Test ID:	1.3.6.1.4.1.25623.1.0.812088
Category:	Windows : Microsoft Bulletins
Title:	Microsoft Windows Multiple Vulnerabilities (KB4048955)
Summary:	This host is missing a critical security; update according to Microsoft KB4048955
Description:	Summary: This host is missing a critical security update according to Microsoft KB4048955 Vulnerability Insight: Multiple flaws exist due to: - An error when Internet Explorer improperly accesses objects in memory. - An error in the way that Microsoft Edge handles cross-origin requests. - An error when the scripting engine does not properly handle objects in memory in Internet Explorer. - An error in the way the scripting engine handles objects in memory in Microsoft browsers. - An error in the way that the scripting engine handles objects in memory in Microsoft Edge. - An error in Microsoft Edge as a result of how memory is accessed in code compiled by the Edge Just-In-Time (JIT) compiler that allows Control Flow Guard (CFG) to be bypassed. - An error in the way that Microsoft browsers access objects in memory. - An error when Microsoft Edge improperly handles objects in memory. - An error when Internet Explorer improperly handles page content, which could allow an attacker to detect the navigation of the user leaving a maliciously crafted page. - An error when the scripting engine does not properly handle objects in memory in Microsoft browsers. - An error in Microsoft Edge when the Edge Content Security Policy (CSP) fails to properly validate certain specially crafted documents. Vulnerability Impact: Successful exploitation will allow an attacker to gain the same user rights as the current user, determine the origin of all webpages in the affected browser, gain access to potentially sensitive information, bypass certain security features and trick a user into loading a page containing malicious content. Affected Software/OS: - Microsoft Windows 10 Version 1709 for 32-bit Systems - Microsoft Windows 10 Version 1709 for 64-based Systems Solution: The vendor has released updates. Please see the references for more information. CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2017-11839 BugTraq ID: 101735 http://www.securityfocus.com/bid/101735 https://www.exploit-db.com/exploits/43180/ http://www.securitytracker.com/id/1039780 Common Vulnerability Exposure (CVE) ID: CVE-2017-11840 BugTraq ID: 101734 http://www.securityfocus.com/bid/101734 https://www.exploit-db.com/exploits/43183/ Common Vulnerability Exposure (CVE) ID: CVE-2017-11841 BugTraq ID: 101733 http://www.securityfocus.com/bid/101733 https://www.exploit-db.com/exploits/43181/ Common Vulnerability Exposure (CVE) ID: CVE-2017-11843 BugTraq ID: 101740 http://www.securityfocus.com/bid/101740 http://www.securitytracker.com/id/1039781 Common Vulnerability Exposure (CVE) ID: CVE-2017-11873 BugTraq ID: 101728 http://www.securityfocus.com/bid/101728 https://www.exploit-db.com/exploits/43154/ Common Vulnerability Exposure (CVE) ID: CVE-2017-11874 BugTraq ID: 101750 http://www.securityfocus.com/bid/101750 http://www.securitytracker.com/id/1039801 Common Vulnerability Exposure (CVE) ID: CVE-2017-11791 BugTraq ID: 101715 http://www.securityfocus.com/bid/101715 http://www.securitytracker.com/id/1039796 http://www.securitytracker.com/id/1039797 Common Vulnerability Exposure (CVE) ID: CVE-2017-11803 BugTraq ID: 101704 http://www.securityfocus.com/bid/101704 Common Vulnerability Exposure (CVE) ID: CVE-2017-11827 BugTraq ID: 101703 http://www.securityfocus.com/bid/101703 Common Vulnerability Exposure (CVE) ID: CVE-2017-11833 BugTraq ID: 101706 http://www.securityfocus.com/bid/101706 Common Vulnerability Exposure (CVE) ID: CVE-2017-11834 BugTraq ID: 101725 http://www.securityfocus.com/bid/101725 Common Vulnerability Exposure (CVE) ID: CVE-2017-11836 BugTraq ID: 101727 http://www.securityfocus.com/bid/101727 Common Vulnerability Exposure (CVE) ID: CVE-2017-11837 BugTraq ID: 101722 http://www.securityfocus.com/bid/101722 Common Vulnerability Exposure (CVE) ID: CVE-2017-11838 BugTraq ID: 101737 http://www.securityfocus.com/bid/101737 Common Vulnerability Exposure (CVE) ID: CVE-2017-11844 BugTraq ID: 101707 http://www.securityfocus.com/bid/101707 Common Vulnerability Exposure (CVE) ID: CVE-2017-11846 BugTraq ID: 101741 http://www.securityfocus.com/bid/101741 Common Vulnerability Exposure (CVE) ID: CVE-2017-11848 BugTraq ID: 101709 http://www.securityfocus.com/bid/101709 Common Vulnerability Exposure (CVE) ID: CVE-2017-11855 BugTraq ID: 101751 http://www.securityfocus.com/bid/101751 https://www.exploit-db.com/exploits/43371/ Common Vulnerability Exposure (CVE) ID: CVE-2017-11856 BugTraq ID: 101753 http://www.securityfocus.com/bid/101753 Common Vulnerability Exposure (CVE) ID: CVE-2017-11858 BugTraq ID: 101716 http://www.securityfocus.com/bid/101716 Common Vulnerability Exposure (CVE) ID: CVE-2017-11861 BugTraq ID: 101723 http://www.securityfocus.com/bid/101723 https://www.exploit-db.com/exploits/43153/ Common Vulnerability Exposure (CVE) ID: CVE-2017-11862 BugTraq ID: 101724 http://www.securityfocus.com/bid/101724 Common Vulnerability Exposure (CVE) ID: CVE-2017-11863 BugTraq ID: 101748 http://www.securityfocus.com/bid/101748 Common Vulnerability Exposure (CVE) ID: CVE-2017-11866 BugTraq ID: 101732 http://www.securityfocus.com/bid/101732 Common Vulnerability Exposure (CVE) ID: CVE-2017-11869 BugTraq ID: 101742 http://www.securityfocus.com/bid/101742 Common Vulnerability Exposure (CVE) ID: CVE-2017-11870 BugTraq ID: 101731 http://www.securityfocus.com/bid/101731 https://www.exploit-db.com/exploits/43182/ Common Vulnerability Exposure (CVE) ID: CVE-2017-11871 BugTraq ID: 101730 http://www.securityfocus.com/bid/101730
Copyright	Copyright (C) 2017 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.