Rapid7 Vulnerability & Exploit Database

Microsoft Windows: CVE-2019-1411: DirectWrite Information Disclosure Vulnerability

Free InsightVM Trial No Credit Card Necessary
2024 Attack Intel Report Latest research by Rapid7 Labs
Back to Search

Microsoft Windows: CVE-2019-1411: DirectWrite Information Disclosure Vulnerability

Severity
4
CVSS
(AV:N/AC:M/Au:N/C:P/I:N/A:N)
Published
11/12/2019
Created
11/13/2019
Added
11/12/2019
Modified
09/11/2024

Description

An information disclosure vulnerability exists when DirectWrite improperly discloses the contents of its memory, aka 'DirectWrite Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-1432.

Solution(s)

  • microsoft-windows-windows_10-1507-kb4525232
  • microsoft-windows-windows_10-1607-kb4525236
  • microsoft-windows-windows_10-1709-kb4525241
  • microsoft-windows-windows_10-1803-kb4525237
  • microsoft-windows-windows_10-1809-kb4523205
  • microsoft-windows-windows_10-1903-kb4524570
  • microsoft-windows-windows_server_2012-kb4525253
  • microsoft-windows-windows_server_2012_r2-kb4525250
  • microsoft-windows-windows_server_2016-1607-kb4525236
  • microsoft-windows-windows_server_2019-1809-kb4523205
  • msft-kb4524570-92bf4fc2-1423-4d57-b6e6-109109dab39b
  • msft-kb4524570-a464324d-52ab-4b91-b5eb-15b5e8dfaa70
  • msft-kb4525233-34a5a286-7aae-469a-b1ac-0dbd98b48c9c
  • msft-kb4525233-357b9972-1dd5-46b6-b9fe-673f633e8a66
  • msft-kb4525233-3afe4f42-95e2-4768-af34-961a45c232a5
  • msft-kb4525233-676c08bf-e63d-48fe-b1f2-72b66ff22d0a
  • msft-kb4525233-682289d3-16c4-4e74-8f67-749cc358025c
  • msft-kb4525233-a9622cac-8e55-4fd3-bc1c-715655fde5a5
  • msft-kb4525239-5d291263-6be8-4c4c-b375-01b786fc7181
  • msft-kb4525239-abb20615-fb10-4359-9dea-631b15cabb37
  • msft-kb4525239-d1be2ef4-66c3-414f-a06a-10323a6a6225
  • msft-kb4525250-39712f55-86cb-4200-9005-8d57cd91032e
  • msft-kb4525250-c95046b7-a6dd-4d23-9b73-68722b2533f4
  • msft-kb4525253-b11910e5-0a1d-4bdd-b307-3a56d5e3f1ee
  • msft-kb4525253-daab0091-1e65-4624-b280-015c007f30c1

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;