KLA11460
Multiple vulnerabilities in Microsoft Windows
Обновлено: 26/06/2019
Microsoft official advisories
Microsoft Security Update Guide
KB list

4493441
4493474
4493464
4493509
4493470
4493475
4493472
4493471
4493451
4493458
4493467
4493446
4493450
4493448
4493552

Дата обнаружения
09/04/2019
Уровень угрозы
Critical
Описание

Multiple vulnerabilities were found in Microsoft Windows. Malicious users can exploit these vulnerabilities to execute arbitrary code, gain privileges, obtain sensitive information, bypass security restrictions.

Below is a complete list of vulnerabilities:

  1. A remote code execution vulnerability in Windows IOleCvt Interface can be exploited remotely via specially crafted website to execute arbitrary code.
  2. An elevation of privilege vulnerability in Win32k can be exploited remotely via specially crafted application to gain privileges.
  3. An information disclosure vulnerability in Windows TCP/IP can be exploited remotely via specially crafted fragmented to obtain sensitive information.
  4. A remote code execution vulnerability in OLE Automation can be exploited remotely via specially crafted website to execute arbitrary code.
  5. A remote code execution vulnerability in MS XML can be exploited remotely via specially crafted website to execute arbitrary code.
  6. A remote code execution vulnerability in Windows can be exploited remotely to execute arbitrary code.
  7. An information disclosure vulnerability in Win32k can be exploited remotely via specially crafted application to obtain sensitive information.
  8. A remote code execution vulnerability in Jet Database Engine can be exploited remotely via specially crafted file to execute arbitrary code.
  9. A remote code execution vulnerability in Windows VBScript Engine can be exploited remotely via specially crafted website to execute arbitrary code.
  10. An elevation of privilege vulnerability in Windows can be exploited remotely via specially crafted application to gain privileges.
  11. A remote code execution vulnerability in Hyper-V vSMB can be exploited remotely via specially crafted application to execute arbitrary code.
  12. An information disclosure vulnerability in DirectX can be exploited remotely via specially crafted application to obtain sensitive information.
  13. An information disclosure vulnerability in Windows GDI can be exploited remotely via specially crafted document to obtain sensitive information.
  14. An elevation of privilege vulnerability in Windows CSRSS can be exploited remotely via specially crafted application to gain privileges.
  15. An elevation of privilege vulnerability in Windows Admin Center can be exploited remotely to gain privileges.
  16. A security feature bypass vulnerability in Windows can be exploited remotely to bypass security restrictions.
  17. An information disclosure vulnerability in Windows Kernel can be exploited remotely via specially crafted application to obtain sensitive information.
  18. A remote code execution vulnerability in GDI+ can be exploited remotely via specially crafted website to execute arbitrary code.
  19. An information disclosure vulnerability in Windows can be exploited remotely via specially crafted application to obtain sensitive information.
Пораженные продукты

Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation)
Windows 10 for x64-based Systems
Windows Server 2012 R2 (Server Core installation)
Windows 10 Version 1709 for ARM64-based Systems
Windows 10 Version 1809 for x64-based Systems
Windows 8.1 for x64-based systems
Windows 10 Version 1803 for 32-bit Systems
Windows Server 2016 (Server Core installation)
Windows 7 for x64-based Systems Service Pack 1
Windows Server 2012 (Server Core installation)
Windows Server 2008 for x64-based Systems Service Pack 2
Windows RT 8.1
Windows Server 2008 R2 for x64-based Systems Service Pack 1
Windows 10 Version 1803 for ARM64-based Systems
Windows 10 Version 1809 for 32-bit Systems
Windows Server, version 1803 (Server Core Installation)
Windows Server 2012
Windows 10 Version 1703 for 32-bit Systems
Windows 10 Version 1703 for x64-based Systems
Windows 10 for 32-bit Systems
Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core installation)
Windows 10 Version 1809 for ARM64-based Systems
Windows Server 2019 (Server Core installation)
Windows 8.1 for 32-bit systems
Windows Server 2012 R2
Windows Server, version 1709 (Server Core Installation)
Windows Server 2008 for 32-bit Systems Service Pack 2
Windows Server 2008 R2 for Itanium-Based Systems Service Pack 1
Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)
Windows Server 2019
Windows 10 Version 1607 for 32-bit Systems
Windows Server 2008 for Itanium-Based Systems Service Pack 2
Windows 7 for 32-bit Systems Service Pack 1
Windows 10 Version 1709 for 32-bit Systems
Windows 10 Version 1607 for x64-based Systems
Windows 10 Version 1709 for 64-based Systems
Windows Server 2016
Windows 10 Version 1803 for x64-based Systems
Windows Admin Center

Решение

Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)

Первичный источник обнаружения
CVE-2019-0845
CVE-2019-0685
CVE-2019-0688
CVE-2019-0794
CVE-2019-0795
CVE-2019-0856
CVE-2019-0803
CVE-2019-0814
CVE-2019-0792
CVE-2019-0879
CVE-2019-0842
CVE-2019-0846
CVE-2019-0796
CVE-2019-0791
CVE-2019-0793
CVE-2019-0790
CVE-2019-0786
CVE-2019-0859
CVE-2019-0837
CVE-2019-0877
CVE-2019-0802
CVE-2019-0847
CVE-2019-0805
CVE-2019-0730
CVE-2019-0849
CVE-2019-0836
CVE-2019-0735
CVE-2019-0813
CVE-2019-0731
CVE-2019-0732
CVE-2019-0840
CVE-2019-0851
CVE-2019-0844
CVE-2019-0853
CVE-2019-0838
CVE-2019-0841
CVE-2019-0848
CVE-2019-0839
Оказываемое влияние
?
ACE 
[?]

OSI 
[?]

SB 
[?]

PE 
[?]
Связанные продукты
Microsoft Windows
Microsoft Windows Server
Microsoft Windows Server 2012
Microsoft Windows 8
Microsoft Windows 7
Microsoft Windows Server 2008
Windows RT
CVE-IDS
CVE-2019-08457.5Critical
CVE-2019-06857.8Critical
CVE-2019-06885.3High
CVE-2019-07947.8Critical
CVE-2019-07957.8Critical
CVE-2019-08566.6High
CVE-2019-08037.0High
CVE-2019-08144.7Warning
CVE-2019-07927.8Critical
CVE-2019-08797.8Critical
CVE-2019-08426.4High
CVE-2019-08467.8Critical
CVE-2019-07966.3High
CVE-2019-07917.8Critical
CVE-2019-07937.8Critical
CVE-2019-07907.8Critical
CVE-2019-07867.8Critical
CVE-2019-08597.8Critical
CVE-2019-08375.5High
CVE-2019-08777.8Critical
CVE-2019-08024.7Warning
CVE-2019-08477.8Critical
CVE-2019-08056.7High
CVE-2019-07306.7High
CVE-2019-08494.7Warning
CVE-2019-08367.0High
CVE-2019-07357.0High
CVE-2019-08130.0Unknown
CVE-2019-07316.8High
CVE-2019-07325.3High
CVE-2019-08405.5High
CVE-2019-08517.8Critical
CVE-2019-08445.5High
CVE-2019-08537.8Critical
CVE-2019-08386.6High
CVE-2019-08416.8High
CVE-2019-08484.7Warning
CVE-2019-08394.4Warning