Jump to content
Strawberry Orange Banana Lime Leaf Slate Sky Blueberry Grape Watermelon Chocolate Marble
Strawberry Orange Banana Lime Leaf Slate Sky Blueberry Grape Watermelon Chocolate Marble

MSFN is made available via donations, subscriptions and advertising revenue. The use of ad-blocking software hurts the site. Please disable ad-blocking software or set an exception for MSFN. Alternatively, register and become a site sponsor/subscriber and ads will be disabled automatically. 


Sampei.Nihira

Microsoft Management Console (MMC) Vulnerabilities

Recommended Posts

Posted (edited)
Quote

 

Recently, Check Point Research discovered several vulnerabilities in the console that would allow an attacker to deliver a malicious payload.

Microsoft has granted CVE-2019-0948 to this vulnerability and patched it in their June 11th Patch Tuesday release.

 

 

https://research.checkpoint.com/microsoft-management-console-mmc-vulnerabilities/

Probably, I have not verified, the Windows Vista can find the relative patch.
Not available for Windows XP.

It would be interesting to open a debate on the countermeasures to be taken.:)

Personally at the moment I have taken the following precautions:

 

1) Block direct execution of Vbscript code and block execution of .vbs scripts.

2) Block any process executed from mmc.exe.

3) Block execution .msc script executed outside Sytem Folder.

Edited by Sampei.Nihira
  • Like 1

Share this post


Link to post
Share on other sites

Isn't MMC available only in Pro and higher Windows versions?

Share this post


Link to post
Share on other sites
On 6/18/2019 at 7:37 PM, Sampei.Nihira said:

Probably, I have not verified, the Windows Vista can find the relative patch.

Vista SP2 users can manually install provided patch(es) for WS2008SP2:

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0948

Z6yP6ry.jpg

https://support.microsoft.com/en-us/help/4503273/windows-server-2008-update-kb4503273

https://support.microsoft.com/en-us/help/4503287/windows-server-2008-update-kb4503287

  • Like 1

Share this post


Link to post
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Restore formatting

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.


  • Recently Browsing   0 members

    No registered users viewing this page.

×
×
  • Create New...