CVE-2019-1215

Name of the Vulnerable Software and Affected Versions Microsoft Windows versions prior to the fixed version

Description The issue is related to a driver vulnerability in the ws2ifsl.sys (Winsock) component of the Windows operating system, which is associated with errors in processing objects in memory. Exploitation of this issue may allow an attacker to execute arbitrary code in the target system with administrator privileges using a specially crafted application. This is an elevation-of-privilege vulnerability that allows attackers to affect the system.

Recommendations For Microsoft Windows versions prior to the fixed version, apply the patches from the security bulletin to fix the vulnerability. As a temporary workaround, consider restricting access to the ws2ifsl.sys driver until a patch is available. Avoid using applications that may trigger the exploitation of this vulnerability until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.