PT-2019-2313 · Microsoft · Windows

Publicado

2019-05-14

Atualizado

2020-08-24

CVE-2019-0707

CVSS v3.1

7.0

Alta

Vetor

AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Windows (affected versions not specified)

Description An elevation of privilege issue exists due to the failure of ndis.sys to check the length of a buffer prior to copying memory to it. This could allow an attacker to elevate their privilege level by running a specially crafted application in a local attack scenario.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

LPE

Buffer Overflow

Memory Corruption

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-119CWE-787

Identificadores relacionados

BDU:2019-02084

CVE-2019-0707

Produtos afetados

Windows

PT-2019-2313 · Microsoft · Windows

CVE-2019-0707

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 6