Microsoft Windows DHCP Server 2019 Remote Code Execution Vulnerability

Summary

A memory corruption vulnerability exists in the Windows Server DHCP service when an attacker sends specially crafted packets to a DHCP failover server, aka ‘Windows DHCP Server Remote Code Execution Vulnerability’.

Credit:

The information has been provided by Vendor

The original article can be found at:

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0785


Details

A memory corruption vulnerability exists in the Windows Server DHCP service when an attacker sends specially crafted packets to a DHCP failover server. An attacker who successfully exploited the vulnerability could either run arbitrary code on the DHCP failover server or cause the DHCP service to become nonresponsive.

Vulnerable Systems:

Windows Server 2019 and Prior

CVE Information:

CVE-2019-0785

Disclosure Timeline:
Published Date:07/16/2019