English | Deutsch | Español
 
Home ▼
Home About Us Contact Us Privacy Partner Programs Testimonials In Press Mailing Lists Abuse Developer APIs
Bookkeeping
Online ▼
Home Free Trial FAQ
Open/Create Company File Accept an Invite Order/Renew
Security
Audits ▼
Home Dedicated audits Advanced audits Standard audits Recurring audits No Risk audits Desktop audits Basic audit Security Seal FAQ Price/Feature Summary Order New Tests All Tests Confidentiality Vulnerability search Run Audit Scheduler IP Permissions Audit Configuration Editor Scan Queue Reminder Notification Schedule Seal Reports Reports Style Editor
Managed
DNS ▼
About Order FAQ Acceptable Use Policy Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password
Network
Monitor ▼
Enterprise Package Advanced Package Standard Package Free Trial FAQ Price/Feature Summary Order/Renew Examples
Configure/Status Alert Profiles
Research
Reports ▼
Home FAQ Glossary Archive
 Login/Register 
 
 Vulnerability   
Search   		     Search 324607 CVE descriptions
and 146377 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.815208
Category:Windows : Microsoft Bulletins
Title:Microsoft Windows Multiple Vulnerabilities (KB4503292)
Summary:This host is missing a critical security; update according to Microsoft KB4503292
Description:Summary:
This host is missing a critical security
update according to Microsoft KB4503292

Vulnerability Insight:
Multiple flaws exist due to:

- Windows Event Viewer (eventvwr.msc) improperly parses XML input
containing a reference to an external entity.

- Microsoft Hyper-V on a host server fails to properly validate input from
a privileged user on a guest operating system.

- Microsoft Speech API (SAPI) improperly handles text-to-speech (TTS) input.

- Windows GDI component improperly discloses the contents of its
memory.

Please see the references for more information about the vulnerabilities.

Vulnerability Impact:
Successful exploitation will allow
an attacker to execute arbitrary code, elevate privileges by escaping a
sandbox, gain access to sensitive information, run processes and
delete files and folders in an elevated context.

Affected Software/OS:
- Microsoft Windows 7 for 32-bit/x64 Systems Service Pack 1

- Microsoft Windows Server 2008 R2 for x64-based Systems Service Pack 1

Solution:
The vendor has released updates. Please see
the references for more information.

