Signature Detail
This site is deprecated. Please CLICK HERE for latest updates
Short Name |
DHCP:RQST:CVE-2019-0626-RCE |
|---|---|
Severity |
Major |
Recommended |
Yes |
Recommended Action |
Drop |
Category |
DHCP |
Keywords |
Microsoft Windows DHCP Server Code Execution |
Release Date |
2019/03/05 |
Update Number |
3147 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+ |
DHCP: Microsoft Windows DHCP Server Code Execution
This signature detects attempts to exploit a known vulnerability against Microsoft DHCP Server. Successful exploitation of this vulnerability could allow the attacker to execute arbitrary code with the privileges of network service.
Extended Description
A memory corruption vulnerability exists in the Windows Server DHCP service when an attacker sends specially crafted packets to a DHCP server, aka 'Windows DHCP Server Remote Code Execution Vulnerability'.
Affected Products
- Microsoft windows_10 -
- Microsoft windows_10 1607
- Microsoft windows_10 1703
- Microsoft windows_10 1709
- Microsoft windows_10 1803
- Microsoft windows_10 1809
- Microsoft windows_7 -
- Microsoft windows_8.1 -
- Microsoft windows_rt_8.1 -
- Microsoft windows_server_2008 -
- Microsoft windows_server_2008 r2
- Microsoft windows_server_2012 -
- Microsoft windows_server_2012 r2
- Microsoft windows_server_2016 -
- Microsoft windows_server_2016 1709
- Microsoft windows_server_2016 1803
- Microsoft windows_server_2019 -
References
- CVE: CVE-2019-0626