CVE-2019-0887 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	8 HIGH	NETWORK	LOW	LOW	CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H

Base Score

CVSS 3.x

EPSS Score

Percentile: 98%

Affected Products (NVD)

Vendor	Product	Version
microsoft	remote_desktop_client	𝑥 < 1.2.2691
microsoft	windows_10	-
microsoft	windows_11_21h2	10.0.22000.376
microsoft	windows_7	-
microsoft	windows_8.1	-
microsoft	windows_rt_8.1	-
microsoft	windows_server_2008	-
microsoft	windows_server_2012	-
microsoft	windows_server_2016	-
microsoft	windows_server_2019	-

𝑥

= Vulnerable software versions

Windows Releases

Platform

Version

Windows 10

(x64, x86)	KB4507458
1607 (x64, x86)	KB4507460
1703 (x64, x86)	KB4507450
1709 (arm64, x64, x86)	KB4507455
1803 (arm64, x64, x86)	KB4507435
1809 (arm64, x64, x86)	KB4507469
1903 (arm64, x64, x86)	KB4507453

Windows 11

(arm64, x64)

KB5008215

Windows 7

Service Pack 1 (x64, x86)

KB4507456

Windows 8.1

(x64, x86)	KB4507448
(x64, x86)	KB4507457

Windows RT 8.1

All

KB4507448

Windows Server

1803 Server Core	KB4507435
1903 Server Core	KB4507453

Windows Server 2008

Service Pack 2 (x64, x86)	KB4507461
Service Pack 2 Server Core (x64, x86)	KB4507461

Windows Server 2008 R2

Service Pack 1 (x64)	KB4507456
Service Pack 1 Server Core (x64)	KB4507456

Windows Server 2012

Server Core	KB4507464
Standard	KB4507464

Windows Server 2012 R2

Server Core	KB4507448
Server Core	KB4507457
Standard	KB4507448
Standard	KB4507457

Windows Server 2016

Server Core	KB4507460
Standard	KB4507460

Windows Server 2019

Server Core	KB4507469
Standard	KB4507469

Windows Server 2022

Server Core	KB5008223
Standard	KB5008223

Common Weakness Enumeration

CWE-22 - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
The software uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the software does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.

References

http://www.securityfocus.com/bid/108964

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0887

https://research.checkpoint.com/reverse-rdp-attack-code-execution-on-rdp-clients/

https://research.checkpoint.com/reverse-rdp-the-hyper-v-connection/

http://www.securityfocus.com/bid/108964

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0887

https://research.checkpoint.com/reverse-rdp-attack-code-execution-on-rdp-clients/

https://research.checkpoint.com/reverse-rdp-the-hyper-v-connection/