Microsoft CVE-2019-1082: Microsoft Windows Elevation of Privilege Vulnerability
7
(AV:L/AC:L/Au:N/C:C/I:C/A:C)
07/09/2019
07/10/2019
07/09/2019
11/18/2021
Description
An elevation of privilege vulnerability exists in Microsoft Windows where a certain DLL, with Local Service privilege, is vulnerable to race planting a customized DLL. An attacker who successfully exploited this vulnerability could potentially elevate privilege to SYSTEM. The update addresses this vulnerability by requiring SYSTEM privileges for a certain DLL.
Solution(s)
- msft-kb4507456-256714d3-2030-469c-8c6a-f30ff5ea5a10
- msft-kb4507456-5c94bfe0-3546-493d-8de2-61342cbf5b96
- msft-kb4507456-7cdee6a8-6f30-423e-b02c-3453e14e3a6e
- msft-kb4507456-8ef94183-d630-48d8-8a60-d1a66f5bf53d
- msft-kb4507456-a1f24376-4aff-404e-bb04-f6d00686d6dc
- msft-kb4507456-df8085cf-9e2a-463b-92f3-e8c2dd920fe0
- msft-kb4507457-3848287d-d32e-4e7b-b6a1-798ba1329599
- msft-kb4507457-66318eca-fd0b-4e3e-b0f6-b0992e0f5d7c
- msft-kb4507457-d8ac2164-d4d1-442d-adfa-0b5a886bd8c0
- msft-kb4507458-138c1b7d-e52b-426f-9880-faed31e298dd
- msft-kb4507458-6cc21b8f-e92c-4406-872c-c5964a38af75
- msft-kb4507460-4b7e8790-e16d-4c77-b790-c08045983154
- msft-kb4507460-a528e8a9-d68e-4d64-91dd-65db127836ec
- msft-kb4507460-a9da78d9-858d-4639-b819-1723d2051c39
- msft-kb4507464-53bbafce-c9f3-4c30-aeff-c2ffb48b3773
- msft-kb4507464-7ff2664d-6c32-4479-ba6d-3f8822f8128d
- msft-kb4507464-a4fb9a27-eaf9-4ace-8ae1-31cd7b5621d7
Advanced vulnerability management analytics and reporting.
Key Features
- Lightweight Endpoint Agent
- Live Dashboards
- Real Risk Prioritization
- IT-Integrated Remediation Projects
- Cloud, Virtual, and Container Assessment
- Integrated Threat Feeds
- Easy-to-Use RESTful API
- Automation-Assisted Patching
- Automated Containment
With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.
– Scott Cheney, Manager of Information Security, Sierra View Medical Center