Search
Contactez-nous Suivez-nous sur Twitter En francais English Language
 

De la Théorie à la pratique











Freely subscribe to our NEWSLETTER

Newsletter FR

Newsletter EN

Vulnérabilités

Unsubscribe

Vigil@nce - Microsoft Windows: privilege escalation via _SchRpcRegisterTask

July 2019 by Vigil@nce

This bulletin was written by Vigil@nce : https://vigilance.fr/offer/Computer...

SYNTHESIS OF THE VULNERABILITY

An attacker can bypass restrictions via _SchRpcRegisterTask() of MS-Windows, in order to escalate his privileges.

Impacted products: Windows 10, Windows 2008 R0, Windows 2008 R2, Windows 2012, Windows 2016, Windows 2019, Windows 7, Windows 8, Windows RT.

Severity: 2/4.

Consequences: administrator access/rights, privileged access/rights.

Provenance: user shell.

Confidence: confirmed by a trusted third party (4/5).

Creation date: 22/05/2019.

DESCRIPTION OF THE VULNERABILITY

An attacker can bypass restrictions via _SchRpcRegisterTask() of MS-Windows, in order to escalate his privileges.

This vulnerability may actually be CVE-2019-0863 (see VIGILANCE-VUL-29301).

ACCESS TO THE FULL VIGIL@NCE BULLETIN

https://vigilance.fr/vulnerability/...




See previous articles

    

See next articles