Vulnerabilities > Microsoft > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-07-15 | CVE-2019-0887 | Path Traversal vulnerability in Microsoft products A remote code execution vulnerability exists in Remote Desktop Services - formerly known as Terminal Services - when an authenticated attacker abuses clipboard redirection, aka 'Remote Desktop Services Remote Code Execution Vulnerability'. | 8.0 |
| 2019-07-15 | CVE-2019-0880 | Unspecified vulnerability in Microsoft products A local elevation of privilege vulnerability exists in how splwow64.exe handles certain calls, aka 'Microsoft splwow64 Elevation of Privilege Vulnerability'. | 7.8 |
| 2019-07-15 | CVE-2019-0865 | Unspecified vulnerability in Microsoft products A denial of service vulnerability exists when SymCrypt improperly handles a specially crafted digital signature.An attacker could exploit the vulnerability by creating a specially crafted connection or message.The security update addresses the vulnerability by correcting the way SymCrypt handles digital signatures., aka 'SymCrypt Denial of Service Vulnerability'. | 7.5 |
| 2019-07-15 | CVE-2019-0811 | Data Processing Errors vulnerability in Microsoft products A denial of service vulnerability exists in Windows DNS Server when it fails to properly handle DNS queries, aka 'Windows DNS Server Denial of Service Vulnerability'. | 7.5 |
| 2019-06-12 | CVE-2019-1080 | Out-of-bounds Write vulnerability in Microsoft Internet Explorer 10/11/9 A remote code execution vulnerability exists in the way the scripting engine handles objects in memory in Microsoft browsers. | 7.5 |
| 2019-06-12 | CVE-2019-1069 | Link Following vulnerability in Microsoft products An elevation of privilege vulnerability exists in the way the Task Scheduler Service validates certain file operations. | 7.8 |
| 2019-06-12 | CVE-2019-1065 | Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Microsoft products An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory. | 7.8 |
| 2019-06-12 | CVE-2019-1064 | Link Following vulnerability in Microsoft products An elevation of privilege vulnerability exists when Windows AppX Deployment Service (AppXSVC) improperly handles hard links. | 7.8 |
| 2019-06-12 | CVE-2019-1055 | Out-of-bounds Write vulnerability in Microsoft Internet Explorer 10/11/9 A remote code execution vulnerability exists in the way the scripting engine handles objects in memory in Microsoft browsers. | 7.5 |
| 2019-06-12 | CVE-2019-1045 | Unspecified vulnerability in Microsoft products An elevation of privilege vulnerability exists in the way that the Windows Network File System (NFS) handles objects in memory. | 7.8 |