CVE Number | Vulnerability | Product | Severity | Date |
---|---|---|---|---|
CVE-2019-0697 | Windows DHCP Client Remote Code Execution Vulnerability | Windows 10 | Critical | 14-03-2019 |
Technical Information
Brief overview of the risk:
A memory corruption vulnerability exists in the Windows DHCP client when an attacker sends specially crafted DHCP responses to a client. An attacker who successfully exploited the vulnerability could run arbitrary code on the client machine.
Detailed Information on the risk:
To exploit the vulnerability, an attacker could send a specially crafted DHCP responses to a client.
The security update addresses the vulnerability by correcting how Windows DHCP clients handle certain DHCP responses.
Further information on this exploit is available at : CVE-2019-0697
Affected Software
Windows 10 Version 1803 for 32-bit Systems,
Windows 10 Version 1803 for x64-based Systems,
Windows Server, version 1803 (Server Core Installation),
Windows 10 Version 1803 for ARM64-based Systems,
Windows 10 Version 1809 for 32-bit Systems,
Windows 10 Version 1809 for x64-based Systems,
Windows 10 Version 1809 for ARM64-based Systems,
Windows Server 2019,
Windows Server 2019 (Server Core installation)