803
4537814
4537821

Advanced vulnerability management analytics and reporting.

Key Features

Free InsightVM Trial View All Features

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;

Rapid7 Vulnerability & Exploit Database

Microsoft CVE-2020-0707: Windows IME Elevation of Privilege Vulnerability

Microsoft CVE-2020-0707: Windows IME Elevation of Privilege Vulnerability

Description

Solution(s)

References

Success! Thank you for submission. We will be in touch shortly.

Oops! There was a problem in submission. Please try again.

Submit your information and we will get in touch with you.