CVE-2019-1041Time-of-check Time-of-use (TOCTOU) Race Condition in Microsoft Windows 10 Version 1803

CWE-367Time-of-check Time-of-use (TOCTOU) Race Condition6 documents5 sources
Severity
7.0HIGHNVD
EPSS
0.2%
top 61.78%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
20
Microsoft Windows 10 Version 1803Microsoft Windows 10 Version 1809Microsoft Windows 10 Version 1903 FOR 32-bit Systems+17 more
Timeline
PublishedJun 12
Latest updateMay 24

Description

An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. To exploit this vulnerability, an attacker would first have to log on to the system. An attacker could then run a specially crafted application to take control of an aff

CVSS vector

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.0 | Impact: 5.9

Affected Packages20 packages

Patches

Patch: portal.msrc.microsoft.com

🔴Vulnerability Details

2
GHSA
GHSA-fc4q-h4c5-r84v: An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory, aka 'Windows Kernel Elevation of Pr2022-05-24
GHSA
GHSA-qh3m-6928-wcvv: An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory, aka 'Windows Kernel Elevation of Pr2022-05-24

💥Exploits & PoCs

1
Exploit-DB
Dokany 1.2.0.1000 - Stack-Based Buffer Overflow Privilege Escalation2019-01-14

📋Vendor Advisories

1
Microsoft
Windows Kernel Elevation of Privilege Vulnerability2019-06-11

🕵️Threat Intelligence

1
Zscaler
Zscaler found Multiple Security Vulnerabilities | 06-11-2019
CVE-2019-1041 — Microsoft vulnerability | cvebase