CVE-2019-1214 Windows CLFS Driver Elevation of Privilege Vulnerability

    CVE-2019-1214 Windows CLFS Driver Elevation of Privilege Vulnerability

    CVE-2019-1214 Windows CLFS Driver Elevation of Privilege Vulnerability


    Posted: 13 Sep 2019

    MITRE CVE-2019-1214

    An elevation of privilege vulnerability exists when the Windows Common Log File System (CLFS) driver improperly handles objects in memory. An attacker who successfully exploited this vulnerability could run processes in an elevated context.

    To exploit the vulnerability, an attacker would first have to log on to the system, and then run a specially crafted application to take control over the affected system.

    The security update addresses the vulnerability by correcting how CLFS handles objects in memory.

    Publicly Disclosed Exploited Latest Software Release Older Software Release Denial of Service
    No No 3 - Exploitation Unlikely 1 - Exploitation More Likely Not Applicable

    Read more: https://portal.msrc.microsoft.com/en.../CVE-2019-1214
    Brink's Avatar Posted By: Brink
    13 Sep 2019


  1. Posts : 7,124
    Windows 10 Pro 64 bit
       #1

    Can I assume there will be an fix via Windows Update?
      My Computers


  2. Posts : 61,861
    64-bit Windows 11 Pro for Workstations
    Thread Starter
       #2

    Steve C said:
    Can I assume there will be an fix via Windows Update?
    Hello Steve,

    Correct. The fix was included in the 9/10 updates. KB4515384 for Windows 10 version 1903.
      My Computers


 

  Related Discussions
Our Sites
Site Links
About Us
Windows 10 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 10" and related materials are trademarks of Microsoft Corp.

Designer Media Ltd
All times are GMT -5. The time now is 07:03.
Find Us




Windows 10 Forums