Warning from Microsoft: To Patch Tuesday The January patch released yesterday includes an update for a remote code execution flaw in Windows 10 version 1803.
Microsoft says you should update your systems immediately.
The update security it is present in Windows 10 cumulative update KB4480966, which is only available for version 1803 (April 2018 Update), which is the only version of Windows affected by the vulnerability.
The vulnerability is described in detail by Microsoft in CVE-2019-0547 where the company states that so far no exploit is released.
"There is a memory corruption in the Windows DHCP client when an attacker sends specially processed DHCP responses to a client. An attacker who could exploit the vulnerability could execute arbitrary code on the system. ”
MSRC team Nate Warfield says the bug was found internally and no PoC will be released. However, it is recommended that you install the update as soon as possible.
___________________________