CVE-2019-1173
published 2019-08-14CVE-2019-1173: An elevation of privilege vulnerability exists in the way that the PsmServiceExtHost.dll handles objects in memory. An attacker who successfully exploited the…
high7CVSS 3.1
AVLACHPRLUINSUCHIHAH
An elevation of privilege vulnerability exists in the way that the PsmServiceExtHost.dll handles objects in memory. An attacker who successfully exploited the vulnerability could execute code with elevated permissions.
To exploit the vulnerability, a locally authenticated attacker could run a specially crafted application.
The security update addresses the vulnerability by ensuring the PsmServiceExtHost.dll properly handles objects in memory.
Affected
24 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| microsoft | windows_10 | — | — |
| microsoft | windows_10 | — | — |
| microsoft | windows_10 | — | — |
| microsoft | windows_10_version_1803 | >= 10.0.0 < publication | publication |
| microsoft | windows_10_version_1809 | >= 10.0.0 < publication | publication |
| microsoft | windows_10_version_1903_for_32-bit_systems | >= 10.0.0 < publication | publication |
| microsoft | windows_10_version_1903_for_arm64-based_systems | >= 10.0.0 < publication | publication |
| microsoft | windows_10_version_1903_for_x64-based_systems | >= 10.0.0 < publication | publication |
| microsoft | windows_server_2016 | — | — |
| microsoft | windows_server_2016 | — | — |
| microsoft | windows_server_2019 | >= 10.0.0 < publication | publication |
| msrc | power_bi_report_server | — | — |
| msrc | windows_10_version_1803_for_32-bit_systems | — | — |
| msrc | windows_10_version_1803_for_arm64-based_systems | — | — |
| msrc | windows_10_version_1803_for_x64-based_systems | — | — |
| msrc | windows_10_version_1809_for_32-bit_systems | — | — |
| msrc | windows_10_version_1809_for_arm64-based_systems | — | — |
| msrc | windows_10_version_1809_for_x64-based_systems | — | — |
| msrc | windows_10_version_1903_for_32-bit_systems | — | — |
| msrc | windows_10_version_1903_for_arm64-based_systems | — | — |
| msrc | windows_10_version_1903_for_x64-based_systems | — | — |
| msrc | windows_server_2019 | — | — |
| msrc | windows_server_version_1803 | — | — |
| msrc | windows_server_version_1903 | — | — |
GHSA
GHSA-5xj6-qhjx-f6xh: An elevation of privilege vulnerability exists in the way that the wcmsvc
ghsa_unreviewed·2022-05-24·CVSS 7.0
CVE-2019-1180 [HIGH] GHSA-5xj6-qhjx-f6xh: An elevation of privilege vulnerability exists in the way that the wcmsvc
An elevation of privilege vulnerability exists in the way that the wcmsvc.dll handles objects in memory, aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1173, CVE-2019-1174, CVE-2019-1175, CVE-2019-1177, CVE-2019-1178, CVE-2019-1179, CVE-2019-1184, CVE-2019-1186.
GHSA
GHSA-82mq-2jww-m58g: An elevation of privilege vulnerability exists in the way that the unistore
ghsa_unreviewed·2022-05-24·CVSS 7.0
CVE-2019-1179 [HIGH] GHSA-82mq-2jww-m58g: An elevation of privilege vulnerability exists in the way that the unistore
An elevation of privilege vulnerability exists in the way that the unistore.dll handles objects in memory, aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1173, CVE-2019-1174, CVE-2019-1175, CVE-2019-1177, CVE-2019-1178, CVE-2019-1180, CVE-2019-1184, CVE-2019-1186.
GHSA
GHSA-f245-h455-7hqv: An elevation of privilege vulnerability exists in the way that the PsmServiceExtHost
ghsa_unreviewed·2022-05-24·CVSS 7.0
CVE-2019-1173 [HIGH] GHSA-f245-h455-7hqv: An elevation of privilege vulnerability exists in the way that the PsmServiceExtHost
An elevation of privilege vulnerability exists in the way that the PsmServiceExtHost.dll handles objects in memory, aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1174, CVE-2019-1175, CVE-2019-1177, CVE-2019-1178, CVE-2019-1179, CVE-2019-1180, CVE-2019-1184, CVE-2019-1186.
