vendor:
Windows 10, Windows Server 2019
by:
Google Project Zero
7.8
CVSS
HIGH
Remote Code Execution
20
CWE
Product Name: Windows 10, Windows Server 2019
Affected Version From: Windows 10, Windows Server 2019
Affected Version To: Windows 10, Windows Server 2019
Patch Exists: YES
Related CWE: CVE-2020-1019
CPE: o:microsoft:windows_10::-:*:*:*:*:*:*
Metasploit:
N/A
Other Scripts:
N/A
Platforms Tested: Windows
2020
ExploitDB 46051 – Microsoft Windows 10/Server 2019 – ‘Windows Installer’ Remote Code Execution
This module exploits a vulnerability in Microsoft Windows Installer (msiexec.exe) by using a specially crafted .msi file. The vulnerability exists in the way Windows Installer validates the digital signature of a specially crafted .msi file. An attacker can exploit this vulnerability by convincing a user to install a malicious .msi file. Successful exploitation of this vulnerability could allow an attacker to execute arbitrary code on the target system. This vulnerability was discovered by the Google Project Zero team and was assigned CVE-2020-1019.
Mitigation:
Microsoft has released a security update to address this vulnerability.
