English | Deutsch | Español
 
Startseite ▼
Startseite Über uns Kontact Datenschutz Partnerprogramme Zeugnisse In der Presse Mailinglisten Missbrauch Developer APIs
Bookkeeping
Online ▼
Home Free Trial FAQ
Open/Create Company File Accept an Invite Order/Renew
Sicherheits
Überprüfungs ▼
Home Dediziert Erweitert Standard Wiederkehrend Risikolos Desktop Basis Sicherheits Segal FAQ Preis/Funktionszusammenfassung Bestellen Neue Anfälligkeiten Alle Anfälligkeiten Vertraulichkeit Anfälligkeiten Suche Durchführen Terminkalender IP Permissions Maßgeschneidert Warteschlange Erinnerer Siegel Berichte Berichts Stil
Verwaltetes
DNS ▼
Info Bestellen/Erneuern FAQ AUP Dynamic DNS Clients
Domaine konfigurieren Dyanmic DNS Update Password
Netzwerk
Überwachung ▼
Enterprise Erweiterte Standard Gratis Test FAQ Preis/Funktionszusammenfassung Bestellen Beispiele
Konfigurieren/Status Alarm Profile
Recherce
Berichte ▼
Home FAQ Glossary Archive
 Anmeldung/Registrierung 
 
 Anfälligkeitssuche        Suche in 324607 CVE Beschreibungen
und 145615 Test Beschreibungen,
Zugriff auf 10,000+ Quellverweise.
Tests   CVE   Alle  

Test Kennung:1.3.6.1.4.1.25623.1.0.811606
Kategorie:Windows : Microsoft Bulletins
Titel:Microsoft Windows Multiple Vulnerabilities (KB4034660)
Zusammenfassung:This host is missing a critical security; update according to Microsoft KB4034660
Beschreibung:Summary:
This host is missing a critical security
update according to Microsoft KB4034660

Vulnerability Insight:
Multiple flaws exist due to:

- The way JavaScript engines render when handling objects in memory in
Microsoft browsers.

- When Windows Search handles objects in memory.

- When Internet Explorer fails to validate User Mode Code Integrity (UMCI)
policies.

- Microsoft Edge that could allow an attacker to escape from the AppContainer
sandbox in the browser.

- When Windows Hyper-V on a host server fails to properly validate input from an
authenticated user on a guest operating system.

- The way that Microsoft browser JavaScript engines render content when
handling objects in memory.

- When Microsoft Edge improperly handles objects in memory.

- When the win32k component improperly provides kernel information.

- When Microsoft Windows PDF Library improperly handles objects in memory.

- When the Microsoft JET Database Engine that could allow remote code execution on
an affected system.

- When the Win32k component fails to properly handle objects in memory.

Vulnerability Impact:
Successful exploitation will allow an attacker to
run arbitrary code in kernel mode, gain access to sensitive information and system
functionality, gain the same user rights as the current user and obtain information
to further compromise the user's system.

Affected Software/OS:
Microsoft Windows 10 Version 1511 x32/x64.

Solution:
The vendor has released updates. Please see the references for more information.

