What is CVE-2017-3141?

CVE-2017-3141 is a vulnerability in the BIND installer on Windows that uses an unquoted service path, enabling a local user to achieve privilege escalation.

Which versions of BIND are affected by CVE-2017-3141?

BIND versions 9.2.6-P2 to 9.2.9, 9.3.2-P1 to 9.3.6, 9.4.0 to 9.8.8, 9.9.0 to 9.9.10, 9.10.0 to 9.10.5, and 9.11.0 to 9.11.1 are affected by CVE-2017-3141.

What is the severity of CVE-2017-3141?

The severity of CVE-2017-3141 is high, with a CVSS score of 7.8.

How can this vulnerability be exploited?

This vulnerability can be exploited by a local user with appropriate file system permissions to escalate their privileges on the system.

Where can I find more information about CVE-2017-3141?

You can find more information about CVE-2017-3141 at the following references: [SecurityFocus](http://www.securityfocus.com/bid/99089), [SecurityTracker](http://www.securitytracker.com/id/1038693), and [ISC Knowledge Base](https://kb.isc.org/docs/aa-01496).

Vulnerability/
CVE-2017-3141

high

7.8

CWE

428

16/1/2019

16/9/2024

CVE-2017-3141: Windows service and uninstall paths are not quoted when BIND is installed

First published: Wed Jan 16 2019(Updated: )

The BIND installer on Windows uses an unquoted service path which can enable a local user to achieve privilege escalation if the host file system permissions allow this. Affects BIND 9.2.6-P2->9.2.9, 9.3.2-P1->9.3.6, 9.4.0->9.8.8, 9.9.0->9.9.10, 9.10.0->9.10.5, 9.11.0->9.11.1, 9.9.3-S1->9.9.10-S1, 9.10.5-S1.

Credit: security-officer@isc.org

Affected Software	Affected Version	How to fix
BIND 9	>=9.2.6<=9.2.9
BIND 9	>=9.3.2<=9.3.6
BIND 9	>=9.4.0<=9.8.8
BIND 9	>=9.9.0<=9.9.10
BIND 9	>=9.10.0<=9.10.5
BIND 9	>=9.11.0<=9.11.1
BIND 9	=9.2.6-p2
BIND 9	=9.3.2-p1

Remedy

Upgrade to the patched release most closely related to your current version of BIND. These can all be downloaded from http://www.isc.org/downloads. BIND 9 version 9.9.10-P1 BIND 9 version 9.10.5-P1 BIND 9 version 9.11.1-P1 BIND Supported Preview Edition is a special feature preview branch of BIND provided to eligible ISC support customers. BIND 9 version 9.9.10-S2 BIND 9 version 9.10.5-S2

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is CVE-2017-3141?
CVE-2017-3141 is a vulnerability in the BIND installer on Windows that uses an unquoted service path, enabling a local user to achieve privilege escalation.
Which versions of BIND are affected by CVE-2017-3141?
BIND versions 9.2.6-P2 to 9.2.9, 9.3.2-P1 to 9.3.6, 9.4.0 to 9.8.8, 9.9.0 to 9.9.10, 9.10.0 to 9.10.5, and 9.11.0 to 9.11.1 are affected by CVE-2017-3141.
What is the severity of CVE-2017-3141?
The severity of CVE-2017-3141 is high, with a CVSS score of 7.8.
How can this vulnerability be exploited?
This vulnerability can be exploited by a local user with appropriate file system permissions to escalate their privileges on the system.
Where can I find more information about CVE-2017-3141?
You can find more information about CVE-2017-3141 at the following references: [SecurityFocus](http://www.securityfocus.com/bid/99089), [SecurityTracker](http://www.securitytracker.com/id/1038693), and [ISC Knowledge Base](https://kb.isc.org/docs/aa-01496).

agent/references
agent/type
agent/softwarecombine
agent/remedy
agent/weakness
agent/author
agent/title
agent/severity
agent/description
collector/mitre-cve
source/MITRE
agent/first-publish-date
agent/event
agent/last-modified-date
agent/source
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
vendor/isc
canonical/bind 9
version/bind 9/9.2.6
version/bind 9/9.2.9
version/bind 9/9.3.2
version/bind 9/9.3.6
version/bind 9/9.4.0
version/bind 9/9.8.8
version/bind 9/9.9.0
version/bind 9/9.9.10
version/bind 9/9.10.0
version/bind 9/9.10.5
version/bind 9/9.11.0
version/bind 9/9.11.1
version/bind 9/9.2.6-p2
version/bind 9/9.3.2-p1