A new Windows zero-day vulnerability affecting the Remote Access Connection Manager (RasMan) service allows attackers to crash the service and potentially escalate privileges. ACROS Security offers free, unofficial patches via 0Patch until Microsoft provides an official fix. #RasMan #ZeroDayVulnerability
Keypoints
- The vulnerability affects all supported Windows versions, including Windows 7 through 11 and Windows Server editions.
- The flaw involves a coding error in handling circular linked lists, causing RasMan to crash when encountering a null pointer.
- Attackers can exploit this zero-day to crash RasMan and, when combined with privilege escalation flaws, gain elevated access.
- ACROS Security provides free micropatches via 0Patch to mitigate the vulnerability until Microsoft releases an official patch.
- Microsoft has been alerted about the issue, and a fix is expected in future Windows updates.