Windows kernel-mode driver fails Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability

Summary

Windows kernel-mode driver fails suffers from improper restriction of operations within the bounds of a memory buffer vulnerability

Credit:

The information has been provided by Vendor

The original article can be found at: http://packetstormsecurity.com/files/154797/Microsoft-Windows-Kernel-win32k.sys-TTF-Font-Processing-win32k-ulClearTypeFilter-Pool-Corruption.html

 


Details

An elevation of privilege vulnerability exists in Windows when the Windows kernel-mode driver fails to properly handle objects in memory, aka ‘Win32k Elevation of Privilege Vulnerability’.

Vulnerable Systems:

Windows kernel-mode driver fails 

CVE Information:

CVE-2019-1364 

Disclosure Timeline:
Published Date:10/10/2019