CVE-2019-0552

Name of the Vulnerable Software and Affected Versions: Windows Server 2012 R2 Windows RT 8.1 Windows Server 2019 Windows Server 2016 Windows 8.1 Windows 10 Windows 10 Servers

Description: The issue is related to an elevation of privilege in Windows COM Desktop Broker. It is caused by a buffer overflow in memory, which can be exploited by an attacker to execute arbitrary code with elevated privileges using a specially crafted application. This allows attackers to affect the system.

Recommendations: For Windows Server 2012 R2, update to a version that includes the fix for this issue. For Windows RT 8.1, update to a version that includes the fix for this issue. For Windows Server 2019, update to a version that includes the fix for this issue. For Windows Server 2016, update to a version that includes the fix for this issue. For Windows 8.1, update to a version that includes the fix for this issue. For Windows 10, update to a version that includes the fix for this issue. For Windows 10 Servers, update to a version that includes the fix for this issue. As a temporary workaround, consider restricting access to the COM Desktop Broker component until a patch is available.