.NET Framework Elevation of Privilege Vulnerability - CVE-2019-1142ID: oval:org.secpod.oval:def:58502 | Date: (C)2019-09-11 (M)2024-03-06 |
Class: VULNERABILITY | Family: windows |
An elevation of privilege vulnerability exists when the .NET Framework common language runtime (CLR) allows file creation in arbitrary locations. An attacker who successfully exploited this vulnerability could write files to folders that require higher privileges than what the attacker already has. To exploit the vulnerability, an attacker would need to log into a system. The attacker could then specify the targeted folder and trigger an affected process to run.
Platform: |
Microsoft Windows 7 |
Microsoft Windows 8.1 |
Microsoft Windows 10 |
Microsoft Windows Server 2008 |
Microsoft Windows Server 2008 R2 |
Microsoft Windows Server 2012 |
Microsoft Windows Server 2012 R2 |
Microsoft Windows Server 2016 |
Microsoft Windows Server 2019 |
Product: |
Microsoft .NET Framework 3.5.1 |
Microsoft .NET Framework 4.5.2 |
Microsoft .NET Framework 4.6.2 |
Microsoft .NET Framework 4.6.1 |
Microsoft .NET Framework 4.6 |
Microsoft .NET Framework 3.5 |
Microsoft .NET Framework 4.7 |
Microsoft .NET Framework 4.7.1 |
Microsoft .NET Framework 4.7.2 |
Microsoft .NET Framework 4.8 |