The vulnerability of the Windows AppX Deployment Service (AppXSVC) on Windows operating systems allows attackers to escalate their privileges.

🗓️ 17 Apr 2019 00:00:00Reported by FSTEC of Russia — Information Security Threat DatabaseType

bdu_fstec

bdu_fstec🔗 bdu.fstec.ru👁 2 Views

Flaw in Windows AppX Deployment Service hard link handling enables privilege escalation by a crafted application.

Reporter	Title	Published	Views	Family All 73
0day.today	Microsoft Windows - AppX Deployment Service Privilege Escalation Exploit	10 Apr 201900:00	–	zdt
0day.today	Microsoft Windows - AppX Deployment Service Local Privilege Escalation (2) Exploit	29 May 201900:00	–	zdt
0day.today	Microsoft Windows - AppX Deployment Service Local Privilege Escalation (3) Exploit	7 Jun 201900:00	–	zdt
0day.today	Microsoft Windows 10 < build 17763 - AppXSvc Hard Link Privilege Escalation Exploit	16 Jul 201900:00	–	zdt
0day.today	AppXSvc - Privilege Escalation Vulnerability	16 Sep 201900:00	–	zdt
ATTACKERKB	CVE-2019-0841	9 Apr 201900:00	–	attackerkb
ATTACKERKB	CVE-2019-0841: AppXSvc Hard Link Privilege Escalation	9 Apr 201900:00	–	attackerkb
canvas	Immunity Canvas: ALPC_TAKEOVER_LPE	9 Apr 201921:29	–	canvas
Circl	CVE-2019-0841	10 Apr 201908:14	–	circl
CISA KEV Catalog	Microsoft Windows AppX Deployment Service (AppXSVC) Privilege Escalation Vulnerability	15 Mar 202200:00	–	cisa_kev

Source	Link
packetstormsecurity	www.packetstormsecurity.com/files/152463/Microsoft-Windows-AppX-Deployment-Service-Privilege-Escalation.html
portal	www.portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0841
exploit-db	www.exploit-db.com/exploits/46683/
cisa	www.cisa.gov/sites/default/files/csv/known_exploited_vulnerabilities.csv
web	www.web.nvd.nist.gov/view/vuln/detail

24 Sep 2024 00:00Current

7High risk

Vulners AI Score7

CVSS 36.8

CVSS 27.2

EPSS0.41667

Windows AppX Deployment Service hard links privilege escalation crafted application