Unrated severityNVD Advisory· Published Aug 14, 2019· Updated Aug 4, 2024
Windows DHCP Client Remote Code Execution Vulnerability
CVE-2019-0736
Description
A memory corruption vulnerability exists in the Windows DHCP client when an attacker sends specially crafted DHCP responses to a client. An attacker who successfully exploited the vulnerability could run arbitrary code on the client machine. To exploit the vulnerability, an attacker could send specially crafted DHCP responses to a client. The security update addresses the vulnerability by correcting how Windows DHCP clients handle certain DHCP responses.
Affected products
12cpe:2.3:o:microsoft:windows_10_1507:*:*:*:*:*:*:x86:*+ 2 more
- cpe:2.3:o:microsoft:windows_10_1507:*:*:*:*:*:*:x86:*range: 10.0.0
- cpe:2.3:o:microsoft:windows_10:1703:*:*:*:*:*:*:*range: 10.0.0
- cpe:2.3:o:microsoft:windows_10:1709:*:*:*:*:*:*:*range: 10.0.0
- cpe:2.3:o:microsoft:windows_server_2008_sp2:*:*:*:*:*:*:x64:*Range: 6.0.0
- cpe:2.3:o:microsoft:windows_server_2012:*:*:*:*:*:*:x64:*Range: 6.2.0
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1- portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0736mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.