GHSA
GHSA-vfjm-94qj-mfgw: An elevation of privilege vulnerability exists in the way that the ssdpsrv
ghsa_unreviewed·2022-05-24·CVSS 7.0
CVE-2019-1178 [HIGH] GHSA-vfjm-94qj-mfgw: An elevation of privilege vulnerability exists in the way that the ssdpsrv
An elevation of privilege vulnerability exists in the way that the ssdpsrv.dll handles objects in memory, aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1173, CVE-2019-1174, CVE-2019-1175, CVE-2019-1177, CVE-2019-1179, CVE-2019-1180, CVE-2019-1184, CVE-2019-1186.
GHSA
GHSA-5fw3-2234-g822: An elevation of privilege vulnerability exists in the way that the psmsrv
ghsa_unreviewed·2022-05-24·CVSS 7.0
CVE-2019-1175 [HIGH] CWE-269 GHSA-5fw3-2234-g822: An elevation of privilege vulnerability exists in the way that the psmsrv
An elevation of privilege vulnerability exists in the way that the psmsrv.dll handles objects in memory, aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1173, CVE-2019-1174, CVE-2019-1177, CVE-2019-1178, CVE-2019-1179, CVE-2019-1180, CVE-2019-1184, CVE-2019-1186.
GHSA
GHSA-xr5g-7pxf-gp8f: An elevation of privilege vulnerability exists in the way that the rpcss
ghsa_unreviewed·2022-05-24·CVSS 7.0
CVE-2019-1177 [HIGH] CWE-269 GHSA-xr5g-7pxf-gp8f: An elevation of privilege vulnerability exists in the way that the rpcss
An elevation of privilege vulnerability exists in the way that the rpcss.dll handles objects in memory, aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1173, CVE-2019-1174, CVE-2019-1175, CVE-2019-1178, CVE-2019-1179, CVE-2019-1180, CVE-2019-1184, CVE-2019-1186.
GHSA
GHSA-hxfv-8253-2p76: An elevation of privilege vulnerability exists in the way that the wcmsvc
ghsa_unreviewed·2022-05-24·CVSS 7.0
CVE-2019-1186 [HIGH] GHSA-hxfv-8253-2p76: An elevation of privilege vulnerability exists in the way that the wcmsvc
An elevation of privilege vulnerability exists in the way that the wcmsvc.dll handles objects in memory, aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1173, CVE-2019-1174, CVE-2019-1175, CVE-2019-1177, CVE-2019-1178, CVE-2019-1179, CVE-2019-1180, CVE-2019-1184.
GHSA
GHSA-24jg-p7g4-p8rm: An elevation of privilege vulnerability exists when Windows Core Shell COM Server Registrar improperly handles COM calls, aka 'Windows Elevation of Pr
ghsa_unreviewed·2022-05-24·CVSS 7.0
CVE-2019-1184 [HIGH] GHSA-24jg-p7g4-p8rm: An elevation of privilege vulnerability exists when Windows Core Shell COM Server Registrar improperly handles COM calls, aka 'Windows Elevation of Pr
An elevation of privilege vulnerability exists when Windows Core Shell COM Server Registrar improperly handles COM calls, aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1173, CVE-2019-1174, CVE-2019-1175, CVE-2019-1177, CVE-2019-1178, CVE-2019-1179, CVE-2019-1180, CVE-2019-1186.
GHSA
GHSA-9qcm-3p54-9cgq: An elevation of privilege vulnerability exists in the way that the PsmServiceExtHost
ghsa_unreviewed·2022-05-24·CVSS 7.0
CVE-2019-1174 [HIGH] CWE-1257 GHSA-9qcm-3p54-9cgq: An elevation of privilege vulnerability exists in the way that the PsmServiceExtHost
An elevation of privilege vulnerability exists in the way that the PsmServiceExtHost.dll handles objects in memory, aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1173, CVE-2019-1175, CVE-2019-1177, CVE-2019-1178, CVE-2019-1179, CVE-2019-1180, CVE-2019-1184, CVE-2019-1186.
Red Hat
ghostscript: Mishandling of .completefont (incomplete fix for CVE-2019-3839)
vendor_redhat·2022-04-25·CVSS 7.8
CVE-2019-25059 [HIGH] CWE-1173 ghostscript: Mishandling of .completefont (incomplete fix for CVE-2019-3839)
ghostscript: Mishandling of .completefont (incomplete fix for CVE-2019-3839)
Artifex Ghostscript through 9.26 mishandles .completefont. NOTE: this issue exists because of an incomplete fix for CVE-2019-3839.
