English | Deutsch | Español | Português
 UserID:
 Passwd:
new user
 About:   Dedicated  | Advanced  | Standard  | Recurring  | No Risk  | Desktop  | Basic  | Single  | Security Seal  | FAQ
  Price/Feature Summary  | Order  | New Vulnerabilities  | Confidentiality  | Vulnerability Search
 Vulnerability   
Search   
    Search 143769 CVE descriptions
and 71225 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.814641
Category:Windows : Microsoft Bulletins
Title:Microsoft Windows Multiple Vulnerabilities (KB4480961)
Summary:This host is missing a critical security; update according to Microsoft KB4480961
Description:Summary:
This host is missing a critical security
update according to Microsoft KB4480961

Vulnerability Insight:
Multiple flaws exist due to,

- Windows kernel improperly handles objects in memory.

- An error in the Microsoft XmlDocument class that could allow an attacker to
escape from the AppContainer sandbox in the browser.

- Chakra scripting engine improperly handles objects in memory in Microsoft Edge.

- MSHTML engine improperly validates input.

- Windows Hyper-V on a host server fails to properly validate input from an
authenticated user on a guest operating system.

- Windows improperly handles authentication requests.

- Windows Data Sharing Service improperly handles file operations.

- Windows Jet Database Engine improperly handles objects in memory.

- Windows Runtime improperly handles objects in memory.

- An elevation of privilege exists in Windows COM Desktop Broker.

Vulnerability Impact:
Successful exploitation will allow an
attacker to obtain sensitive information to further compromise the user's system,
gain elevated privileges and execute arbitrary code on a victim system.

Affected Software/OS:
Microsoft Windows 10 Version 1607 x32/x64

Microsoft Windows Server 2016

Solution:
Run Windows Update and update the
listed hotfixes or download and update mentioned hotfixes in the advisory.
For updates refer to Reference links.

CVSS Score:
5.0

CVSS Vector:
AV:N/AC:L/Au:N/C:N/I:N/A:P

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2019-0536
BugTraq ID: 106406
http://www.securityfocus.com/bid/106406
Common Vulnerability Exposure (CVE) ID: CVE-2019-0538
BugTraq ID: 106419
http://www.securityfocus.com/bid/106419
Common Vulnerability Exposure (CVE) ID: CVE-2019-0539
BugTraq ID: 106401
http://www.securityfocus.com/bid/106401
Common Vulnerability Exposure (CVE) ID: CVE-2019-0541
BugTraq ID: 106402
http://www.securityfocus.com/bid/106402
Common Vulnerability Exposure (CVE) ID: CVE-2019-0543
BugTraq ID: 106408
http://www.securityfocus.com/bid/106408
Common Vulnerability Exposure (CVE) ID: CVE-2019-0545
RedHat Security Advisories: RHSA-2019:0040
https://access.redhat.com/errata/RHSA-2019:0040
BugTraq ID: 106405
http://www.securityfocus.com/bid/106405
Common Vulnerability Exposure (CVE) ID: CVE-2019-0552
BugTraq ID: 106407
http://www.securityfocus.com/bid/106407
Common Vulnerability Exposure (CVE) ID: CVE-2019-0554
BugTraq ID: 106411
http://www.securityfocus.com/bid/106411
Common Vulnerability Exposure (CVE) ID: CVE-2019-0555
BugTraq ID: 106395
http://www.securityfocus.com/bid/106395
Common Vulnerability Exposure (CVE) ID: CVE-2019-0566
BugTraq ID: 106417
http://www.securityfocus.com/bid/106417
Common Vulnerability Exposure (CVE) ID: CVE-2019-0567
BugTraq ID: 106418
http://www.securityfocus.com/bid/106418
Common Vulnerability Exposure (CVE) ID: CVE-2019-0569
BugTraq ID: 106414
http://www.securityfocus.com/bid/106414
Common Vulnerability Exposure (CVE) ID: CVE-2019-0570
BugTraq ID: 106415
http://www.securityfocus.com/bid/106415
Common Vulnerability Exposure (CVE) ID: CVE-2019-0571
BugTraq ID: 106426
http://www.securityfocus.com/bid/106426
Common Vulnerability Exposure (CVE) ID: CVE-2019-0572
BugTraq ID: 106428
http://www.securityfocus.com/bid/106428
Common Vulnerability Exposure (CVE) ID: CVE-2019-0573
BugTraq ID: 106430
http://www.securityfocus.com/bid/106430
Common Vulnerability Exposure (CVE) ID: CVE-2019-0574
BugTraq ID: 106431
http://www.securityfocus.com/bid/106431
Common Vulnerability Exposure (CVE) ID: CVE-2019-0575
BugTraq ID: 106404
http://www.securityfocus.com/bid/106404
Common Vulnerability Exposure (CVE) ID: CVE-2019-0576
BugTraq ID: 106422
http://www.securityfocus.com/bid/106422
Common Vulnerability Exposure (CVE) ID: CVE-2019-0577
BugTraq ID: 106423
http://www.securityfocus.com/bid/106423
Common Vulnerability Exposure (CVE) ID: CVE-2019-0578
BugTraq ID: 106424
http://www.securityfocus.com/bid/106424
Common Vulnerability Exposure (CVE) ID: CVE-2019-0579
BugTraq ID: 106425
http://www.securityfocus.com/bid/106425
Common Vulnerability Exposure (CVE) ID: CVE-2019-0580
BugTraq ID: 106429
http://www.securityfocus.com/bid/106429
Common Vulnerability Exposure (CVE) ID: CVE-2019-0581
BugTraq ID: 106432
http://www.securityfocus.com/bid/106432
Common Vulnerability Exposure (CVE) ID: CVE-2019-0582
BugTraq ID: 106433
http://www.securityfocus.com/bid/106433
Common Vulnerability Exposure (CVE) ID: CVE-2019-0583
BugTraq ID: 106435
http://www.securityfocus.com/bid/106435
Common Vulnerability Exposure (CVE) ID: CVE-2019-0584
BugTraq ID: 106436
http://www.securityfocus.com/bid/106436
Common Vulnerability Exposure (CVE) ID: CVE-2019-0549
BugTraq ID: 106409
http://www.securityfocus.com/bid/106409
Common Vulnerability Exposure (CVE) ID: CVE-2019-0551
BugTraq ID: 106386
http://www.securityfocus.com/bid/106386
CopyrightCopyright (C) 2019 Greenbone Networks GmbH

This is only one of 71225 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.

New User Registration
Email:
UserID:
Passwd:
Please email me your monthly newsletters, informing the latest services, improvements & surveys.
Please email me a vulnerability test announcement whenever a new test is added.
   Privacy
Registered User Login
 
UserID:   
Passwd:  

 Forgot userid or passwd?
Email/Userid:




Home | About Us | Contact Us | Partner Programs | Developer APIs | Privacy | Mailing Lists | Abuse
Security Audits | Managed DNS | Network Monitoring | Site Analyzer | Internet Research Reports
Web Probe

© 1998-2019 E-Soft Inc. All rights reserved.