CVE-2019-1089 - Microsoft Windows Server 2012, Microsoft Windows Server 2016 and Microsoft Windows Server 2019
Critical 7.8
An elevation of privilege vulnerability exists in rpcss.dll when the RPC service Activation Kernel improperly handles an RPC request. To exploit this vulnerability, a low level authenticated attacker could run a specially crafted application. The security update addresses this vulnerability by correcting how rpcss.dll handles these requests., aka 'Windows RPCSS Elevation of Privilege Vulnerability'.
Affected software
Microsoft Windows Server 2012
Microsoft Windows Server 2016
Microsoft Windows Server 2019
Microsoft Windows Server 2008
Microsoft Windows Rt 8.1
Microsoft Windows 10
Microsoft Windows 8.1
Microsoft Windows 7