RULE(RULE ID:2005155)

Rule General Information
Release Date: 2020-06-01
Rule Name: Microsoft Windows DHCP Server Vendor Specific Remote Code Execution Vulnerability (CVE-2019-0626)
Severity:
CVE ID:
Rule Protection Details
Description: A memory corruption vulnerability exists in the Windows Server DHCP service when an attacker sends specially crafted packets to a DHCP server.
Impact: An attacker can execute arbitrary code via a successful exploit in the context of the vulnerable software.
Affected OS: Windows
Reference: SecurityFocusBID:106887
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0626
Solutions
The vendors have released upgrade patches to fix vulnerabilities, please visit:
https://portal.msrc.microsoft.com/zh-CN/security-guidance/advisory/CVE-2019-0626