CVE-2019-0863

Describe

An elevation of privilege vulnerability exists in the way Windows Error Reporting (WER) handles files, aka 'Windows Error Reporting Elevation of Privilege Vulnerability'.

ImpactVersion

Product	CPU Architecture	Version	Update
Windows 7	x86/x64		SP1
Windows Rt
Windows 8.1	x86/x64
Windows 10	x86/x64
Windows 10	x86/x64	1607
Windows 10	x86/x64	1703
Windows 10	x86/x64	1709
Windows 10	x86/x64/arm64	1803
Windows 10	x86/x64/arm64	1809
Windows 10	x86/x64/arm64	1903
Windows Server 2008	x86/x64	R2	SP1
Windows Server 2012		R2
Windows Server 2012
Windows Server 2016
Windows Server 2019
Windows Server		1803
Windows Server		1903

Patch

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0863

Utilization

The vulnerability does not test, the root directory is stored in the network collection [CVE number] .zip EXP or POC, code status unknown

ProjectSource

sailay1996

Analyse

https://xz.aliyun.com/t/5571
https://unit42.paloaltonetworks.com/tale-of-a-windows-error-reporting-zero-day-cve-2019-0863/
https://www.anquanke.com/post/id/181457

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

README_EN.md

README_EN.md

CVE-2019-0863

Describe

ImpactVersion

Patch

Utilization

ProjectSource

Analyse

Files

README_EN.md

Latest commit

History

README_EN.md

File metadata and controls

CVE-2019-0863

Describe

ImpactVersion

Patch

Utilization

ProjectSource

Analyse