Microsoft Security Bulletin Coverage for June 2019

By

CVE-2019-0620 Windows Hyper-V Remote Code Execution Vulnerability
There are no known exploits in the wild.
CVE-2019-0709 Windows Hyper-V Remote Code Execution Vulnerability
There are no known exploits in the wild.
CVE-2019-0710 Windows Hyper-V Denial of Service Vulnerability
There are no known exploits in the wild.
CVE-2019-0711 Windows Hyper-V Denial of Service Vulnerability
There are no known exploits in the wild.
CVE-2019-0713 Windows Hyper-V Denial of Service Vulnerability
There are no known exploits in the wild.
CVE-2019-0722 Windows Hyper-V Remote Code Execution Vulnerability
There are no known exploits in the wild.
CVE-2019-0888 ActiveX Data Objects (ADO) Remote Code Execution Vulnerability
There are no known exploits in the wild.
CVE-2019-0904 Jet Database Engine Remote Code Execution Vulnerability
There are no known exploits in the wild.
CVE-2019-0905 Jet Database Engine Remote Code Execution Vulnerability
There are no known exploits in the wild.
CVE-2019-0906 Jet Database Engine Remote Code Execution Vulnerability
There are no known exploits in the wild.
CVE-2019-0907 Jet Database Engine Remote Code Execution Vulnerability
There are no known exploits in the wild.
CVE-2019-0908 Jet Database Engine Remote Code Execution Vulnerability
There are no known exploits in the wild.
CVE-2019-0909 Jet Database Engine Remote Code Execution Vulnerability
There are no known exploits in the wild.
CVE-2019-0920 Scripting Engine Memory Corruption Vulnerability
IPS 14236:Scripting Engine Memory Corruption Vulnerability (JUN 19) 1
CVE-2019-0941 Microsoft IIS Server Denial of Service Vulnerability
There are no known exploits in the wild.
CVE-2019-0943 Windows ALPC Elevation of Privilege Vulnerability
ASPY 5526:Malformed-File exe.MP.75
CVE-2019-0948 Windows Event Viewer Information Disclosure Vulnerability
There are no known exploits in the wild.
CVE-2019-0959 Windows Common Log File System Driver Elevation of Privilege Vulnerability
ASPY 5527:Malformed-File exe.MP.76
CVE-2019-0960 Win32k Elevation of Privilege Vulnerability
There are no known exploits in the wild.
CVE-2019-0968 Windows GDI Information Disclosure Vulnerability
There are no known exploits in the wild.
CVE-2019-0972 Local Security Authority Subsystem Service Denial of Service Vulnerability
There are no known exploits in the wild.
CVE-2019-0973 Windows Installer Elevation of Privilege Vulnerability
There are no known exploits in the wild.
CVE-2019-0974 Jet Database Engine Remote Code Execution Vulnerability
There are no known exploits in the wild.
CVE-2019-0977 Windows GDI Information Disclosure Vulnerability
There are no known exploits in the wild.
CVE-2019-0983 Windows Storage Service Elevation of Privilege Vulnerability
There are no known exploits in the wild.
CVE-2019-0984 Windows Common Log File System Driver Elevation of Privilege Vulnerability
ASPY 5528:Malformed-File exe.MP.77
CVE-2019-0985 Microsoft Speech API Remote Code Execution Vulnerability
ASPY 1176:Malformed-File pdf.MP.253
CVE-2019-0986 Windows User Profile Service Elevation of Privilege Vulnerability
ASPY 5529:Malformed-File exe.MP.78
CVE-2019-0988 Scripting Engine Memory Corruption Vulnerability
IPS 14237:Scripting Engine Memory Corruption Vulnerability (JUN 19) 2
CVE-2019-0989 Chakra Scripting Engine Memory Corruption Vulnerability
IPS 14238:Chakra Scripting Engine Memory Corruption Vulnerability (JUN 19) 1
CVE-2019-0990 Scripting Engine Information Disclosure Vulnerability
IPS 14239:Scripting Engine Information Disclosure Vulnerability (JUN 19) 1
CVE-2019-0991 Chakra Scripting Engine Memory Corruption Vulnerability
IPS 14129:Chakra Scripting Engine Memory Corruption Vulnerability GM 1
CVE-2019-0992 Chakra Scripting Engine Memory Corruption Vulnerability
IPS 14129:Chakra Scripting Engine Memory Corruption Vulnerability GM 1
CVE-2019-0993 Chakra Scripting Engine Memory Corruption Vulnerability
IPS 14129:Chakra Scripting Engine Memory Corruption Vulnerability GM 1
CVE-2019-0996 Azure DevOps Server Spoofing Vulnerability
There are no known exploits in the wild.
