vulnerability
Microsoft Windows: CVE-2019-1089: Windows RPCSS Elevation of Privilege Vulnerability
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 7 | (AV:L/AC:L/Au:N/C:C/I:C/A:C) | Jul 9, 2019 | Jul 9, 2019 | Sep 5, 2025 |
Severity
7
CVSS
(AV:L/AC:L/Au:N/C:C/I:C/A:C)
Published
Jul 9, 2019
Added
Jul 9, 2019
Modified
Sep 5, 2025
Description
An elevation of privilege vulnerability exists in rpcss.dll when the RPC service Activation Kernel improperly handles an RPC request. To exploit this vulnerability, a low level authenticated attacker could run a specially crafted application. The security update addresses this vulnerability by correcting how rpcss.dll handles these requests., aka 'Windows RPCSS Elevation of Privilege Vulnerability'.
Solutions
microsoft-windows-windows_10-1507-kb4507458microsoft-windows-windows_10-1607-kb4507460microsoft-windows-windows_10-1703-kb4507450microsoft-windows-windows_10-1709-kb4507455microsoft-windows-windows_10-1803-kb4507435microsoft-windows-windows_10-1809-kb4507469microsoft-windows-windows_10-1903-kb4507453microsoft-windows-windows_server_2012-kb4507464microsoft-windows-windows_server_2012_r2-kb4507457microsoft-windows-windows_server_2016-1607-kb4507460microsoft-windows-windows_server_2019-1809-kb4507469msft-kb4507453-8cedcb21-0200-433d-b32d-2d5ef741adecmsft-kb4507456-256714d3-2030-469c-8c6a-f30ff5ea5a10msft-kb4507456-5c94bfe0-3546-493d-8de2-61342cbf5b96msft-kb4507456-7cdee6a8-6f30-423e-b02c-3453e14e3a6emsft-kb4507456-8ef94183-d630-48d8-8a60-d1a66f5bf53dmsft-kb4507456-a1f24376-4aff-404e-bb04-f6d00686d6dcmsft-kb4507456-df8085cf-9e2a-463b-92f3-e8c2dd920fe0msft-kb4507457-3848287d-d32e-4e7b-b6a1-798ba1329599msft-kb4507457-d8ac2164-d4d1-442d-adfa-0b5a886bd8c0msft-kb4507461-585d930e-fe25-4ca6-ad2f-8ec034309c40msft-kb4507461-6e49345e-8807-48dd-be6d-fb5433bcddcdmsft-kb4507461-f8662637-4580-4357-90a2-1e71f6c51021msft-kb4507464-53bbafce-c9f3-4c30-aeff-c2ffb48b3773msft-kb4507464-a4fb9a27-eaf9-4ace-8ae1-31cd7b5621d7
References
- CVE-2019-1089
- https://attackerkb.com/topics/CVE-2019-1089
- URL-https://support.microsoft.com/help/4507435
- URL-https://support.microsoft.com/help/4507450
- URL-https://support.microsoft.com/help/4507453
- URL-https://support.microsoft.com/help/4507455
- URL-https://support.microsoft.com/help/4507457
- URL-https://support.microsoft.com/help/4507458
- URL-https://support.microsoft.com/help/4507460
- URL-https://support.microsoft.com/help/4507464
- URL-https://support.microsoft.com/help/4507469
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.