CVE-2019-1322

CVE-2019-1322

描述

An elevation of privilege vulnerability exists when Windows improperly handles authentication requests, aka 'Microsoft Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1320, CVE-2019-1340.

影响版本

Product	CPU Architecture	Version	Update	Tested
Windows 10	x86/x64/arm64	1803
Windows 10	x86/x64/arm64	1809
Windows 10	x86/x64/arm64	1903
Windows Server 2019
Windows Server		1803
Windows Server		1903

修复补丁

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1322

利用方式

该漏洞并未进行测试，根目录留存着网络收集**[CVE编号].zip**的EXP或者POC，代码状态未知

项目来源

• apt69

分析文章

• https://www.nccgroup.trust/uk/about-us/newsroom-and-events/blogs/2019/november/cve-2019-1405-and-cve-2019-1322-elevation-to-system-via-the-upnp-device-host-service-and-the-update-orchestrator-service/
• https://www.anquanke.com/post/id/193022
• https://nosec.org/m/share/3177.html