Windows 10: CVE-2019-0627 - Windows Security Feature Bypass Vulnerability

Brink · Feb 19, 2019

A security feature bypass vulnerability exists in Windows which could allow an attacker to bypass Device Guard. An attacker who successfully exploited this vulnerability could circumvent a User Mode Code Integrity (UMCI) policy on the machine.

To exploit the vulnerability, an attacker would first have to access the local machine, and then run a malicious program.

The update addresses the vulnerability by correcting how Windows validates User Mode Code Integrity policies.

Exploitability Assessment

The following table provides an exploitability assessment for this vulnerability at the time of original publication.

Publicly Disclosed Exploited Latest Software Release Older Software Release Denial of Service No No 1 - Exploitation More Likely 1 - Exploitation More Likely Not Applicable
Security Updates

To determine the support life cycle for your software version or edition, see the Microsoft Support Lifecycle.

Product Platform Article Download Impact Severity Supersedence PowerShell Core 6.1 Release Notes Security Update Security Feature Bypass Important PowerShell Core 6.2 Release Notes Security Update Security Feature Bypass Important Windows 10 for 32-bit Systems 4487018 Security Update Security Feature Bypass Important 4480962 Windows 10 for x64-based Systems 4487018 Security Update Security Feature Bypass Important 4480962 Windows 10 Version 1607 for 32-bit Systems 4487026 Security Update Security Feature Bypass Important 4480961 Windows 10 Version 1607 for x64-based Systems 4487026 Security Update Security Feature Bypass Important 4480961 Windows 10 Version 1703 for 32-bit Systems 4487020 Security Update Security Feature Bypass Important 4480973 Windows 10 Version 1703 for x64-based Systems 4487020 Security Update Security Feature Bypass Important 4480973 Windows 10 Version 1709 for 32-bit Systems 4486996 Security Update Security Feature Bypass Important 4480978 Windows 10 Version 1709 for 64-based Systems 4486996 Security Update Security Feature Bypass Important 4480978 Windows 10 Version 1709 for ARM64-based Systems 4486996 Security Update Security Feature Bypass Important 4480978 Windows 10 Version 1803 for 32-bit Systems 4487017 Security Update Security Feature Bypass Important 4480966 Windows 10 Version 1803 for ARM64-based Systems 4487017 Security Update Security Feature Bypass Important 4480966 Windows 10 Version 1803 for x64-based Systems 4487017 Security Update Security Feature Bypass Important 4480966 Windows 10 Version 1809 for 32-bit Systems 4487044 Security Update Security Feature Bypass Important 4480116 Windows 10 Version 1809 for ARM64-based Systems 4487044 Security Update Security Feature Bypass Important 4480116 Windows 10 Version 1809 for x64-based Systems 4487044 Security Update Security Feature Bypass Important 4480116 Windows Server 2016 4487026 Security Update Security Feature Bypass Important 4480961 Windows Server 2016 (Server Core installation) 4487026 Security Update Security Feature Bypass Important 4480961 Windows Server 2019 4487044 Security Update Security Feature Bypass Important 4480116 Windows Server 2019 (Server Core installation) 4487044 Security Update Security Feature Bypass Important 4480116 Windows Server, version 1709 (Server Core Installation) 4486996 Security Update Security Feature Bypass Important 4480978 Windows Server, version 1803 (Server Core Installation) 4487017 Security Update Security Feature Bypass Important 4480966
Mitigations

Microsoft has not identified any mitigating factors for this vulnerability.

Workarounds

Microsoft has not identified any workarounds for this vulnerability.

Acknowledgements

Matt Graeber of SpecterOps

See acknowledgements for more information.

Disclaimer

The information provided in the Microsoft Knowledge Base is provided "as is" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.

Revisions

Version Date Description 1.0 02/12/2019 Information published. 2.0 02/19/2019 Revised the Security Updates table to include PowerShell Core 6.1 and 6.2 because they are affected by this vulnerability. See Microsoft Security Advisory - Multiple UMCI bypass vulnerabilities · Issue #13 · PowerShell/Announcements · GitHub for more information.
Click to expand...

