Test Kennung:	1.3.6.1.4.1.25623.1.0.811746
Kategorie:	Windows : Microsoft Bulletins
Titel:	Microsoft Windows Multiple Vulnerabilities (KB4038777)
Zusammenfassung:	This host is missing a critical security; update according to Microsoft KB4038777
Beschreibung:	Summary: This host is missing a critical security update according to Microsoft KB4038777 Vulnerability Insight: Multiple flaws exist due to: - An error when Windows Hyper-V on a host operating system fails to properly validate input from an authenticated user on a guest operating system. - An issue when the Windows kernel fails to properly initialize a memory address. - An error when the Windows kernel improperly handles objects in memory. - An error in Microsoft's implementation of the Bluetooth stack. - An error in the way that Microsoft browser JavaScript engines render content when handling objects in memory. - An error when Windows Uniscribe improperly discloses the contents of its memory. - An error due to the way Windows Uniscribe handles objects in memory. - An error when Microsoft browsers improperly access objects in memory. - An error when Internet Explorer improperly handles specific HTML content. - An error in Microsoft browsers due to improper parent domain verification in certain functionality. - An error in the way that the Windows Graphics Device Interface (GDI) handles objects in memory, allowing an attacker to retrieve information from a targeted system. - An error when the Windows GDI+ component improperly discloses kernel memory addresses. - An error in Windows when the Windows kernel-mode driver fails to properly handle objects in memory. - An error when Windows Shell does not properly validate file copy destinations. - An error in Windows kernel. - An error when the Windows font library improperly handles specially crafted embedded fonts. - An error in the Microsoft Common Console Document. - An error in Windows when the Win32k component fails to properly handle objects in memory. Vulnerability Impact: Successful exploitation will allow an attacker to gain access to potentially sensitive information, perform a man-in-the-middle attack and force a user's computer to unknowingly route traffic through the attacker's computer, execute arbitrary code on the target, embed an ActiveX control marked safe for initialization, take complete control of the affected system and read arbitrary files on the affected system. Affected Software/OS: - Microsoft Windows 7 for 32-bit/x64 Systems Service Pack 1 - Microsoft Windows Server 2008 R2 for x64-based Systems Service Pack 1 Solution: The vendor has released updates. Please see the references for more information. CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2017-0161 BugTraq ID: 100728 http://www.securityfocus.com/bid/100728 http://www.securitytracker.com/id/1039318 Common Vulnerability Exposure (CVE) ID: CVE-2017-8719 BugTraq ID: 100803 http://www.securityfocus.com/bid/100803 http://www.securitytracker.com/id/1039325 Common Vulnerability Exposure (CVE) ID: CVE-2017-8720 BugTraq ID: 100804 http://www.securityfocus.com/bid/100804 Common Vulnerability Exposure (CVE) ID: CVE-2017-8628 BugTraq ID: 100744 http://www.securityfocus.com/bid/100744 http://www.securitytracker.com/id/1039339 Common Vulnerability Exposure (CVE) ID: CVE-2017-8733 BugTraq ID: 100737 http://www.securityfocus.com/bid/100737 http://www.securitytracker.com/id/1039328 Common Vulnerability Exposure (CVE) ID: CVE-2017-8736 BugTraq ID: 100743 http://www.securityfocus.com/bid/100743 http://www.securitytracker.com/id/1039342 http://www.securitytracker.com/id/1039343 Common Vulnerability