Microsoft Windows Information Disclosure Vulnerability - CVE-2019-1381ID: oval:org.secpod.oval:def:59650 | Date: (C)2019-11-14 (M)2024-03-06 |
Class: VULNERABILITY | Family: windows |
An information disclosure vulnerability exists when the Windows Servicing Stack allows access to unprivileged file locations. An attacker who successfully exploited the vulnerability could potentially access unauthorized files.To exploit this vulnerability, an authenticated attacker could run a specially crafted application in user mode.The update addresses the vulnerability by checking files paths for symbolic links.
Platform: |
Microsoft Windows Server |
Microsoft Windows 10 |
Microsoft Windows 8.1 |
Microsoft Windows Server 2012 |
Microsoft Windows Server 2012 R2 |
Microsoft Windows Server 2016 |
Microsoft Windows Server 2019 |