An elevation of privilege vulnerability exists when the MpSigStub.exe for Defender allows file deletion in arbitrary locations.To exploit the vulnerability, an attacker would first have to log on to the system, aka 'Microsoft Defender Elevation of Privilege Vulnerability'.
References
Link | Resource |
---|---|
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1161 | Patch Vendor Advisory |
Configurations
Configuration 1 (hide)
AND |
|
Configuration 2 (hide)
|
History
09 Sep 2021, 13:33
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:microsoft:system_center_endpoint_protection_2012:r2:*:*:*:*:*:*:* |
cpe:2.3:a:microsoft:system_center_endpoint_protection:2012:r2:*:*:*:*:*:* cpe:2.3:a:microsoft:system_center_endpoint_protection:2012:-:*:*:*:*:*:* |
Information
Published : 2019-08-14 21:15
Updated : 2023-12-10 12:59
NVD link : CVE-2019-1161
Mitre link : CVE-2019-1161
CVE.ORG link : CVE-2019-1161
JSON object : View
Products Affected
microsoft
- system_center_endpoint_protection
- windows_server_2008
- windows_server_2016
- windows_7
- windows_8.1
- windows_rt_8.1
- security_essentials
- windows_10
- forefront_endpoint_protection_2010
- windows_defender
- windows_server_2012
CWE