Description
Multiple vulnerabilities were found in Microsoft Windows. Malicious users can exploit these vulnerabilities to obtain sensitive information, gain privileges, execute arbitrary code, cause denial of service.
Below is a complete list of vulnerabilities:
- An information disclosure vulnerability in Windows Kernel can be exploited remotely via specially crafted application to obtain sensitive information.
- An elevation of privilege vulnerability in Windows Subsystem for Linux can be exploited remotely via specially crafted application to gain privileges.
- An elevation of privilege vulnerability in Win32k can be exploited remotely via specially crafted application to gain privileges.
- An elevation of privilege vulnerability in Microsoft Windows can be exploited remotely via specially crafted application to gain privileges.
- A remote code execution vulnerability in Windows VBScript Engine can be exploited remotely via specially crafted website to execute arbitrary code.
- An information disclosure vulnerability in Windows SMB can be exploited remotely to obtain sensitive information.
- An information disclosure vulnerability in Win32k can be exploited remotely via specially crafted application to obtain sensitive information.
- An information disclosure vulnerability in Windows Print Spooler can be exploited remotely to obtain sensitive information.
- A remote code execution vulnerability in Comctl32 can be exploited remotely via specially crafted website to execute arbitrary code.
- A denial of service vulnerability in Windows can be exploited remotely via specially crafted application to cause denial of service.
- A remote code execution vulnerability in MS XML can be exploited remotely via specially crafted website to execute arbitrary code.
- A remote code execution vulnerability in Windows Deployment Services TFTP Server can be exploited remotely via specially crafted request to execute arbitrary code.
- A remote code execution vulnerability in Windows DHCP Client can be exploited remotely via specially crafted to execute arbitrary code.
- An elevation of privilege vulnerability in Active Directory can be exploited remotely to gain privileges.
- An elevation of privilege vulnerability in Windows Kernel can be exploited remotely via specially crafted application to gain privileges.
- A denial of service vulnerability in Windows Hyper-V can be exploited remotely via specially crafted application to cause denial of service.
- An information disclosure vulnerability in Windows GDI can be exploited remotely via specially crafted document to obtain sensitive information.
- An information disclosure vulnerability in Windows Hyper-V can be exploited remotely via specially crafted application to obtain sensitive information.
- A remote code execution vulnerability in Jet Database Engine can be exploited remotely via specially crafted file to execute arbitrary code.
- A remote code execution vulnerability in Windows ActiveX can be exploited remotely via specially crafted website to execute arbitrary code.
Fiches de renseignement originales
- CVE-2019-0694
- CVE-2019-0797
- CVE-2019-0766
- CVE-2019-0772
- CVE-2019-0704
- CVE-2019-0776
- CVE-2019-0759
- CVE-2019-0765
- CVE-2019-0754
- CVE-2019-0775
- CVE-2019-0756
- CVE-2019-0603
- CVE-2019-0755
- CVE-2019-0726
- CVE-2019-0683
- CVE-2019-0696
- CVE-2019-0701
- CVE-2019-0692
- CVE-2019-0614
- CVE-2019-0703
- CVE-2019-0821
- CVE-2019-0695
- CVE-2019-0702
- CVE-2019-0689
- CVE-2019-0690
- CVE-2019-0617
- CVE-2019-0693
- CVE-2019-0697
- CVE-2019-0784
- CVE-2019-0767
- CVE-2019-0682
- CVE-2019-0698
- CVE-2019-0774
- ADV190010
Exploitation
Public exploits exist for this vulnerability.
Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.
Produits associés
- Microsoft-Windows
- Microsoft-Windows-Server
- Microsoft-Windows-Server-2012
- Microsoft-Windows-8
- Microsoft-Windows-7
- Microsoft-Windows-Server-2008
- Windows-RT
- Microsoft-Windows-10
Liste CVE
- CVE-2019-0782 high
- CVE-2019-0694 critical
- CVE-2019-0797 critical
- CVE-2019-0766 critical
- CVE-2019-0772 critical
- CVE-2019-0704 high
- CVE-2019-0776 high
- CVE-2019-0759 high
- CVE-2019-0765 critical
- CVE-2019-0754 high
- CVE-2019-0775 warning
- CVE-2019-0756 critical
- CVE-2019-0603 critical
- CVE-2019-0755 high
- CVE-2019-0726 critical
- CVE-2019-0683 high
- CVE-2019-0696 critical
- CVE-2019-0701 high
- CVE-2019-0692 critical
- CVE-2019-0614 high
- CVE-2019-0703 high
- CVE-2019-0821 high
- CVE-2019-0695 high
- CVE-2019-0702 high
- CVE-2019-0689 critical
- CVE-2019-0690 high
- CVE-2019-0617 critical
- CVE-2019-0693 critical
- CVE-2019-0697 critical
- CVE-2019-0784 critical
- CVE-2019-0767 high
- CVE-2019-0682 critical
- CVE-2019-0698 critical
- CVE-2019-0774 high
Liste KB
- 4489881
- 4489891
- 4489883
- 4489886
- 4489899
- 4489871
- 4489868
- 4489872
- 4489884
- 4489882
- 4493441
- 4493464
- 4507464
- 4507460
- 4507457
- 4507448
- 4507453
- 4507469
- 4507435
- 4507462
- 4507455
- 4507458
- 4507450
En savoir plus
Découvrez les statistiques de la propagation des vulnérabilités dans votre région statistics.securelist.com
Vous avez trouvé une inexactitude dans la description de cette vulnérabilité ? Faites-le nous savoir !