CVE-2019-1384
Published: Nov 12, 2019
Modified: Aug 4, 2024
Description
A security feature bypass vulnerability exists where a NETLOGON message is able to obtain the session key and sign messages.To exploit this vulnerability, an attacker could send a specially crafted authentication request, aka 'Microsoft Windows Security Feature Bypass Vulnerability'.
| Vendor | Product | Versions |
|---|---|---|
Microsoft | Windows | affected 7 for 32-bit Systems Service Pack 1affected 7 for x64-based Systems Service Pack 1affected 8.1 for 32-bit systemsaffected 8.1 for x64-based systemsaffected RT 8.1+13 more versions |
Microsoft | Windows Server | affected 2008 R2 for x64-based Systems Service Pack 1 (Core installation)affected 2008 R2 for Itanium-Based Systems Service Pack 1affected 2008 R2 for x64-based Systems Service Pack 1affected 2008 for 32-bit Systems Service Pack 2 (Core installation)affected 2012+12 more versions |
Microsoft | Windows 10 Version 1903 for 32-bit Systems | affected unspecified |
Microsoft | Windows 10 Version 1903 for x64-based Systems | affected unspecified |
Microsoft | Windows 10 Version 1903 for ARM64-based Systems | affected unspecified |
Microsoft | Windows Server, version 1903 (Server Core installation) | affected unspecified |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now