CVE-2019-1162

Name of the Vulnerable Software and Affected Versions Windows (affected versions not specified)

Description The issue is related to errors in handling Advanced Local Process Call (ALPC) calls, which can be exploited to elevate privileges and execute arbitrary code using a specially crafted application. An attacker who successfully exploits this issue could run arbitrary code in the security context of the local system, allowing them to install programs, view, change, or delete data, or create new accounts with full user rights. To exploit this issue, an attacker would first need to log on to the system and then run a specially crafted application.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.