CVE-2019-1053
EUVD-2019-963612.06.2019, 14:29
An elevation of privilege vulnerability exists when the Windows Shell fails to validate folder shortcuts. An attacker who successfully exploited the vulnerability could elevate privileges by escaping a sandbox. To exploit this vulnerability, an attacker would require unprivileged execution on the victim system. The security update addresses the vulnerability by correctly validating folder shortcuts.
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| microsoft | windows_10 | - |
| microsoft | windows_7 | - |
| microsoft | windows_8.1 | - |
| microsoft | windows_rt_8.1 | - |
| microsoft | windows_server_2008 | - |
| microsoft | windows_server_2012 | - |
| microsoft | windows_server_2016 | - |
| microsoft | windows_server_2019 | - |
𝑥
= Vulnerable software versions
Windows Releases
Platform | Version | ||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| Windows 10 |
| ||||||||||||||
| Windows 7 |
| ||||||||||||||
| Windows 8.1 |
| ||||||||||||||
| Windows RT 8.1 |
| ||||||||||||||
| Windows Server |
| ||||||||||||||
| Windows Server 2008 |
| ||||||||||||||
| Windows Server 2008 R2 |
| ||||||||||||||
| Windows Server 2012 |
| ||||||||||||||
| Windows Server 2012 R2 |
| ||||||||||||||
| Windows Server 2016 |
| ||||||||||||||
| Windows Server 2019 |
|