HTTP: Microsoft Graphics Component CVE-2019-1078 Information Disclosure
This signature detects attempts to exploit a known vulnerability against Microsoft Graphics Component. Successful exploitation could result in Information Disclosure.
Extended Description
An information disclosure vulnerability exists when the Windows Graphics component improperly handles objects in memory. An attacker who successfully exploited this vulnerability could obtain information to further compromise the users system. An authenticated attacker could exploit this vulnerability by running a specially crafted application. The update addresses the vulnerability by correcting how the Windows Graphics Component handles objects in memory.
Affected Products
Microsoft windows_server_2016
References
CVE: CVE-2019-1078
Short Name
HTTP:STC:DL:CVE-2019-1078-ID
Severity
Minor
Recommended
True
Recommended Action
Drop
Category
HTTP
Keywords
CVE-2019-1078 Component Disclosure Graphics Information Microsoft
Release Date
08/12/2019
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3709
False Positive
Unknown
Vendors
Microsoft
CVSS Score
2.1