Lucene search
Nabeel Ahmed of Dimension Data BelgiumZDI-19-803HistorySep 10, 2019 - 12:00 a.m.
Microsoft Windows AppX Deployment Service Junction Arbitrary File Deletion Vulnerability
2019-09-1000:00:00
Nabeel Ahmed of Dimension Data Belgium
www.zerodayinitiative.com
22
EPSS
0.001
Percentile
31.3%
This vulnerability allows local attackers to delete arbitrary files on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the AppX Deployment Service. By creating a junction, an attacker can abuse the service to delete files in an incorrect location. An attacker can leverage this vulnerability to delete files in the context of SYSTEM.
Related
githubexploit
githubexploit
Exploit for Link Following in Microsoft
2019-09-11 20:40:15
Exploit for Link Following in Microsoft
2019-09-11 23:28:59
mscve
mscve
Windows Elevation of Privilege Vulnerability
2019-09-10 07:00:00
cisa_kev
cisa_kev
Microsoft Windows AppX Deployment Server Privilege Escalation Vulnerability
2022-03-15 00:00:00
symantec
symantec
Microsoft Windows CVE-2019-1253 Local Privilege Escalation Vulnerability
2019-09-10 00:00:00
canvas
canvas
Immunity Canvas: ALPC_APPXEDGE_LPE
2019-09-11 22:15:00
zdt
zdt
AppXSvc - Privilege Escalation Vulnerability
2019-09-16 00:00:00
exploitpack
exploitpack
AppXSvc - Privilege Escalation
2019-09-16 00:00:00
exploitdb
exploitdb
AppXSvc - Privilege Escalation
2019-09-16 00:00:00
cvelist
cvelist
cve
cve
nvd
nvd
attackerkb
attackerkb
prion
prion
Privilege escalation
2019-09-11 22:15:00
Privilege escalation
2019-09-11 22:15:00
Privilege escalation
2019-09-11 22:15:00
kitploit
kitploit
cisa
cisa
CISA Adds 15 Known Exploited Vulnerability to Catalog
2022-03-15 00:00:00
kaspersky
kaspersky
KLA11552 Multiple vulnerabilities in Microsoft Windows
2019-09-10 00:00:00
nessus
nessus
KB4516068: Windows 10 Version 1703 September 2019 Security Update
2019-09-10 00:00:00
KB4512578: Windows 10 Version 1809 and Windows Server 2019 September 2019 Security Update
2019-09-10 00:00:00
KB4516066: Windows 10 Version 1709 September 2019 Security Update
2019-09-10 00:00:00
mskb
mskb
September 10, 2019âKB4512578 (OS Build 17763.737)
2019-09-10 07:00:00
September 10, 2019âKB4516066 (OS Build 16299.1387)
2019-09-10 07:00:00
September 10, 2019âKB4516068 (OS Build 15063.2045)
2019-09-10 07:00:00
openvas
openvas
Microsoft Windows Multiple Vulnerabilities (KB4512578)
2019-09-11 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB4515384)
2019-09-11 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB4516066)
2019-09-11 00:00:00
talosblog
talosblog