CVSS Score:
9.3

CVSS Vector:
AV:N/AC:M/Au:N/C:C/I:C/A:C

Querverweis: Common Vulnerability Exposure (CVE) ID: CVE-2017-0174
BugTraq ID: 100038
http://www.securityfocus.com/bid/100038
http://www.securitytracker.com/id/1039109
Common Vulnerability Exposure (CVE) ID: CVE-2017-0250
BugTraq ID: 98100
http://www.securityfocus.com/bid/98100
http://www.securitytracker.com/id/1039090
Common Vulnerability Exposure (CVE) ID: CVE-2017-0293
BugTraq ID: 100039
http://www.securityfocus.com/bid/100039
http://www.securitytracker.com/id/1039092
Common Vulnerability Exposure (CVE) ID: CVE-2017-8503
BugTraq ID: 99395
http://www.securityfocus.com/bid/99395
http://www.securitytracker.com/id/1039101
Common Vulnerability Exposure (CVE) ID: CVE-2017-8591
BugTraq ID: 99430
http://www.securityfocus.com/bid/99430
http://www.securitytracker.com/id/1039097
Common Vulnerability Exposure (CVE) ID: CVE-2017-8593
BugTraq ID: 100032
http://www.securityfocus.com/bid/100032
http://www.securitytracker.com/id/1039105
Common Vulnerability Exposure (CVE) ID: CVE-2017-8620
BugTraq ID: 100034
http://www.securityfocus.com/bid/100034
https://threatpost.com/windows-search-bug-worth-watching-and-squashing/127434/
http://www.securitytracker.com/id/1039091
Common Vulnerability Exposure (CVE) ID: CVE-2017-8624
BugTraq ID: 100061
http://www.securityfocus.com/bid/100061
http://www.securitytracker.com/id/1039106
Common Vulnerability Exposure (CVE) ID: CVE-2017-8625
BugTraq ID: 100063
http://www.securityfocus.com/bid/100063
https://oddvar.moe/2017/08/13/bypassing-device-guard-umci-using-chm-cve-2017-8625/
https://posts.specterops.io/umci-vs-internet-explorer-exploring-cve-2017-8625-3946536c6442
http://www.securitytracker.com/id/1039112
Common Vulnerability Exposure (CVE) ID: CVE-2017-8633
BugTraq ID: 100069
http://www.securityfocus.com/bid/100069
http://www.securitytracker.com/id/1039102
Common Vulnerability Exposure (CVE) ID: CVE-2017-8635
BugTraq ID: 100055
http://www.securityfocus.com/bid/100055
https://www.exploit-db.com/exploits/42471/
http://www.securitytracker.com/id/1039094
http://www.securitytracker.com/id/1039095
Common Vulnerability Exposure (CVE) ID: CVE-2017-8636
BugTraq ID: 100056
http://www.securityfocus.com/bid/100056
https://www.exploit-db.com/exploits/42466/
https://www.exploit-db.com/exploits/42467/
https://www.exploit-db.com/exploits/42468/
https://www.exploit-db.com/exploits/42478/
Common Vulnerability Exposure (CVE) ID: CVE-2017-8640
BugTraq ID: 100051
http://www.securityfocus.com/bid/100051
https://www.exploit-db.com/exploits/42476/
Common Vulnerability Exposure (CVE) ID: CVE-2017-8641
BugTraq ID: 100057
http://www.securityfocus.com/bid/100057
https://www.exploit-db.com/exploits/42465/
Common Vulnerability Exposure (CVE) ID: CVE-2017-8644
BugTraq ID: 100044
http://www.securityfocus.com/bid/100044
https://www.exploit-db.com/exploits/42459/
Common Vulnerability Exposure (CVE) ID: CVE-2017-8645
BugTraq ID: 100052
http://www.securityfocus.com/bid/100052
https://www.exploit-db.com/exploits/42469/
Common Vulnerability Exposure (CVE) ID: CVE-2017-8646
BugTraq ID: 100053
http://www.securityfocus.com/bid/100053
https://www.exploit-db.com/exploits/42470/
Common Vulnerability Exposure (CVE) ID: CVE-2017-8652
BugTraq ID: 100047
http://www.securityfocus.com/bid/100047
https://www.exploit-db.com/exploits/42445/
Common Vulnerability Exposure (CVE) ID: CVE-2017-8653
BugTraq ID: 100059
http://www.securityfocus.com/bid/100059
Common Vulnerability Exposure (CVE) ID: CVE-2017-8655
BugTraq ID: 100027
http://www.securityfocus.com/bid/100027
Common Vulnerability Exposure (CVE) ID: CVE-2017-8657
BugTraq ID: 100035
http://www.securityfocus.com/bid/100035
https://www.exploit-db.com/exploits/42481/
Common Vulnerability Exposure (CVE) ID: CVE-2017-8664
BugTraq ID: 100085
http://www.securityfocus.com/bid/100085
http://www.securitytracker.com/id/1039093
Common Vulnerability Exposure (CVE) ID: CVE-2017-8666
BugTraq ID: 100089
http://www.securityfocus.com/bid/100089
Common Vulnerability Exposure (CVE) ID: CVE-2017-8669
BugTraq ID: 100068
http://www.securityfocus.com/bid/100068
Common Vulnerability Exposure (CVE) ID: CVE-2017-8671
BugTraq ID: 100071
http://www.securityfocus.com/bid/100071
https://www.exploit-db.com/exploits/42475/
Common Vulnerability Exposure (CVE) ID: CVE-2017-8672
BugTraq ID: 100072
http://www.securityfocus.com/bid/100072
CopyrightCopyright (C) 2017 Greenbone AG

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.

Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.



© 1998-2025 E-Soft Inc. Alle Rechte vorbehalten.