vulnerability

Microsoft Windows: CVE-2019-1090: Windows dnsrslvr.dll Elevation of Privilege Vulnerability

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
7	(AV:L/AC:L/Au:N/C:C/I:C/A:C)	Jul 9, 2019	Jul 9, 2019	Sep 5, 2025

Severity

CVSS

(AV:L/AC:L/Au:N/C:C/I:C/A:C)

Published

Jul 9, 2019

Added

Jul 9, 2019

Modified

Sep 5, 2025

Description

An elevation of privilege vulnerability exists in the way that the dnsrslvr.dll handles objects in memory, aka 'Windows dnsrlvr.dll Elevation of Privilege Vulnerability'.

Solutions

microsoft-windows-windows_10-1803-kb4507435microsoft-windows-windows_10-1809-kb4507469microsoft-windows-windows_10-1903-kb4507453microsoft-windows-windows_server_2019-1809-kb4507469msft-kb4507453-8cedcb21-0200-433d-b32d-2d5ef741adec

References

CVE-2019-1090
https://attackerkb.com/topics/CVE-2019-1090
https://support.microsoft.com/help/4507435
https://support.microsoft.com/help/4507453
https://support.microsoft.com/help/4507469

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report