CVE CVE-2019-1118 Mappings

A remote code execution vulnerability exists in the way that DirectWrite handles objects in memory, aka 'DirectWrite Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1117, CVE-2019-1119, CVE-2019-1120, CVE-2019-1121, CVE-2019-1122, CVE-2019-1123, CVE-2019-1124, CVE-2019-1127, CVE-2019-1128.


Capability ID Capability Description Mapping Type ATT&CK ID ATT&CK Name
CVE-2019-1118 Windows primary_impact T1574 Hijack Execution Flow
CVE-2019-1118 Windows primary_impact T1499.004 Application or System Exploitation
CVE-2019-1118 Windows secondary_impact T1005 Data from Local System
CVE-2019-1118 Windows secondary_impact T1565 Data Manipulation
CVE-2019-1118 Windows secondary_impact T1485 Data Destruction
CVE-2019-1118 Windows secondary_impact T1136 Create Account
CVE-2019-1118 Windows exploitation_technique T1189 Drive-by Compromise
CVE-2019-1118 Windows exploitation_technique T1204.002 Malicious File