Source: https://portal.msrc.microsoft.com/en.../CVE-2019-0627

:)

NICK ADSL UK · Feb 19, 2019

Microsoft February 2019 Security Updates

Release Notes

February 2019 Security Updates

Release Date: February 12, 2019

The February security release consists of security updates for the following software:

Adobe Flash Player

Internet Explorer

Microsoft Edge

Microsoft Windows

Microsoft Office and Microsoft Office Services and Web Apps

ChakraCore

.NET Framework

Microsoft Exchange Server

Microsoft Visual Studio

Azure IoT SDK

Microsoft Dynamics

Team Foundation Server

Visual Studio Code

Please note the following information regarding the security updates:

A list of the latest servicing stack updates for each operating system can be found in ADV990001. This list will be updated whenever a new servicing stack update is released. It is important to install the latest servicing stack update.

Windows 10 updates are cumulative. The monthly security release includes all security fixes for vulnerabilities that affect Windows 10, in addition to non-security updates. The updates are available via the Microsoft Update Catalog.

Updates for Windows RT 8.1 and Microsoft Office RT software are only available via Windows Update.

For information on lifecycle and support dates for Windows 10 operating systems, please see Windows Lifecycle Facts Sheet.

In addition to security changes for the vulnerabilities, updates include defense-in-depth updates to help improve security-related features.

The following CVEs have FAQs with additional information and may include * further steps to take after installing the updates.

ADV190003

ADV190007 *

ADV990001

CVE-2019-0540 *

CVE-2019-0600

CVE-2019-0601

CVE-2019-0602

CVE-2019-0615

CVE-2019-0616

CVE-2019-0619

CVE-2019-0621

CVE-2019-0628

CVE-2019-0635

CVE-2019-0636

CVE-2019-0643

CVE-2019-0648

CVE-2019-0658

CVE-2019-0660

CVE-2019-0661

CVE-2019-0664

CVE-2019-0669

CVE-2019-0676

CVE-2019-0686 *

CVE-2019-0724 *

CVE-2019-0741

Known Issues

44****2

{{windowTitle}}

NICK ADSL UK · Feb 19, 2019

Microsoft January 2019 Security Updates

Release Notes
January 2019 Security Updates

Release Date: January 08, 2019

The January security release consists of security updates for the following software:

Adobe Flash Player

Internet Explorer

Microsoft Edge

Microsoft Windows

Microsoft Office and Microsoft Office Services and Web Apps

ChakraCore

.NET Framework

ASP.NET

Microsoft Exchange Server

Microsoft Visual Studio

Please note the following information regarding the security updates:

A list of the latest servicing stack updates for each operating system can be found in

ADV990001. This list will be updated whenever a new servicing stack update is released. It is important to install the latest servicing stack update.

Windows 10 updates are cumulative. The monthly security release includes all security fixes for vulnerabilities that affect Windows 10, in addition to non-security updates. The updates are available via the

Microsoft Update Catalog.

Updates for Windows RT 8.1 and Microsoft Office RT software are only available via

Windows Update.

For information on lifecycle and support dates for Windows 10 operating systems, please see

Windows Lifecycle Facts Sheet.

In addition to security changes for the vulnerabilities, updates include defense-in-depth updates to help improve security-related features.

The following CVEs have FAQs with additional information and may include * further steps to take after installing the updates.

ADV190001

CVE-2019-0536

CVE-2019-0537

CVE-2019-0545

CVE-2019-0549

CVE-2019-0553

CVE-2019-0554

CVE-2019-0559

CVE-2019-0560

CVE-2019-0561

CVE-2019-0569

CVE-2019-0585

CVE-2019-0588

Known Issues

4480961

4480973

4480978

4480966

4480970

4480116

4480962

4480963

4480975

4468742

4471389

{{windowTitle}}

Brink · Feb 19, 2019

CVE-2018-8512 - Microsoft Edge Security Feature Bypass Vulnerability

A security feature bypass vulnerability exists when Microsoft Edge improperly handles requests of different origins. The vulnerability allows Microsoft Edge to bypass Same-Origin Policy (SOP) restrictions, and to allow requests that should otherwise be ignored. An attacker who successfully exploited the vulnerability could force the browser to send data that would otherwise be restricted.

