HTTP: Microsoft Windows AppX Deployment Service CVE-2019-1129 Privilege Escalation
This signature detects attempts to exploit a known vulnerability in the Microsoft Windows AppX Deployment Service. A successful attack can lead to Escalation of Privilege.
Extended Description
An elevation of privilege vulnerability exists when Windows AppX Deployment Service (AppXSVC) improperly handles hard links, aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1130.
Affected Products
Microsoft windows_10_1803
References
CVE: CVE-2019-1129
Short Name
HTTP:STC:DL:CVE-2019-1129-PE
Severity
Major
Recommended
True
Recommended Action
Drop
Category
HTTP
Keywords
AppX CVE-2019-1129 Deployment Escalation Microsoft Privilege Service Windows
Release Date
07/09/2019
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3797
False Positive
Unknown
Vendors
Microsoft
CVSS Score
7.2