virus logo Intrusion Prevention

MS.Windows.Installer.Config.msi.Privilege.Escalation

description-logoDescription

This indicates a possible attack against a Privilege Escalation vulnerability in Microsoft Windows.
The vulnerability is due to an error when the vulnerable software handles a maliciously crafted installer. A remote attacker may be able to exploit this to escalate their privileges on vulnerable systems.

affected-products-logoAffected Products

Windows Server 2016
Windows Server 2019
Windows 10 for 32-bit Systems
Windows 10 for x64-based Systems

Impact logoImpact

Privilege Escalation: Remote attackers can leverage their privilege on the vulnerable systems

recomended-action-logoRecommended Actions

Currently we are unaware of any vendor supplied patch for this issue.

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date Version Detail
2019-06-13 14.632 Default_action:pass:drop
2019-05-28 14.621
ID 47978
Created May 28, 2019
Updated Apr 17, 2023
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon
Default Action drop
Active
Affected OS Windows
Affected App Other