In a web-based attack scenario, an attacker could host a specially crafted website that is designed to exploit the vulnerability through Microsoft Edge and then convince a user to view the website. The attacker could also take advantage of compromised websites, and websites that accept or host user-provided content or advertisements. These websites could contain specially crafted content that could exploit the vulnerability.

The security update addresses the vulnerability by modifying how affected Microsoft Edge handles different-origin requests.

Exploitability Assessment
The following table provides an exploitability assessment for this vulnerability at the time of original publication.

[table][tr]Publicly Disclosed Exploited Latest Software Release Older Software Release Denial of Service [/tr] [tr][td]No[/td] [td]No[/td] [td]2 - Exploitation Less Likely[/td] [td]4 - Not affected[/td] [td]Not Applicable[/td] [/tr] [/table]

Security Updates
The following software versions or editions are affected. Versions or editions that are not listed are either past their support life cycle or are not affected. To determine the support life cycle for your software version or edition, see the Microsoft Support Lifecycle.

[table][tr]Product Platform Article Download Impact Severity Supersedence [/tr] [tr][td]Microsoft Edge[/td] [td]Windows 10 Version 1703 for 32-bit Systems[/td] [td]4462937[/td] [td]Security Update[/td] [td]Security Feature Bypass[/td] [td]Important[/td] [td]4457138[/td] [/tr] [tr][td]Microsoft Edge[/td] [td]Windows 10 Version 1703 for x64-based Systems[/td] [td]4462937[/td] [td]Security Update[/td] [td]Security Feature Bypass[/td] [td]Important[/td] [td]4457138[/td] [/tr] [tr][td]Microsoft Edge[/td] [td]Windows 10 Version 1709 for 32-bit Systems[/td] [td]4462918[/td] [td]Security Update[/td] [td]Security Feature Bypass[/td] [td]Important[/td] [td]4457142[/td] [/tr] [tr][td]Microsoft Edge[/td] [td]Windows 10 Version 1709 for 64-based Systems[/td] [td]4462918[/td] [td]Security Update[/td] [td]Security Feature Bypass[/td] [td]Important[/td] [td]4457142[/td] [/tr] [/table]

Mitigations

Microsoft has not identified any mitigating factors for this vulnerability.

Workarounds

Microsoft has not identified any workarounds for this vulnerability.

Acknowledgements

Microsoft recognizes the efforts of those in the security community who help us protect customers through coordinated vulnerability disclosure.

See acknowledgements for more information.

Disclaimer

The information provided in the Microsoft Knowledge Base is provided "as is" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.

Revisions

[table][tr]Version Date Description [/tr] [tr][td]1.0[/td] [td]10/09/2018[/td] [td]Information published.[/td] [/tr] [tr][td]1.1[/td] [td]10/24/2018[/td] [td]Corrected vulnerability description. This is an informational change only.[/td] [/tr] [/table]
Click to expand...

Source: https://portal.msrc.microsoft.com/en.../CVE-2018-8512

Windows 10: CVE-2019-0627 - Windows Security Feature Bypass Vulnerability

CVE-2019-0627 - Windows Security Feature Bypass Vulnerability

CVE-2019-0627 - Windows Security Feature Bypass Vulnerability

CVE-2019-0627 - Windows Security Feature Bypass Vulnerability

CVE-2019-0627 - Windows Security Feature Bypass Vulnerability - Similar Threads - CVE 2019 0627

BitLocker Security Feature Bypass Vulnerability CVE-2022-41099 and KB5025175

BitLocker Security Feature Bypass Vulnerability CVE-2022-41099 and KB5025175

BitLocker Security Feature Bypass Vulnerability CVE-2022-41099 and KB5025175

CVE-2019-1378 Windows 10 Update Assistant Vulnerability

CVE-2019-1314 Windows 10 Mobile Security Feature Bypass Vulnerability Mobile

CVE-2019-1292 | Windows Elevation of Privilege Vulnerability

CVE-2019-1215 | Windows Elevation of Privilege Vulnerability

CVE-2019-1105 - Outlook for Android Spoofing Vulnerability

CVE-2018-8512 - Microsoft Edge Security Feature Bypass Vulnerability