CVE-2020-0792: 
vulnerability analysis and mitigation

CVE-2020-0792 is a Windows Graphics Component Elevation of Privilege Vulnerability that was disclosed on February 11, 2020. The vulnerability affects Microsoft Windows installations and allows local attackers to escalate privileges on affected systems. This vulnerability is distinct from related issues CVE-2020-0715 and CVE-2020-0745 (NVD).

The vulnerability exists within the NtUserResolveDesktopForWOW function and stems from improper validation of user-supplied data length before copying it to a heap-based buffer, resulting in a heap-based buffer overflow condition. The vulnerability has received a CVSS v3.1 base score of 8.8 (HIGH) with the vector string CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H. The issue has been classified as CWE-787 (Out-of-bounds Write) (ZDI Advisory, NVD).

When successfully exploited, this vulnerability allows an attacker to execute code in the context of SYSTEM, effectively gaining elevated privileges on the affected system. The vulnerability requires the attacker to first obtain the ability to execute low-privileged code on the target system (ZDI Advisory).

Microsoft has released a security update to address this vulnerability. Users are advised to apply the available patches through the official Microsoft security advisory (Microsoft Advisory).