Elevation of privilege in Win32k.sys driver in Microsoft Windows

Published: 2019-05-15 11:15:18 | Updated: 2019-05-15
Severity Low
Patch available YES
Number of vulnerabilities 1
CVE ID CVE-2019-0892
CVSSv3 6.8 [CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]
CWE ID CWE-119
Exploitation vector Local
Public exploit N/A
Vulnerable software Windows
Windows Server
Vulnerable software versions Windows 10 1709
Windows 10 1803
Windows 10 1809
Windows 10 1903
Windows Server 2019
Windows Server 1803
Windows Server 1903
Vendor URL Microsoft

Security Advisory

1) Buffer overflow

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a boundary error when processing objects in memory within the Win32k component. A local user can create a malicious application, launch it on the system and execute arbitrary code with SYSTEM privileges.

Remediation

Install update from vendor's website.

External links

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0892

Back to List