Test ID:	1.3.6.1.4.1.25623.1.0.811208
Category:	Windows : Microsoft Bulletins
Title:	Microsoft Windows Multiple RCE Vulnerabilities (KB4022839)
Summary:	This host is missing a critical security; update according to Microsoft security update KB4022839.
Description:	Summary: This host is missing a critical security update according to Microsoft security update KB4022839. Vulnerability Insight: Multiple flaws are due to: - An error exists in 'Win32k' when the Windows kernel-mode driver fails to properly handle objects in memory. - An error in the Windows Search which fails to handles objects in memory. - An error in .LNK file due to processing of shortcut LNK references. Vulnerability Impact: Successful exploitation will allow an attacker to run arbitrary code in kernel mode allowing attacker to install programs. View, change, or delete data, or create new accounts with full user rights.Also an attacker who successfully exploited this vulnerability could run processes in an elevated context. Affected Software/OS: Microsoft Windows 8 x86/x64. Solution: The vendor has released updates. Please see the references for more information. CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2017-8464 BugTraq ID: 98818 http://www.securityfocus.com/bid/98818 https://www.exploit-db.com/exploits/42382/ https://www.exploit-db.com/exploits/42429/ http://www.securitytracker.com/id/1038671 Common Vulnerability Exposure (CVE) ID: CVE-2017-8543 BugTraq ID: 98824 http://www.securityfocus.com/bid/98824 http://www.securitytracker.com/id/1038667 Common Vulnerability Exposure (CVE) ID: CVE-2017-8552
Copyright	Copyright (C) 2017 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.