CVSS Score:
9.3

CVSS Vector:
AV:N/AC:M/Au:N/C:C/I:C/A:C

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2017-8533
BugTraq ID: 98821
http://www.securityfocus.com/bid/98821
https://www.zerodayinitiative.com/advisories/ZDI-19-581/
Common Vulnerability Exposure (CVE) ID: CVE-2019-0713
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0713
Common Vulnerability Exposure (CVE) ID: CVE-2019-0722
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0722
Common Vulnerability Exposure (CVE) ID: CVE-2019-0888
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0888
Common Vulnerability Exposure (CVE) ID: CVE-2019-0904
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0904
Common Vulnerability Exposure (CVE) ID: CVE-2019-0905
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0905
Common Vulnerability Exposure (CVE) ID: CVE-2019-0906
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0906
https://www.zerodayinitiative.com/advisories/ZDI-19-624/
Common Vulnerability Exposure (CVE) ID: CVE-2019-0907
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0907
Common Vulnerability Exposure (CVE) ID: CVE-2019-0908
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0908
Common Vulnerability Exposure (CVE) ID: CVE-2019-0909
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0909
Common Vulnerability Exposure (CVE) ID: CVE-2019-0920
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0920
https://www.zerodayinitiative.com/advisories/ZDI-19-625/
https://www.zerodayinitiative.com/advisories/ZDI-19-626/
https://www.zerodayinitiative.com/advisories/ZDI-19-627/
https://www.zerodayinitiative.com/advisories/ZDI-19-638/
https://www.zerodayinitiative.com/advisories/ZDI-19-639/
Common Vulnerability Exposure (CVE) ID: CVE-2019-0941
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0941
Common Vulnerability Exposure (CVE) ID: CVE-2019-0943
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0943
Common Vulnerability Exposure (CVE) ID: CVE-2019-0948
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0948
https://www.zerodayinitiative.com/advisories/ZDI-19-641/
Common Vulnerability Exposure (CVE) ID: CVE-2019-0960
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0960
Common Vulnerability Exposure (CVE) ID: CVE-2019-0968
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0968
Common Vulnerability Exposure (CVE) ID: CVE-2019-0972
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0972
Common Vulnerability Exposure (CVE) ID: CVE-2019-0973
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0973
Common Vulnerability Exposure (CVE) ID: CVE-2019-0974
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0974
Common Vulnerability Exposure (CVE) ID: CVE-2019-0977
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0977
Common Vulnerability Exposure (CVE) ID: CVE-2019-0984
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0984
Common Vulnerability Exposure (CVE) ID: CVE-2019-0985
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0985
Common Vulnerability Exposure (CVE) ID: CVE-2019-0986
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0986
Common Vulnerability Exposure (CVE) ID: CVE-2019-0988
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0988
https://www.zerodayinitiative.com/advisories/ZDI-19-723/
Common Vulnerability Exposure (CVE) ID: CVE-2019-1005
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1005
Common Vulnerability Exposure (CVE) ID: CVE-2019-1009
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1009
https://lists.apache.org/thread.html/fb6c84fd387de997e5e366d50b0ca331a328c466432c80f8c5eed33d@%3Cdev.tika.apache.org%3E
https://lists.apache.org/thread.html/da9ee189d1756f8508d0f2386d8e25aca5a6df541739829232be8a94@%3Cdev.tika.apache.org%3E
https://lists.apache.org/thread.html/39723d8227b248781898c200aa24b154683673287b150a204b83787d@%3Cdev.tika.apache.org%3E
Common Vulnerability Exposure (CVE) ID: CVE-2019-1010
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1010
Common Vulnerability Exposure (CVE) ID: CVE-2019-1011
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1011
Common Vulnerability Exposure (CVE) ID: CVE-2019-1012
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1012
Common Vulnerability Exposure (CVE) ID: CVE-2019-1013
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1013
https://www.zerodayinitiative.com/advisories/ZDI-19-573/
https://www.zerodayinitiative.com/advisories/ZDI-19-580/
Common Vulnerability Exposure (CVE) ID: CVE-2019-1014
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1014
Common Vulnerability Exposure (CVE) ID: CVE-2019-1015
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1015
Common Vulnerability Exposure (CVE) ID: CVE-2019-1016
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1016
Common Vulnerability Exposure (CVE) ID: CVE-2019-1017
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1017
Common Vulnerability Exposure (CVE) ID: CVE-2019-1019
http://packetstormsecurity.com/files/153639/Microsoft-Windows-HTTP-To-SMB-NTLM-Reflection-Privilege-Escalation.html
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1019
Common Vulnerability Exposure (CVE) ID: CVE-2019-1025
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1025
Common Vulnerability Exposure (CVE) ID: CVE-2019-1028
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1028
Common Vulnerability Exposure (CVE) ID: CVE-2019-1038
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1038
Common Vulnerability Exposure (CVE) ID: CVE-2019-1039
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1039
Common Vulnerability Exposure (CVE) ID: CVE-2019-1040
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1040
Common Vulnerability Exposure (CVE) ID: CVE-2019-1043
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1043
Common Vulnerability Exposure (CVE) ID: CVE-2019-1045
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1045
Common Vulnerability Exposure (CVE) ID: CVE-2019-1046
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1046
Common Vulnerability Exposure (CVE) ID: CVE-2019-1047
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1047
Common Vulnerability Exposure (CVE) ID: CVE-2019-1048
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1048
Common Vulnerability Exposure (CVE) ID: CVE-2019-1049
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1049
Common Vulnerability Exposure (CVE) ID: CVE-2019-1053
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1053
Common Vulnerability Exposure (CVE) ID: CVE-2019-1055
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1055
Common Vulnerability Exposure (CVE) ID: CVE-2019-1080
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1080
Common Vulnerability Exposure (CVE) ID: CVE-2019-1081
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1081
CopyrightCopyright (C) 2019 Greenbone Networks GmbH

This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.



© 1998-2025 E-Soft Inc. All rights reserved.