Lucene search
AnonymousZDI-19-987HistoryNov 13, 2019 - 12:00 a.m.
Microsoft Windows splwow64 Time-Of-Check Time-Of-Use Privilege Escalation Vulnerability
2019-11-1300:00:00
Anonymous
www.zerodayinitiative.com
5
0.001 Low
EPSS
Percentile
19.0%
This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the user-mode printer driver host process splwow64.exe. The code is subject to a time-of-check/time-of-use race condition when handling a call from a client. An attacker can leverage this vulnerability to escalate privileges from low integrity and execute code in the context of the current user at medium integrity.
Related
cvelist
cvelist
CVE-2019-1380
2019-11-12 18:52:51
symantec
symantec
prion
prion
Privilege escalation
2019-11-12 19:15:00
cve
cve
CVE-2019-1380
2019-11-12 19:15:12
nvd
nvd
CVE-2019-1380
2019-11-12 19:15:12
mscve
mscve
Microsoft splwow64 Elevation of Privilege Vulnerability
2019-11-12 08:00:00
mskb
mskb
November 12, 2019âKB4525253 (Security-only update)
2019-11-12 08:00:00
November 12, 2019âKB4525250 (Security-only update)
2019-11-12 08:00:00
November 12, 2019âKB4525246 (Monthly Rollup)
2019-11-12 08:00:00
openvas
openvas
Microsoft Windows Multiple Vulnerabilities (KB4525243)
2019-11-13 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB4525236)
2019-11-13 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB4525232)
2019-11-13 00:00:00
nessus
nessus
KB4525236: Windows 10 Version 1607 and Windows Server 2016 November 2019 Security Update
2019-11-12 00:00:00
KB4525232: Windows 10 November 2019 Security Update
2019-11-12 00:00:00
KB4525253: Windows Server 2012 November 2019 Security Update
2019-11-12 00:00:00
kaspersky
kaspersky
KLA11608 Multiple vulnerabilities in Microsoft Windows
2019-11-12 00:00:00
talosblog
talosblog