Microsoft Windows File Signature CVE-2019-1163 Security Feature Bypass Vulnerability

description-logoDescription

A security feature bypass exists when Windows incorrectly validates CAB file signatures. An attacker who successfully exploited this vulnerability could inject code into a CAB file without invalidating the file's signature. To exploit the vulnerability, an attacker could modify a signed CAB file and inject malicious code. The attacker could then convince a target user to execute the file. The update addresses the vulnerability by correcting how Windows validates file signatures.

affected-products-logoAffected Applications

Windows 10
Windows Server 2016
Windows Server version 1803 (Server Core Installation)
Windows Server version 1903 (Server Core installation)
Windows Server 2019

CVE References

CVE-2019-1163