An elevation of privilege vulnerability exists when the Windows kernel-mode driver fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in kernel mode. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.
A memory corruption vulnerability was discovered in Microsoft Windows. It can be triggered by loading a malformed blf file. Successful exploitation of this issue might lead to local privilege escalation.