<< Back
CVE Number Vulnerability Product Severity Date
CVE-2019-0725 Windows DHCP Server Remote Code Execution Vulnerability Windows Server Critical 15-05-2019

Technical Information

Brief overview of the risk:
A memory corruption vulnerability exists in the Windows Server DHCP service when processing specially crafted packets. An attacker who successfully exploited the vulnerability could run arbitrary code on the DHCP server.

Detailed Information on the risk:
To exploit the vulnerability, a remote unauthenticated attacker could send a specially crafted packet to an affected DHCP server.

Further information on this exploit is available at : CVE-2019-0725

Affected Software


Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation),
Windows Server 2008 R2 for Itanium-Based Systems Service Pack 1,
Windows Server 2008 R2 for x64-based Systems Service Pack 1,
Windows Server 2012,
Windows Server 2012 (Server Core installation),
Windows Server 2012 R2,
Windows Server 2012 R2 (Server Core installation),
Windows Server 2016,
Windows Server 2016 (Server Core installation),
Windows Server, version 1803 (Server Core Installation),
Windows Server 2019,
Windows Server 2019 (Server Core installation),
Windows Server, version 1903 (Server Core installation)