Exposure (CVE) ID: CVE-2017-8675 BugTraq ID: 100752 http://www.securityfocus.com/bid/100752 Common Vulnerability Exposure (CVE) ID: CVE-2017-8676 BugTraq ID: 100755 http://www.securityfocus.com/bid/100755 http://www.securitytracker.com/id/1039333 Common Vulnerability Exposure (CVE) ID: CVE-2017-8741 BugTraq ID: 100764 http://www.securityfocus.com/bid/100764 Common Vulnerability Exposure (CVE) ID: CVE-2017-8677 BugTraq ID: 100767 http://www.securityfocus.com/bid/100767 http://www.securitytracker.com/id/1039338 Common Vulnerability Exposure (CVE) ID: CVE-2017-8678 BugTraq ID: 100769 http://www.securityfocus.com/bid/100769 https://www.exploit-db.com/exploits/42750/ Common Vulnerability Exposure (CVE) ID: CVE-2017-8747 BugTraq ID: 100765 http://www.securityfocus.com/bid/100765 Common Vulnerability Exposure (CVE) ID: CVE-2017-8748 BugTraq ID: 100766 http://www.securityfocus.com/bid/100766 Common Vulnerability Exposure (CVE) ID: CVE-2017-8679 BugTraq ID: 100720 http://www.securityfocus.com/bid/100720 Common Vulnerability Exposure (CVE) ID: CVE-2017-8680 BugTraq ID: 100722 http://www.securityfocus.com/bid/100722 https://www.exploit-db.com/exploits/42741/ Common Vulnerability Exposure (CVE) ID: CVE-2017-8681 BugTraq ID: 100727 http://www.securityfocus.com/bid/100727 https://www.exploit-db.com/exploits/42742/ Common Vulnerability Exposure (CVE) ID: CVE-2017-8749 BugTraq ID: 100770 http://www.securityfocus.com/bid/100770 Common Vulnerability Exposure (CVE) ID: CVE-2017-8750 BugTraq ID: 100771 http://www.securityfocus.com/bid/100771 Common Vulnerability Exposure (CVE) ID: CVE-2017-8682 BugTraq ID: 100772 http://www.securityfocus.com/bid/100772 https://www.exploit-db.com/exploits/42744/ http://www.securitytracker.com/id/1039352 Common Vulnerability Exposure (CVE) ID: CVE-2017-8683 BugTraq ID: 100781 http://www.securityfocus.com/bid/100781 https://www.exploit-db.com/exploits/42746/ Common Vulnerability Exposure (CVE) ID: CVE-2017-8684 BugTraq ID: 100782 http://www.securityfocus.com/bid/100782 https://www.exploit-db.com/exploits/42747/ Common Vulnerability Exposure (CVE) ID: CVE-2017-8685 BugTraq ID: 100724 http://www.securityfocus.com/bid/100724 https://www.exploit-db.com/exploits/42748/ Common Vulnerability Exposure (CVE) ID: CVE-2017-8687 BugTraq ID: 100736 http://www.securityfocus.com/bid/100736 https://www.exploit-db.com/exploits/42749/ Common Vulnerability Exposure (CVE) ID: CVE-2017-8688 BugTraq ID: 100756 http://www.securityfocus.com/bid/100756 Common Vulnerability Exposure (CVE) ID: CVE-2017-8696 BugTraq ID: 100780 http://www.securityfocus.com/bid/100780 http://www.securitytracker.com/id/1039344 Common Vulnerability Exposure (CVE) ID: CVE-2017-8699 BugTraq ID: 100783 http://www.securityfocus.com/bid/100783 http://www.securitytracker.com/id/1039331 Common Vulnerability Exposure (CVE) ID: CVE-2017-8707 BugTraq ID: 100790 http://www.securityfocus.com/bid/100790 http://www.securitytracker.com/id/1039317 Common Vulnerability Exposure (CVE) ID: CVE-2017-8708 BugTraq ID: 100791 http://www.securityfocus.com/bid/100791 https://www.exploit-db.com/exploits/42743/ Common Vulnerability Exposure (CVE) ID: CVE-2017-8709 BugTraq ID: 100792 http://www.securityfocus.com/bid/100792 Common Vulnerability Exposure (CVE) ID: CVE-2017-8710 BugTraq ID: 100793 http://www.securityfocus.com/bid/100793 https://www.vulnerability-lab.com/get_content.php?id=2094 https://www.youtube.com/watch?v=bIFot3a-58I Common Vulnerability Exposure (CVE) ID: CVE-2017-8695 BugTraq ID: 100773 http://www.securityfocus.com/bid/100773
Copyright	Copyright (C) 2017 Greenbone AG

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.