CVE-2020-16940: Microsoft Windows User Profile Service Arbitrary File Deletion Vulnerability
First published: Fri Oct 16 2020(Updated: )
<p>An elevation of privilege vulnerability exists when the Windows User Profile Service (ProfSvc) improperly handles junction points. An attacker who successfully exploited this vulnerability could delete files and folders in an elevated context.</p> <p>To exploit this vulnerability, an attacker would first have to log on to the system. An attacker could then run a specially crafted application that could exploit the vulnerability and delete files or folders of their choosing.</p> <p>The security update addresses the vulnerability by correcting how the Windows User Profile Service handles junction points.</p>
Credit: secure@microsoft.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Windows 10 | ||
| Windows 10 | =1607 | |
| Windows 10 | =1709 | |
| Windows 10 | =1803 | |
| Windows 10 | =1809 | |
| Windows 10 | =1903 | |
| Windows 10 | =1909 | |
| Windows 10 | =2004 | |
| Microsoft Windows 7 | =sp1 | |
| Microsoft Windows | ||
| Microsoft Windows RT | ||
| Microsoft Windows Server | =sp2 | |
| Microsoft Windows Server | =r2-sp1 | |
| Microsoft Windows Server | ||
| Microsoft Windows Server | =r2 | |
| Microsoft Windows Server 2016 | ||
| Microsoft Windows Server 2016 | =1903 | |
| Microsoft Windows Server 2016 | =1909 | |
| Microsoft Windows Server 2016 | =2004 | |
| Microsoft Windows Server 2019 | ||
| Microsoft Windows Operating System |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2020-16940?
CVE-2020-16940 has a CVSS score that indicates a serious elevation of privilege vulnerability in Windows User Profile Service.
How do I fix CVE-2020-16940?
To fix CVE-2020-16940, apply the latest Windows updates provided by Microsoft.
What versions of Windows are affected by CVE-2020-16940?
CVE-2020-16940 affects multiple versions of Windows, including Windows 7, 8.1, 10, and various Windows Server releases.
What are the potential impacts of exploiting CVE-2020-16940?
Exploiting CVE-2020-16940 could allow an attacker to delete files and folders with elevated privileges.
Who can exploit CVE-2020-16940, and how?
An attacker with local access could exploit CVE-2020-16940 by improperly handling junction points to gain privilege escalation.
- agent/type
- agent/first-publish-date
- agent/weakness
- agent/references
- agent/title
- agent/remedy
- agent/severity
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/trending
- agent/source
- agent/author
- agent/event
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/tags
- agent/softwarecombine
- collector/zdi-advisory
- source/ZDI
- alias/ZDI-20-1248
- alias/ZDI-CAN-11129
- alias/CVE-2020-16940
- vendor/microsoft
- canonical/windows 10
- version/windows 10/1607
- version/windows 10/1709
- version/windows 10/1803
- version/windows 10/1809
- version/windows 10/1903
- version/windows 10/1909
- version/windows 10/2004
- canonical/microsoft windows 7
- version/microsoft windows 7/sp1
- canonical/microsoft windows
- canonical/microsoft windows rt
- canonical/microsoft windows server
- version/microsoft windows server/sp2
- version/microsoft windows server/r2-sp1
- version/microsoft windows server/r2
- canonical/microsoft windows server 2016
- version/microsoft windows server 2016/1903
- version/microsoft windows server 2016/1909
- version/microsoft windows server 2016/2004
- canonical/microsoft windows server 2019
- canonical/microsoft windows operating system