Windows : Microsoft Bulletins : Microsoft Windows Kernel Privilege Escalation Vulnerability (4013081)

Anfälligkeitssuche		Suche in 324607 CVE Beschreibungen und 145615 Test Beschreibungen, Zugriff auf 10,000+ Quellverweise.
	Tests CVE Alle

Test Kennung: 1.3.6.1.4.1.25623.1.0.810814

Kategorie: Windows : Microsoft Bulletins

Titel: Microsoft Windows Kernel Privilege Escalation Vulnerability (4013081)

Zusammenfassung: This host is missing an important security; update according to Microsoft Bulletin MS17-017

Beschreibung: Summary:
This host is missing an important security
update according to Microsoft Bulletin MS17-017

Vulnerability Insight:
Multiple flaws exist as,

- Windows kernel API enforces permissions.

- Windows Transaction Manager improperly handles objects in memory.

Vulnerability Impact:
Successful exploitation will allow an attacker
to gain elevated privileges on a targeted system.

Affected Software/OS:
- Microsoft Windows 8.1 x32/x64

- Microsoft Windows 10 x32/x64

- Microsoft Windows Server 2012/2012R2

- Microsoft Windows 10 Version 1511 x32/x64

- Microsoft Windows 10 Version 1607 x32/x64

- Microsoft Windows Vista x32/x64 Edition Service Pack 2

- Microsoft Windows Server 2008 x32/x64 Edition Service Pack 2

- Microsoft Windows 7 x32/x64 Edition Service Pack 1

- Microsoft Windows Server 2008 R2 x64 Edition Service Pack 1

- Microsoft Windows Server 2016

Solution:
The vendor has released updates. Please see the references for more information.

CVSS Score:
7.2

CVSS Vector:
AV:L/AC:L/Au:N/C:C/I:C/A:C

Querverweis: Common Vulnerability Exposure (CVE) ID: CVE-2017-0050
BugTraq ID: 96025
http://www.securityfocus.com/bid/96025
http://www.securitytracker.com/id/1038013
Common Vulnerability Exposure (CVE) ID: CVE-2017-0101
BugTraq ID: 96625
http://www.securityfocus.com/bid/96625
https://www.exploit-db.com/exploits/44479/
Common Vulnerability Exposure (CVE) ID: CVE-2017-0102
BugTraq ID: 96627
http://www.securityfocus.com/bid/96627
Common Vulnerability Exposure (CVE) ID: CVE-2017-0103
BugTraq ID: 96623
http://www.securityfocus.com/bid/96623
https://www.exploit-db.com/exploits/41645/

Copyright Copyright (C) 2017 Greenbone AG

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.
Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.

Test Kennung:	1.3.6.1.4.1.25623.1.0.810814
Kategorie:	Windows : Microsoft Bulletins
Titel:	Microsoft Windows Kernel Privilege Escalation Vulnerability (4013081)
Zusammenfassung:	This host is missing an important security; update according to Microsoft Bulletin MS17-017
Beschreibung:	Summary: This host is missing an important security update according to Microsoft Bulletin MS17-017 Vulnerability Insight: Multiple flaws exist as, - Windows kernel API enforces permissions. - Windows Transaction Manager improperly handles objects in memory. Vulnerability Impact: Successful exploitation will allow an attacker to gain elevated privileges on a targeted system. Affected Software/OS: - Microsoft Windows 8.1 x32/x64 - Microsoft Windows 10 x32/x64 - Microsoft Windows Server 2012/2012R2 - Microsoft Windows 10 Version 1511 x32/x64 - Microsoft Windows 10 Version 1607 x32/x64 - Microsoft Windows Vista x32/x64 Edition Service Pack 2 - Microsoft Windows Server 2008 x32/x64 Edition Service Pack 2 - Microsoft Windows 7 x32/x64 Edition Service Pack 1 - Microsoft Windows Server 2008 R2 x64 Edition Service Pack 1 - Microsoft Windows Server 2016 Solution: The vendor has released updates. Please see the references for more information. CVSS Score: 7.2 CVSS Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2017-0050 BugTraq ID: 96025 http://www.securityfocus.com/bid/96025 http://www.securitytracker.com/id/1038013 Common Vulnerability Exposure (CVE) ID: CVE-2017-0101 BugTraq ID: 96625 http://www.securityfocus.com/bid/96625 https://www.exploit-db.com/exploits/44479/ Common Vulnerability Exposure (CVE) ID: CVE-2017-0102 BugTraq ID: 96627 http://www.securityfocus.com/bid/96627 Common Vulnerability Exposure (CVE) ID: CVE-2017-0103 BugTraq ID: 96623 http://www.securityfocus.com/bid/96623 https://www.exploit-db.com/exploits/41645/
Copyright	Copyright (C) 2017 Greenbone AG