Windows : Microsoft Bulletins : Microsoft Windows Multiple Vulnerabilities (KB4577671)

Anfälligkeitssuche		Suche in 191973 CVE Beschreibungen und 86218 Test Beschreibungen, Zugriff auf 10,000+ Quellverweise.
	Tests CVE Alle

Test Kennung: 1.3.6.1.4.1.25623.1.0.817700

Kategorie: Windows : Microsoft Bulletins

Titel: Microsoft Windows Multiple Vulnerabilities (KB4577671)

Zusammenfassung: This host is missing a critical security; update according to Microsoft KB4577671

Beschreibung: Summary:
This host is missing a critical security
update according to Microsoft KB4577671

Vulnerability Insight:
Multiple flaws exist due to errors,

- Windows Hyper-V on a host server fails to properly handle objects in memory.

- Microsoft Graphics Components fails to properly handle objects in memory.

- Windows Network Connections Service improperly handles objects in memory.

- Windows kernel fails to properly handle objects in memory.

- Remote Desktop Protocol (RDP) improperly handles connection requests.

- Microsoft Windows Codecs Library improperly handles objects in memory.

For more information about the vulnerabilities refer to Reference links.

Vulnerability Impact:
Successful exploitation will allow an attacker
to execute arbitrary code, elevate privilges, conduct DoS condition, bypass
security restrictions and disclose sensitive information.

Affected Software/OS:
- Microsoft Windows 10 Version 1903 for 32-bit/x64-based Systems

- Microsoft Windows 10 Version 1909 for 32-bit/x64-based Systems

Solution:
The vendor has released updates. Please see
the references for more information.

CVSS Score:
9.8

CVSS Vector:
AV:N/AC:M/Au:N/C:C/I:C/A:C

Querverweis: Common Vulnerability Exposure (CVE) ID: CVE-2020-0764
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0764
Common Vulnerability Exposure (CVE) ID: CVE-2020-1047
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1047
Common Vulnerability Exposure (CVE) ID: CVE-2020-1080
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1080
Common Vulnerability Exposure (CVE) ID: CVE-2020-1167
https://www.zerodayinitiative.com/advisories/ZDI-20-1247/
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1167
Common Vulnerability Exposure (CVE) ID: CVE-2020-1243
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1243

Copyright Copyright (C) 2020 Greenbone Networks GmbH

Dies ist nur einer von 86218 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.
Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.

Test Kennung:	1.3.6.1.4.1.25623.1.0.817700
Kategorie:	Windows : Microsoft Bulletins
Titel:	Microsoft Windows Multiple Vulnerabilities (KB4577671)
Zusammenfassung:	This host is missing a critical security; update according to Microsoft KB4577671
Beschreibung:	Summary: This host is missing a critical security update according to Microsoft KB4577671 Vulnerability Insight: Multiple flaws exist due to errors, - Windows Hyper-V on a host server fails to properly handle objects in memory. - Microsoft Graphics Components fails to properly handle objects in memory. - Windows Network Connections Service improperly handles objects in memory. - Windows kernel fails to properly handle objects in memory. - Remote Desktop Protocol (RDP) improperly handles connection requests. - Microsoft Windows Codecs Library improperly handles objects in memory. For more information about the vulnerabilities refer to Reference links. Vulnerability Impact: Successful exploitation will allow an attacker to execute arbitrary code, elevate privilges, conduct DoS condition, bypass security restrictions and disclose sensitive information. Affected Software/OS: - Microsoft Windows 10 Version 1903 for 32-bit/x64-based Systems - Microsoft Windows 10 Version 1909 for 32-bit/x64-based Systems Solution: The vendor has released updates. Please see the references for more information. CVSS Score: 9.8 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2020-0764 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0764 Common Vulnerability Exposure (CVE) ID: CVE-2020-1047 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1047 Common Vulnerability Exposure (CVE) ID: CVE-2020-1080 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1080 Common Vulnerability Exposure (CVE) ID: CVE-2020-1167 https://www.zerodayinitiative.com/advisories/ZDI-20-1247/ https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1167 Common Vulnerability Exposure (CVE) ID: CVE-2020-1243 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1243
Copyright	Copyright (C) 2020 Greenbone Networks GmbH