Privilege escalation in Microsoft SMB

Published: 2019-04-10 02:45:29 | Updated: 2019-04-10
Severity Low
Patch available YES
Number of vulnerabilities 1
CVE ID CVE-2019-0786
CVSSv3 7.7 [CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H/E:U/RL:O/RC:C]
CWE ID CWE-20
Exploitation vector Local
Public exploit N/A
Vulnerable software Windows
Windows Server
Vulnerable software versions Windows 10 1709
Windows 10 1803
Windows 10 1809
Windows Server 2019
Windows Server 1709
Windows Server 1803
Vendor URL Microsoft

Security Advisory

1) Input validation error

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to an error within the Microsoft Server Message Block (SMB) Server when processing files. A local user can create a specially crafted file and open it over the SMB protocol on the same machine.

Remediation

Install updates from vendor's website.

External links

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0786

Back to List