CVE-2019-0697 — Out-of-bounds Write in Microsoft Windows

CWE-787 — Out-of-bounds Write9 documents4 sources

Severity

9.8CRITICALNVD

EPSS

30.5%

top 3.29%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Microsoft Windows Microsoft Windows Server Microsoft Windows 10 +9 more

Timeline

PublishedApr 9

Latest updateMay 13

Description

A memory corruption vulnerability exists in the Windows DHCP client when an attacker sends specially crafted DHCP responses to a client, aka 'Windows DHCP Client Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-0698, CVE-2019-0726.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages12 packages

▶msrcmsrc/windows_server_2019

▶CVEListV5microsoft/windows6 versions+5

▶NVDmicrosoft/windows1803

▶NVDmicrosoft/windows_101803, 1809+1

▶CVEListV5microsoft/windows_server2019, 2019 (Core installation), version 1803 (Core Installation)+2

Patches

Patch: portal.msrc.microsoft.com ↗Patch: portal.msrc.microsoft.com ↗

🔴Vulnerability Details

GHSA

GHSA-xfvv-5229-rm3v: A memory corruption vulnerability exists in the Windows DHCP client when an attacker sends specially crafted DHCP responses to a client, aka 'Windows↗2022-05-13

▶

GHSA

GHSA-c773-95pr-cwwc: A memory corruption vulnerability exists in the Windows DHCP client when an attacker sends specially crafted DHCP responses to a client, aka 'Windows↗2022-05-13

▶

GHSA

GHSA-4p2v-3qr6-pv3r: A memory corruption vulnerability exists in the Windows DHCP client when an attacker sends specially crafted DHCP responses to a client, aka 'Windows↗2022-05-13

▶

📋Vendor Advisories

Microsoft

Windows DHCP Client Remote Code Execution Vulnerability↗2019-03-12

▶

💬Community

Bugzilla

CVE-2018-8788 freerdp: Out-of-bounds write in nsc_rle_decode() function↗2019-01-31

▶

Bugzilla

CVE-2018-8787 freerdp: Integer overflow leading to heap-based buffer overflow in gdi_Bitmap_Decompress() function↗2019-01-31

▶