CVE-2019-0998 Windows Storage Service Elevation of Privilege Vulnerability
There are no known exploits in the wild.
CVE-2019-1002 Chakra Scripting Engine Memory Corruption Vulnerability
IPS 14249:Chakra Scripting Engine Memory Corruption Vulnerability (JUN 19) 4
CVE-2019-1003 Chakra Scripting Engine Memory Corruption Vulnerability
IPS 14250:Chakra Scripting Engine Memory Corruption Vulnerability (JUN 19) 5
CVE-2019-1005 Scripting Engine Memory Corruption Vulnerability
IPS 14252:Scripting Engine Memory Corruption Vulnerability (JUN 19) 4
CVE-2019-1007 Windows Audio Service Elevation of Privilege Vulnerability
There are no known exploits in the wild.
CVE-2019-1009 Windows GDI Information Disclosure Vulnerability
There are no known exploits in the wild.
CVE-2019-1010 Windows GDI Information Disclosure Vulnerability
There are no known exploits in the wild.
CVE-2019-1011 Windows GDI Information Disclosure Vulnerability
There are no known exploits in the wild.
CVE-2019-1012 Windows GDI Information Disclosure Vulnerability
There are no known exploits in the wild.
CVE-2019-1013 Windows GDI Information Disclosure Vulnerability
There are no known exploits in the wild.
CVE-2019-1014 Win32k Elevation of Privilege Vulnerability
There are no known exploits in the wild.
CVE-2019-1015 Windows GDI Information Disclosure Vulnerability
There are no known exploits in the wild.
CVE-2019-1016 Windows GDI Information Disclosure Vulnerability
There are no known exploits in the wild.
CVE-2019-1017 Win32k Elevation of Privilege Vulnerability
ASPY 5535:Malformed-File exe.MP.83
CVE-2019-1018 DirectX Elevation of Privilege Vulnerability
There are no known exploits in the wild.
CVE-2019-1019 Microsoft Windows Security Feature Bypass Vulnerability
There are no known exploits in the wild.
CVE-2019-1021 Windows Audio Service Elevation of Privilege Vulnerability
There are no known exploits in the wild.
CVE-2019-1022 Windows Audio Service Elevation of Privilege Vulnerability
There are no known exploits in the wild.
CVE-2019-1023 Scripting Engine Information Disclosure Vulnerability
IPS 13068:Scripting Engine Memory Corruption Vulnerability GM 1
CVE-2019-1024 Chakra Scripting Engine Memory Corruption Vulnerability
IPS 14251:Chakra Scripting Engine Memory Corruption Vulnerability (JUN 19) 6
CVE-2019-1025 Windows Denial of Service Vulnerability
There are no known exploits in the wild.
CVE-2019-1026 Windows Audio Service Elevation of Privilege Vulnerability
There are no known exploits in the wild.
CVE-2019-1027 Windows Audio Service Elevation of Privilege Vulnerability
There are no known exploits in the wild.
CVE-2019-1028 Windows Audio Service Elevation of Privilege Vulnerability
There are no known exploits in the wild.
CVE-2019-1029 Skype for Business and Lync Server Denial of Service Vulnerability
There are no known exploits in the wild.
CVE-2019-1031 Microsoft Office SharePoint XSS Vulnerability
There are no known exploits in the wild.
