BACK

CVE-2019-0797: Zero-day exploits keep coming

CVE-2019-0797: Zero-day exploits keep comingAt the risk of seeming monotonous, we are compelled by circumstances to report that three months after the last zero-day vulnerability was found, our proactive technologies have uncovered another Windows exploit. This time, the vulnerability affects many more versions of the operating system: 64-bit Windows 8 and 10 (up to build …

  • 14 Mar 2019
2 min read
CVE-2019-0797: Zero-day exploits keep coming
At the risk of seeming monotonous, we are compelled by circumstances to report that three months after the last zero-day vulnerability was found, our proactive technologies have uncovered another Windows exploit. This time, the vulnerability affects many more versions of the operating system: 64-bit Windows 8 and 10 (up to build 15063) find themselves plumb in the danger zone. We duly notified Microsoft, and a patch was included in a system update released on March 12. Curiously, though, despite the continual release of updates for current versions, many users are in no hurry to install them for fear of disrupting their computers’ operations. This “wait and see what happens to others” approach is not recommended. What is CVE-2019-0797? This is no less than the fourth privilege escalation exploit recently detected by our systems. As in the case of CVE-2018-8589, it is a race condition error in the win32k.sys driver (technical details are available on Securelist). We know about several targeted attacks that made use of this exploit. It potentially allows intruders to gain complete control over the vulnerable system. How to avoid problems Our advice remains the same: Install the corresponding system update (available on the Microsoft website); Always update software (in particular, operating systems) to the latest versions, and replace it when the support period expires, if possible; Use security solutions with behavioral analysis technologies. The technologies used to detect the exploit (Advanced Sandboxing, Anti Targeted Attack, Behavioral Detection Engine, Automatic Exploit Prevention) are deployed in the Kaspersky Security for Business solution.
Source: Kaspersky Lab official blogPublished on 2019-03-14
Blog Details
  • 14 Mar 2019

Newest Articles.

View all
  • 04 Mar 16

    Top 5 Recent Cyber-attacks/hacks and How They Could Relate to your Business.

    Read Article logo
  • 13 Mar 16

    Data leaks, how can they affect Sales and Business Integrity?

    Read Article logo
  • 20 Apr 16

    Common Cyber Security Threats Faced by Businesses and The Impacts

    Read Article logo
  • 11 May 16

    Regular Vulnerability Scans Assessments: Keeping You Safe

    Read Article logo

Get a Quote

Click below and we’ll send you a quote as soon as possible.

quote-form-pattern
  • This field is for validation purposes and should be left unchanged.

Contact Us

Click below and we’ll send you a quote as soon as possible.

quote-form-pattern
  • This field is for validation purposes and should be left unchanged.

Step 1 of 4 - Let’s get started

25%
  • Thanks for your interest in working with us. Please complete the details below and we’ll get back to you as soon as possible.

Buy Cyber Essentials

price-popup-pattern