Microsoft Windows Setup Elevation Improper Privilege ManagementVulnerability

Summary

Microsoft Windows Setup Elevation suffers from improper privilege management vulnerability

Credit:

The information has been provided by Callum Holmes 

The original article can be found at: https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1316


Details

An elevation of privilege vulnerability exists in Microsoft Windows Setup when it does not properly handle privileges. An attacker who successfully exploited this vulnerability could run processes in an elevated context. An attacker could then install programs; view, change or delete data.

Vulnerable Systems:

Microsoft Windows Setup Elevation 

CVE Information:

CVE-2019-1316

Disclosure Timeline:
Published Date:10/10/2019