CVE-2019-0986

MEDIUM

Windows ProfSvc - Privilege Escalation

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2019-0986. PoCs published by padovah4ck.

AI-analyzed exploit summary This repository contains a functional proof-of-concept exploit for CVE-2019-0986, which involves creating hard links to exploit a vulnerability in Windows. The code includes methods for handling file paths, native file handles, and hard link creation using Windows API calls.

Description

An elevation of privilege vulnerability exists when the Windows User Profile Service (ProfSvc) improperly handles symlinks. An attacker who successfully exploited this vulnerability could delete files and folders in an elevated context. To exploit this vulnerability, an attacker would first have to log on to the system. An attacker could then run a specially crafted application that could exploit the vulnerability and delete files or folders of their choosing. The security update addresses the vulnerability by correcting how the Windows User Profile Service handles symlinks.

Exploits (1)

nomisec WORKING POC 36 stars

by padovah4ck · poc

https://github.com/padovah4ck/CVE-2019-0986

View Code ZIP pw:eip

This repository contains a functional proof-of-concept exploit for CVE-2019-0986, which involves creating hard links to exploit a vulnerability in Windows. The code includes methods for handling file paths, native file handles, and hard link creation using Windows API calls.

Classification

Working Poc 95%

Attack Type

Lpe

Complexity

Moderate

Reliability

Reliable

Target: Microsoft Windows (specific versions affected by CVE-2019-0986)

No auth needed

Prerequisites: Access to the target system · Ability to execute arbitrary code on the target system

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation

devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (2)

Core 2

Core References

Patch, Vendor Advisory

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0986

Vendor Advisory vendor-advisory

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2019-0986

Scores

CVSS v3 6.3

EPSS 0.0205

EPSS Percentile 78.8%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H

Details

CWE

CWE-59

Status published

Products (18)

microsoft/windows_10

microsoft/windows_10 1607

microsoft/windows_10 1703

microsoft/windows_10 1709

microsoft/windows_10 1803

microsoft/windows_10 1809

microsoft/windows_10 1903

microsoft/windows_7

microsoft/windows_8.1

microsoft/windows_rt_8.1

... and 8 more

Published Jun 12, 2019

Tracked Since Feb 18, 2026