Rapid7 Vulnerability & Exploit Database

Microsoft Windows: CVE-2019-0885: Windows OLE Remote Code Execution Vulnerability

Free InsightVM Trial No Credit Card Necessary
2024 Attack Intel Report Latest research by Rapid7 Labs
Back to Search

Microsoft Windows: CVE-2019-0885: Windows OLE Remote Code Execution Vulnerability

Severity
9
CVSS
(AV:N/AC:M/Au:N/C:C/I:C/A:C)
Published
05/14/2019
Created
05/15/2019
Added
05/14/2019
Modified
06/10/2024

Description

A remote code execution vulnerability exists when Microsoft Windows OLE fails to properly validate user input, aka 'Windows OLE Remote Code Execution Vulnerability'.

Solution(s)

  • microsoft-windows-windows_10-1507-kb4499154
  • microsoft-windows-windows_10-1607-kb4494440
  • microsoft-windows-windows_10-1703-kb4499181
  • microsoft-windows-windows_10-1709-kb4499179
  • microsoft-windows-windows_10-1803-kb4499167
  • microsoft-windows-windows_10-1809-kb4494441
  • microsoft-windows-windows_10-1903-kb4497936
  • msft-kb4494440-4091b3b1-890f-4344-bf2c-cd6cc084a9a6
  • msft-kb4494441-5d824d81-f71c-4236-b44a-b1d3d3afac45
  • msft-kb4497936-10429ff2-9c14-4fb1-abdc-a105642cb1ad
  • msft-kb4499158-93082475-fee3-46cf-8c33-1d26b56c536f
  • msft-kb4499158-abe3070b-cf0f-460c-aa3e-facb04627dfa
  • msft-kb4499158-b4ae50b9-4f14-4eaf-8574-6b7a66beb9cb
  • msft-kb4499165-4b02df8e-e169-4d3a-a07e-bff78bc2efe3
  • msft-kb4499165-770814d7-311f-4093-a9b4-a42b90c29a13
  • msft-kb4499165-b6296768-ff16-4e28-aa22-9e8938569154
  • msft-kb4499167-2ea0586a-8e8e-4677-bcd7-0d821e1f3e9c
  • msft-kb4499175-5e4e9777-acaf-4485-b181-342ed54243e0
  • msft-kb4499175-80f959d7-d6e8-444f-a157-d96e403b7cd7
  • msft-kb4499175-b2b4e1dd-97d2-4352-b3c6-e8b8ceefeeea
  • msft-kb4499175-c723d22f-c1f5-4e53-973c-5991b24ddd48
  • msft-kb4499175-e833c2ff-5588-4831-a96b-9fffb35bf3ce
  • msft-kb4499175-f655d609-7d57-4c77-9e8a-a59a2dbeaa80
  • msft-kb4499180-35b41bba-4719-4a94-a669-6aeed5e13763
  • msft-kb4499180-a933ba63-a19e-453b-af10-eb3bfcd1b425
  • msft-kb4499180-e2f52ce9-61fa-4a6a-aa5a-43a2a91be450

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;