Windows File Signature Security Feature Bypass Vulnerability - CVE-2019-1163ID: oval:org.secpod.oval:def:57871 | Date: (C)2019-08-14 (M)2024-05-29 |
Class: VULNERABILITY | Family: windows |
A security feature bypass exists when Windows incorrectly validates CAB file signatures. An attacker who successfully exploited this vulnerability could inject code into a CAB file without invalidating the file's signature. To exploit the vulnerability, an attacker could modify a signed CAB file and inject malicious code. The attacker could then convince a target user to execute the file. The update addresses the vulnerability by correcting how Windows validates file signatures.
Platform: |
Microsoft Windows Server |
Microsoft Windows 10 |
Microsoft Windows Server 2016 |
Microsoft Windows Server 2019 |