Remote code execution in Windows DHCP Client

Published: 2019-03-12 23:46:18 | Updated: 2019-03-12
Severity Medium
Patch available YES
Number of vulnerabilities 3
CVE ID CVE-2019-0697
CVE-2019-0698
CVE-2019-0726
CVSSv3 7 [CVSS:3.0/AV:A/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]
7 [CVSS:3.0/AV:A/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]
7 [CVSS:3.0/AV:A/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]
CWE ID CWE-20
Exploitation vector Local network
Public exploit N/A
Vulnerable software Windows
Windows Server
Vulnerable software versions Windows 10 1803
Windows 10 1809
Windows Server 2019
Windows Server 1803
Vendor URL Microsoft

Security Advisory

1) Input validation error

Description

The vulnerability allows a remote attacker to compromise vulnerable system.

The vulnerability exists due to insufficient validation of attacker-supplied input when processing responses from a malicious DHCP server. A remote attacker can trick the victim to connect to a malicious DHCP server and execute arbitrary code on the target system.

Remediation

Install updates from vendor's website.

External links

https://portal.msrc.microsoft.com/en-US/securit...

2) Input validation error

Description

The vulnerability allows a remote attacker to compromise vulnerable system.

The vulnerability exists due to insufficient validation of attacker-supplied input when processing responses from a malicious DHCP server. A remote attacker can trick the victim to connect to a malicious DHCP server and execute arbitrary code on the target system.

Remediation

Install updates from vendor's website.

External links

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0698

3) Input validation error

Description

The vulnerability allows a remote attacker to compromise vulnerable system.

The vulnerability exists due to insufficient validation of attacker-supplied input when processing responses from a malicious DHCP server. A remote attacker can trick the victim to connect to a malicious DHCP server and execute arbitrary code on the target system.

Remediation

Install updates from vendor's website.

External links

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0726

Back to List