CVE-2019-1032 Microsoft Office SharePoint XSS Vulnerability
There are no known exploits in the wild.
CVE-2019-1033 Microsoft Office SharePoint XSS Vulnerability
There are no known exploits in the wild.
CVE-2019-1034 Microsoft Word Remote Code Execution Vulnerability
There are no known exploits in the wild.
CVE-2019-1035 Microsoft Word Remote Code Execution Vulnerability
There are no known exploits in the wild.
CVE-2019-1036 Microsoft Office SharePoint XSS Vulnerability
There are no known exploits in the wild.
CVE-2019-1038 Microsoft Browser Memory Corruption Vulnerability
There are no known exploits in the wild.
CVE-2019-1039 Windows Kernel Information Disclosure Vulnerability
There are no known exploits in the wild.
CVE-2019-1040 Windows NTLM Tampering Vulnerability
There are no known exploits in the wild.
CVE-2019-1041 Windows Kernel Elevation of Privilege Vulnerability
ASPY 5534:Malformed-File exe.MP.82
CVE-2019-1043 Comctl32 Remote Code Execution Vulnerability
There are no known exploits in the wild.
CVE-2019-1044 Windows Secure Kernel Mode Security Feature Bypass Vulnerability
There are no known exploits in the wild.
CVE-2019-1045 Windows Network File System Elevation of Privilege Vulnerability
There are no known exploits in the wild.
CVE-2019-1046 Windows GDI Information Disclosure Vulnerability
There are no known exploits in the wild.
CVE-2019-1047 Windows GDI Information Disclosure Vulnerability
There are no known exploits in the wild.
CVE-2019-1048 Windows GDI Information Disclosure Vulnerability
There are no known exploits in the wild.
CVE-2019-1049 Windows GDI Information Disclosure Vulnerability
There are no known exploits in the wild.
CVE-2019-1050 Windows GDI Information Disclosure Vulnerability
There are no known exploits in the wild.
CVE-2019-1051 Chakra Scripting Engine Memory Corruption Vulnerability
IPS 14247:Chakra Scripting Engine Memory Corruption Vulnerability (JUN 19) 3
CVE-2019-1052 Chakra Scripting Engine Memory Corruption Vulnerability
IPS 14246:Chakra Scripting Engine Memory Corruption Vulnerability (JUN 19) 2
CVE-2019-1053 Windows Shell Elevation of Privilege Vulnerability
ASPY 5532:Malformed-File exe.MP.81
CVE-2019-1054 Microsoft Edge Security Feature Bypass Vulnerability
There are no known exploits in the wild.
CVE-2019-1055 Scripting Engine Memory Corruption Vulnerability
IPS 14245:Scripting Engine Memory Corruption Vulnerability (JUN 19) 3
CVE-2019-1064 Windows Elevation of Privilege Vulnerability
ASPY 5531:Malformed-File exe.MP.80
CVE-2019-1065 Windows Kernel Elevation of Privilege Vulnerability
ASPY 5534:Malformed-File exe.MP.82
CVE-2019-1069 Task Scheduler Elevation of Privilege Vulnerability
ASPY 5530:Malformed-File exe.MP.79
CVE-2019-1080 Scripting Engine Memory Corruption Vulnerability
There are no known exploits in the wild.
CVE-2019-1081 Microsoft Browser Information Disclosure Vulnerability
There are no known exploits in the wild.

Security News
The SonicWall Capture Labs Threat Research Team gathers, analyzes and vets cross-vector threat information from the SonicWall Capture Threat network, consisting of global devices and resources, including more than 1 million security sensors in nearly 200 countries and territories. The research team identifies, analyzes, and mitigates critical vulnerabilities and malware daily through in-depth research, which drives protection for all SonicWall customers. In addition to safeguarding networks globally, the research team supports the larger threat intelligence community by releasing weekly deep technical analyses of the most critical threats to small businesses, providing critical knowledge that defenders need to protect their networks.