Windows : Microsoft Bulletins : Microsoft IE And Microsoft Edge Multiple Flash Player Vulnerabilities (4020821)

Anfälligkeitssuche		Suche in 324607 CVE Beschreibungen und 145615 Test Beschreibungen, Zugriff auf 10,000+ Quellverweise.
	Tests CVE Alle

Test Kennung: 1.3.6.1.4.1.25623.1.0.811106

Kategorie: Windows : Microsoft Bulletins

Titel: Microsoft IE And Microsoft Edge Multiple Flash Player Vulnerabilities (4020821)

Zusammenfassung: This host is missing a critical security; update according to Microsoft KB4020821.

Beschreibung: Summary:
This host is missing a critical security
update according to Microsoft KB4020821.

Vulnerability Insight:
Multiple flaws exist due to:

- A use-after-free vulnerability and

- The memory corruption vulnerabilities.

Vulnerability Impact:
Successful exploitation will allow remote
attackers to perform code execution.

Affected Software/OS:
- Microsoft Windows 10 Version 1511 for x32/x64

- Microsoft Windows 10 Version 1607 for x32/x64

- Microsoft Windows 10 Version 1703 for x32/x64

- Microsoft Windows 10 x32/x64

- Microsoft Windows 8.1 for x32/x64 Edition and

- Microsoft Windows Server 2012/2012 R2/2016

Solution:
The vendor has released updates. Please see the references for more information.

CVSS Score:
9.3

CVSS Vector:
AV:N/AC:M/Au:N/C:C/I:C/A:C

Querverweis: Common Vulnerability Exposure (CVE) ID: CVE-2017-3068
BugTraq ID: 98349
http://www.securityfocus.com/bid/98349
https://www.exploit-db.com/exploits/42017/
https://security.gentoo.org/glsa/201705-12
RedHat Security Advisories: RHSA-2017:1219
https://access.redhat.com/errata/RHSA-2017:1219
http://www.securitytracker.com/id/1038427
Common Vulnerability Exposure (CVE) ID: CVE-2017-3069
Common Vulnerability Exposure (CVE) ID: CVE-2017-3070
Common Vulnerability Exposure (CVE) ID: CVE-2017-3071
BugTraq ID: 98347
http://www.securityfocus.com/bid/98347
Common Vulnerability Exposure (CVE) ID: CVE-2017-3072
Common Vulnerability Exposure (CVE) ID: CVE-2017-3073
Common Vulnerability Exposure (CVE) ID: CVE-2017-3074

Copyright Copyright (C) 2017 Greenbone AG

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.
Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.

Test Kennung:	1.3.6.1.4.1.25623.1.0.811106
Kategorie:	Windows : Microsoft Bulletins
Titel:	Microsoft IE And Microsoft Edge Multiple Flash Player Vulnerabilities (4020821)
Zusammenfassung:	This host is missing a critical security; update according to Microsoft KB4020821.
Beschreibung:	Summary: This host is missing a critical security update according to Microsoft KB4020821. Vulnerability Insight: Multiple flaws exist due to: - A use-after-free vulnerability and - The memory corruption vulnerabilities. Vulnerability Impact: Successful exploitation will allow remote attackers to perform code execution. Affected Software/OS: - Microsoft Windows 10 Version 1511 for x32/x64 - Microsoft Windows 10 Version 1607 for x32/x64 - Microsoft Windows 10 Version 1703 for x32/x64 - Microsoft Windows 10 x32/x64 - Microsoft Windows 8.1 for x32/x64 Edition and - Microsoft Windows Server 2012/2012 R2/2016 Solution: The vendor has released updates. Please see the references for more information. CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2017-3068 BugTraq ID: 98349 http://www.securityfocus.com/bid/98349 https://www.exploit-db.com/exploits/42017/ https://security.gentoo.org/glsa/201705-12 RedHat Security Advisories: RHSA-2017:1219 https://access.redhat.com/errata/RHSA-2017:1219 http://www.securitytracker.com/id/1038427 Common Vulnerability Exposure (CVE) ID: CVE-2017-3069 Common Vulnerability Exposure (CVE) ID: CVE-2017-3070 Common Vulnerability Exposure (CVE) ID: CVE-2017-3071 BugTraq ID: 98347 http://www.securityfocus.com/bid/98347 Common Vulnerability Exposure (CVE) ID: CVE-2017-3072 Common Vulnerability Exposure (CVE) ID: CVE-2017-3073 Common Vulnerability Exposure (CVE) ID: CVE-2017-3074
Copyright	Copyright (C) 2017 Greenbone AG