Package: ghostscript (Red Hat Enterprise Linux 6) - Not affected
Package: ghostscript (Red Hat Enterprise Linux 7) - Not affected
Package: ghostscript (Red Hat Enterprise Linux 8) - Will not fix
Package: gimp:flatpak/ghostscript (Red Hat Enterprise Linux 8) - Will not fix
Package: ghostscript (Red Hat Enterprise Linux 9) - Will not fix
Microsoft
Microsoft Power BI Report Server Spoofing Vulnerability
vendor_msrc·2020-05-12·CVSS 6.8
CVE-2020-1173 [MEDIUM] Microsoft Power BI Report Server Spoofing Vulnerability
Microsoft Power BI Report Server Spoofing Vulnerability
Description: A spoofing vulnerability exists in Microsoft Power BI Report Server in the way it validates the content-type of uploaded attachments. An authenticated attacker could exploit the vulnerability by uploading a specially crafted payload and sending it to the user.
The attacker who successfully exploited this vulnerability could then perform actions and run scripts in the security context of the user.
This security update addresses the vulnerability by ensuring Power BI Report Server properly validates content-type of the attachments when uploading and opening.
FAQ: What version of Power BI has this vulnerability?
The version of Power BI that contains the vulnerability is the May 2019 Release, version 1.5.7074.36177 (Build
Microsoft
Windows Elevation of Privilege Vulnerability
vendor_msrc·2019-08-13·CVSS 7.0
CVE-2019-1173 [HIGH] Windows Elevation of Privilege Vulnerability
Windows Elevation of Privilege Vulnerability
Description: An elevation of privilege vulnerability exists in the way that the PsmServiceExtHost.dll handles objects in memory. An attacker who successfully exploited the vulnerability could execute code with elevated permissions.
To exploit the vulnerability, a locally authenticated attacker could run a specially crafted application.
The security update addresses the vulnerability by ensuring the PsmServiceExtHost.dll properly handles objects in memory.
Microsoft Windows: Microsoft Windows
Microsoft: Microsoft
Impact: Elevation of Privilege
Exploit Status: Publicly Disclosed:No;Exploited:No;Latest Software Release:Exploitation More Likely;Older Software Release:Exploitation More Likely;DOS:N/A
Reference: https://catalog.update.microsoft.
No detection rules found.
No public exploits indexed.
Talos
Microsoft Patch Tuesday — Aug. 2019: Vulnerability disclosures and Snort coverage
blogs_talos·2019-08-13·CVSS 9.1
[CRITICAL] Microsoft Patch Tuesday — Aug. 2019: Vulnerability disclosures and Snort coverage
Microsoft released its monthly security update today, disclosing a variety of vulnerabilities in several of its products. The latest Patch Tuesday covers 97 vulnerabilities, 31 of which are rated “critical," 65 that are considered "important" and one "moderate."
This month’s security update covers security issues in a variety of Microsoft services and software, including certain graphics components, Outlook and the Chakra Scripting Engine. For more on our coverage of these bugs, check out our Snort advisories here, covering all of the new rules we have for this release.
### Critical vulnerabilities Microsoft disclosed 31 critical vulnerabilities this month, three of which we will highlight below.
CVE-2019-1181 and CVE-2019-1182 are both remote code execution vulnerabilities in Remote De
Talos
Microsoft Patch Tuesday — Aug. 2019: Vulnerability disclosures and Snort coverage
blogs_talos·2019-08-13·CVSS 9.8
[CRITICAL] Microsoft Patch Tuesday — Aug. 2019: Vulnerability disclosures and Snort coverage
## Microsoft Patch Tuesday — Aug. 2019: Vulnerability disclosures and Snort coverage
Microsoft released its monthly security update today, disclosing a variety of vulnerabilities in several of its products. The latest Patch Tuesday covers 97 vulnerabilities, 31 of which are rated “critical," 65 that are considered "important" and one "moderate."
This month’s security update covers security issues in a variety of Microsoft services and software, including certain graphics components, Outlook and the Chakra Scripting Engine. For more on our coverage of these bugs, check out our Snort advisories here , covering all of the new rules we have for this release.
## Critical vulnerabilities Microsoft disclosed 31 critical vulnerabilities this month, three of which we will highlight below.
CVE-2
2019-08-14
Published