Multiple vulnerabilities in Microsoft Products (ESU)

Описание

Multiple vulnerabilities were found in Microsoft Products (Extended Support Update). Malicious users can exploit these vulnerabilities to execute arbitrary code, gain privileges, obtain sensitive information, bypass security restrictions.

Below is a complete list of vulnerabilities:

1. A remote code execution vulnerability in VBScript can be exploited remotely via specially crafted website to execute arbitrary code.
2. An elevation of privilege vulnerability in Windows Text Service Framework can be exploited remotely via specially crafted application to gain privileges.
3. An elevation of privilege vulnerability in Windows can be exploited remotely via specially crafted application to gain privileges.
4. An elevation of privilege vulnerability in Windows Common Log File System Driver can be exploited remotely via specially crafted application to gain privileges.
5. An information disclosure vulnerability in DirectX can be exploited remotely via specially crafted application to obtain sensitive information.
6. An information disclosure vulnerability in Windows Transaction Manager can be exploited remotely via specially crafted application to obtain sensitive information.
7. An elevation of privilege vulnerability in Windows Media can be exploited remotely via specially crafted application to gain privileges.
8. An elevation of privilege vulnerability in Win32k can be exploited remotely via specially crafted application to gain privileges.
9. A remote code execution vulnerability in Jet Database Engine can be exploited remotely via specially crafted file to execute arbitrary code.
10. An information disclosure vulnerability in Windows Kernel can be exploited remotely via specially crafted application to obtain sensitive information.
11. An information disclosure vulnerability in Windows Common Log File System Driver can be exploited remotely via specially crafted application to obtain sensitive information.
12. An information disclosure vulnerability in Microsoft Graphics Components can be exploited remotely via specially crafted file to obtain sensitive information.
13. A remote code execution vulnerability in LNK can be exploited remotely to execute arbitrary code.
14. An information disclosure vulnerability in Windows GDI can be exploited remotely via specially crafted document to obtain sensitive information.
15. An elevation of privilege vulnerability in DirectX can be exploited remotely via specially crafted application to gain privileges.
16. A remote code execution vulnerability in Remote Desktop Client can be exploited remotely to execute arbitrary code.
17. A security feature bypass vulnerability in Microsoft Browser can be exploited remotely via specially crafted to bypass security restrictions.
18. An elevation of privilege vulnerability in Microsoft Compatibility Appraiser can be exploited remotely via specially crafted application to gain privileges.
19. An information disclosure vulnerability in DirectWrite can be exploited remotely via specially crafted document to obtain sensitive information.
20. An elevation of privilege vulnerability in Winlogon can be exploited remotely via specially crafted application to gain privileges.
21. An information disclosure vulnerability in Windows SMB Client Driver can be exploited remotely via specially crafted application to obtain sensitive information.

Первичный источник обнаружения

• CVE-2019-1236
  CVE-2019-1235
  CVE-2019-1215
  CVE-2019-1214
  CVE-2019-1216
  CVE-2019-1219
  CVE-2019-1271
  CVE-2019-1256
  CVE-2019-1250
  CVE-2019-1274
  CVE-2019-1242
  CVE-2019-1282
  CVE-2019-1283
  CVE-2019-1280
  CVE-2019-1252
  CVE-2019-1286
  CVE-2019-1284
  CVE-2019-1285
  CVE-2019-0787
  CVE-2019-1220
  CVE-2019-1291
  CVE-2019-1267
  CVE-2019-1248
  CVE-2019-1249
  CVE-2019-1246
  CVE-2019-1247
  CVE-2019-1244
  CVE-2019-1245
  CVE-2019-1268
  CVE-2019-1243
  CVE-2019-1240
  CVE-2019-1241
  CVE-2019-1208
  CVE-2019-1290
  CVE-2019-1293
  

Эксплуатация

Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.

Связанные продукты

• Microsoft-Internet-Explorer
• Microsoft-Office
• Microsoft-Windows
• Microsoft-Windows-Server
• Microsoft-Windows-Server-2012
• Microsoft-Windows-8
• Microsoft-Windows-7
• Microsoft-Windows-Server-2008
• Windows-RT
• Microsoft-Windows-10
• Microsoft-Edge

Список CVE

• CVE-2019-1246
  critical
• CVE-2019-1215
  high
• CVE-2019-1250
  critical
• CVE-2019-1293
  warning
• CVE-2019-1249
  critical
• CVE-2019-1242
  critical
• CVE-2019-1286
  warning
• CVE-2019-1240
  critical
• CVE-2019-1252
  warning
• CVE-2019-1291
  critical
• CVE-2019-1216
  warning
• CVE-2019-1256
  high
• CVE-2019-1248
  critical
• CVE-2019-1271
  high
• CVE-2019-0787
  critical
• CVE-2019-1241
  critical
• CVE-2019-1247
  critical
• CVE-2019-1290
  critical
• CVE-2019-1244
  warning
• CVE-2019-1267
  high
• CVE-2019-1280
  critical
• CVE-2019-1268
  high
• CVE-2019-1285
  high
• CVE-2019-1284
  high
• CVE-2019-1219
  warning
• CVE-2019-1214
  high
• CVE-2019-1243
  critical
• CVE-2019-1282
  warning
• CVE-2019-1283
  warning
• CVE-2019-1274
  warning
• CVE-2019-1235
  high
• CVE-2019-1245
  warning
• CVE-2019-1220
  warning
• CVE-2019-1236
  critical
• CVE-2019-1208
  critical

Список KB

• 4516051
• 4516065
• 4516026
• 4516033
• 4516046

Смотрите также

Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com