CVE-2019-1476

EPSS 5.1%

An elevation of privilege vulnerability exists when Windows AppX Deployment Service (AppXSVC) improperly handles hard links, aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1483.

Produtos afetados

Microsoft · Windows Microsoft · Windows 10 Version 1903 for 32-bit Systems Microsoft · Windows 10 Version 1903 for ARM64-based Systems Microsoft · Windows 10 Version 1903 for x64-based Systems Microsoft · Windows 10 Version 1909 for 32-bit Systems Microsoft · Windows 10 Version 1909 for ARM64-based Systems Microsoft · Windows 10 Version 1909 for x64-based Systems Microsoft · Windows Server Microsoft · Windows Server, version 1903 (Server Core installation)Microsoft · Windows Server, version 1909 (Server Core installation)

PoCs públicas encontradas — 3

githubgithub.com/sgabe/CVE-2019-1476★ 3 cve_referencepacketstormsecurity.com/files/155653/AppXSvc-17763-Arbitrary-File-Overwrite.htmlnão verificado exploitdbwww.exploit-db.com/exploits/47768não verificado

⚠ Recursos públicos, para você avaliar a exposição de sistemas que controla ou está autorizado a testar. Teste apenas com autorização.

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

http://packetstormsecurity.com/files/155653/AppXSvc-17763-Arbitrary-File-Overwrite.html https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1476