Main Vulnerability Database Exploits ID:2683 - Exploit for Out-of-bounds read in Windows and Windows Server - CVE-2019-1096

ID:2683 - Exploit for Out-of-bounds read in Windows and Windows Server - CVE-2019-1096

Published: May 18, 2020

Vulnerability identifier: #VU19098

Vulnerability risk: Low

CVE-ID: CVE-2019-1096

CWE-ID: CWE-125

Exploitation vector: Local access

Vulnerable software:
Windows
Windows Server

Link to public exploit:

https://cpr-zero.checkpoint.com/vulns/cprid-2131/

Vulnerability description

The vulnerability allows a local user to gain access to potentially sensitive information.

The vulnerability exists due to a boundary condition within the win32k component. A local user can use a specially crafted application to trigger out-of-bounds read error and read contents of memory on the system.

Remediation

Install update from vendor's website.

ID:2683 - Exploit for Out-of-bounds read in Windows and Windows Server - CVE-2019-1096

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human