1. Symantec-Broadcom-Horizontal/
  2. Security Response/
  3. Attack Signatures/
  4. Attack: Microsoft Windows DHCP Server CVE-2019-0626

Attack: Microsoft Windows DHCP Server CVE-2019-0626

Severity: High

This attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening.

Description

This signature detects the attempt to execute arbitrary code in the context of the system account. Failed exploit attempts will likely result in denial-of-service conditions.

Additional Information

Microsoft Windows is prone to a remote code-execution vulnerability because of a memory-corruption error. Specifically, the issue exists due to an error in the 'Server DHCP Service'. An attacker can exploit this issue by sending specifically crafted packets to a DHCP server.

An attacker can leverage this issue to execute arbitrary code in the context of the system account. Failed exploit attempts will likely result in denial-of-service conditions.

Affected

  • Windows 7, 8, 10, Windows Server 2008, 2012, 2016, 2019
  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube