Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
symantecSymantec Security ResponseSMNTC-108963
HistoryJul 09, 2019 - 12:00 a.m.

Microsoft Windows splwow64 CVE-2019-0880 Local Privilege Escalation Vulnerability

2019-07-0900:00:00
Symantec Security Response
www.symantec.com
130

0.0004 Low

EPSS

Percentile

5.8%

JSON

Description

Microsoft Windows is prone to a local privilege-escalation vulnerability. An attacker can exploit this issue to gain elevated privileges on the system.

Technologies Affected

  • Microsoft Windows 10 Version 1607 for 32-bit Systems
  • Microsoft Windows 10 Version 1607 for x64-based Systems
  • Microsoft Windows 10 Version 1709 for ARM64-based Systems
  • Microsoft Windows 10 Version 1803 for 32-bit Systems
  • Microsoft Windows 10 Version 1803 for ARM64-based Systems
  • Microsoft Windows 10 Version 1803 for x64-based Systems
  • Microsoft Windows 10 Version 1809 for 32-bit Systems
  • Microsoft Windows 10 Version 1809 for ARM64-based Systems
  • Microsoft Windows 10 Version 1809 for x64-based Systems
  • Microsoft Windows 10 Version 1903 for 32-bit Systems
  • Microsoft Windows 10 Version 1903 for ARM64-based Systems
  • Microsoft Windows 10 Version 1903 for x64-based Systems
  • Microsoft Windows 10 for 32-bit Systems
  • Microsoft Windows 10 for x64-based Systems
  • Microsoft Windows 10 version 1703 for 32-bit Systems
  • Microsoft Windows 10 version 1703 for x64-based Systems
  • Microsoft Windows 10 version 1709 for 32-bit Systems
  • Microsoft Windows 10 version 1709 for x64-based Systems
  • Microsoft Windows 8.1 for 32-bit Systems
  • Microsoft Windows 8.1 for 64-bit Systems
  • Microsoft Windows RT 8.1
  • Microsoft Windows Server 1803
  • Microsoft Windows Server 1903
  • Microsoft Windows Server 2012
  • Microsoft Windows Server 2012 R2
  • Microsoft Windows Server 2016
  • Microsoft Windows Server 2019

Recommendations

Permit local access for trusted individuals only. Where possible, use restricted environments and restricted shells.
Ensure that only trusted users have local, interactive access to affected computers.

Run all software as a nonprivileged user with minimal access rights.
To limit the impact of latent vulnerabilities, configure servers and other applications to run as a nonadministrative user with minimal access rights.

Updates are available. Please see the references or vendor advisory for more information.

Related

checkpoint_advisories 1
cve 1
prion 1
attackerkb 2
mscve 1
cisa_kev 1
thn 1
securelist 1
krebs 1
qualysblog 1
threatpost 1
googleprojectzero 2
mskb 11
openvas 9
nessus 9
kaspersky 1
talosblog 1
checkpoint_advisories
checkpoint_advisories
Microsoft splwow64 Elevation of Privilege (CVE-2019-0880)
2019-07-09 00:00:00
cve
cve
CVE-2019-0880
2019-07-15 19:15:00
prion
prion
Privilege escalation
2019-07-15 19:15:00
attackerkb
attackerkb
CVE-2019-0880
2019-07-15 00:00:00
CVE-2019-0880 Microsoft splwow64 Elevation of Privilege Vulnerability
2019-07-15 00:00:00
mscve
mscve
Microsoft splwow64 Elevation of Privilege Vulnerability
2019-07-09 07:00:00
cisa_kev
cisa_kev
Microsoft Windows Privilege Escalation Vulnerability
2022-05-23 00:00:00
thn
thn
Microsoft Releases July 2019 Security Updates, 2 Flaws Under Active Attack
2019-07-09 18:00:00
securelist
securelist
Operation PowerFall: CVE-2020-0986 and variants
2020-09-02 10:00:56
krebs
krebs
Patch Tuesday Lowdown, July 2019 Edition
2019-07-09 22:32:11
qualysblog
qualysblog
July 2019 Patch Tuesday – 77 Vulns, 15 Critical, DHCP RCE, Exploited PrivEsc, SQL, Adobe Vulns
2019-07-09 18:12:39
threatpost
threatpost
Microsoft Patches A Pair of Zero-Days Under Active Attack
2019-07-09 20:04:36
googleprojectzero
googleprojectzero
Detection Deficit: A Year in Review of 0-days Used In-The-Wild in 2019
2020-07-29 00:00:00
DΓ©jΓ  vu-lnerability
2021-02-03 00:00:00
mskb
mskb
July 9, 2019β€”KB4507464 (Security-only update)
2019-08-06 07:00:00
July 9, 2019β€”KB4507462 (Monthly Rollup)
2019-08-06 07:00:00
July 9, 2019β€”KB4507457 (Security-only update)
2019-08-06 07:00:00
openvas
openvas
Microsoft Windows Multiple Vulnerabilities (KB4507462)
2019-07-10 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB4507448)
2019-07-10 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB4507458)
2019-07-10 00:00:00
nessus
nessus
KB4507464: Windows Server 2012 July 2019 Security Update (SWAPGS)
2019-07-09 00:00:00
KB4507457: Windows 8.1 and Windows Server 2012 R2 July 2019 Security Update (SWAPGS)
2019-07-09 00:00:00
KB4507458: Windows 10 July 2019 Security Update (SWAPGS)
2019-07-09 00:00:00
kaspersky
kaspersky
KLA11511 Multiple vulnerabilities in Microsoft Windows
2019-07-09 00:00:00
talosblog
talosblog
Microsoft Patch Tuesday β€” July 2019: Vulnerability disclosures and Snort coverage
2019-07-09 11:51:34

0.0004 Low

EPSS

Percentile

5.8%

JSON
Related for SMNTC-108963
checkpoint_advisories1cve1prion1attackerkb2mscve1cisa_kev1thn1securelist1krebs1qualysblog1threatpost1googleprojectzero2mskb11openvas9nessus9kaspersky1talosblog1