PT-2019-3049 · Microsoft · Windows Core Shell Com Server Registrar+1
Published
2019-08-13
·
Updated
2024-05-29
·
CVE-2019-1184
CVSS v2.0
7.2
High
| Vector | AV:L/AC:L/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
Windows Core Shell COM Server Registrar (affected versions not specified)
Description
An elevation of privilege issue exists due to improper handling of COM calls by the Windows Core Shell COM Server Registrar. This could allow an attacker to elevate permissions by setting certain items to run at a higher level. To exploit this, an attacker must first log on to the system and then run a specially crafted application to take control of the affected system.
Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Exploit
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Windows
Windows Core Shell Com Server Registrar