CVE-2019-1180

Name of the Vulnerable Software and Affected Versions Windows (affected versions not specified)

Description The issue is related to errors in handling objects in memory by the wcmsvc.dll library in the Windows operating system. This could allow an attacker to elevate their privileges and execute arbitrary code using a specially crafted application. A locally authenticated attacker could exploit this issue by running such an application.

Recommendations To resolve the issue, apply the security update that ensures the wcmsvc.dll properly handles objects in memory. As a temporary workaround, consider restricting access to the wcmsvc.dll library until the security update is applied. Avoid running specially crafted applications from untrusted sources to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.