CVE-2019-1476

EPSS 5.1%

An elevation of privilege vulnerability exists when Windows AppX Deployment Service (AppXSVC) improperly handles hard links, aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1483.

Productos afectados

Microsoft · Windows Microsoft · Windows 10 Version 1903 for 32-bit Systems Microsoft · Windows 10 Version 1903 for ARM64-based Systems Microsoft · Windows 10 Version 1903 for x64-based Systems Microsoft · Windows 10 Version 1909 for 32-bit Systems Microsoft · Windows 10 Version 1909 for ARM64-based Systems Microsoft · Windows 10 Version 1909 for x64-based Systems Microsoft · Windows Server Microsoft · Windows Server, version 1903 (Server Core installation)Microsoft · Windows Server, version 1909 (Server Core installation)

PoCs públicas encontradas — 3

githubgithub.com/sgabe/CVE-2019-1476★ 3 cve_referencepacketstormsecurity.com/files/155653/AppXSvc-17763-Arbitrary-File-Overwrite.htmlno verificado exploitdbwww.exploit-db.com/exploits/47768no verificado

⚠ Recursos públicos, para evaluar la exposición de sistemas que controlas o estás autorizado a probar. Prueba solo con autorización.

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

http://packetstormsecurity.com/files/155653/AppXSvc-17763-Arbitrary-File-Overwrite.html https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1476