English | Deutsch | Español
 
Inicial ▼
Página inicial Acerca Nuestro Contáctenos Privacidad Programas de Asociados Testimonios En la Prensa Listas de Correos Abuso Developer APIs
Bookkeeping
Online ▼
Home Free Trial FAQ
Open/Create Company File Accept an Invite Order/Renew
 
Auditorias ▼
Inicial Dedicada Avanzada Estándar Periódica Sin Riesgo Escritorio Básica Sello FAQ Resumen de Precio/Funciones Ordenar Nuevas Pruebas Todas las Pruebas Confidencialidad Búsqueda de Vulnerabilidad Ejecutar Auditoría Programador IP Permissions Auditorías Personalizadas Cola Recordatorio Sellos Informes Estilos de Informes
DNS
Administrado ▼
Acerca de DNS Ordenar/Renovar Preguntas Frecuentes AUP Dynamic DNS Clients
Configurar Dominios Dynamic DNS Update Password
Monitoreo
de Redes ▼
Enterprise Avanzado Estándarr Prueba Preguntas Frecuentes Resumen de Precio/Funciones Ordenar Muestras
Configure/Status Alert Profiles
Research
Reports ▼
Home FAQ Glossary Archive
 Iniciar sesión/Registrarse 
 
 Búsqueda de    
Vulnerabilidad   		     Buscar 324607 Descripciones CVE y
145615 Descripciones de Pruebas,
accesos 10,000+ referencias cruzadas.
Pruebas   CVE   Todos  

ID de Prueba:1.3.6.1.4.1.25623.1.0.811927
Categoría:Windows : Microsoft Bulletins
Título:Microsoft Windows Server 2012 Multiple Vulnerabilities (KB4041690)
Resumen:This host is missing a critical security; update according to Microsoft KB4041690
Descripción:Summary:
This host is missing a critical security
update according to Microsoft KB4041690

Vulnerability Insight:
Multiple flaws exist due to:

- A spoofing vulnerability in the Windows implementation of wireless networking (KRACK)

- An error in USBHUB.SYS randomly causes memory corruption that results in
random system crashes that are extremely difficult to diagnose.

- Security updates to Microsoft Windows Search Component, Windows kernel-mode drivers,
Microsoft Graphics Component, Internet Explorer, Windows kernel, Windows Wireless
Networking, Windows Storage and File systems, Microsoft Windows DNS, Microsoft JET
Database Engine, and the Windows SMB Server.

Vulnerability Impact:
Successful exploitation will allow an attacker
to run arbitrary code in the security context of the local system to take
complete control of an affected system, gain access to potentially sensitive
information, conduct a denial-of-service condition, bypass certain security
restrictions and gain elevated privileges.

Affected Software/OS:
Microsoft Windows Server 2012.

Solution:
The vendor has released updates. Please see the references for more information.

CVSS Score:
10.0

CVSS Vector:
AV:N/AC:L/Au:N/C:C/I:C/A:C

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2017-11762
BugTraq ID: 101108
http://www.securityfocus.com/bid/101108
http://www.securitytracker.com/id/1039536
Common Vulnerability Exposure (CVE) ID: CVE-2017-8694
BugTraq ID: 101100
http://www.securityfocus.com/bid/101100
http://www.securitytracker.com/id/1039526
Common Vulnerability Exposure (CVE) ID: CVE-2017-8717
BugTraq ID: 101161
http://www.securityfocus.com/bid/101161
http://www.securitytracker.com/id/1039527
Common Vulnerability Exposure (CVE) ID: CVE-2017-11763
BugTraq ID: 101109
http://www.securityfocus.com/bid/101109
Common Vulnerability Exposure (CVE) ID: CVE-2017-11765
BugTraq ID: 101111
http://www.securityfocus.com/bid/101111
Common Vulnerability Exposure (CVE) ID: CVE-2017-8718
BugTraq ID: 101162
http://www.securityfocus.com/bid/101162
Common Vulnerability Exposure (CVE) ID: CVE-2017-8727
BugTraq ID: 101142
http://www.securityfocus.com/bid/101142
http://www.securitytracker.com/id/1039537
Common Vulnerability Exposure (CVE) ID: CVE-2017-11815
BugTraq ID: 101136
http://www.securityfocus.com/bid/101136
http://www.securitytracker.com/id/1039528
Common Vulnerability Exposure (CVE) ID: CVE-2017-11771
BugTraq ID: 101114
http://www.securityfocus.com/bid/101114
http://www.securitytracker.com/id/1039538
Common Vulnerability Exposure (CVE) ID: CVE-2017-11772
BugTraq ID: 101116
http://www.securityfocus.com/bid/101116
Common Vulnerability Exposure (CVE) ID: CVE-2017-11779
BugTraq ID: 101166
http://www.securityfocus.com/bid/101166
http://www.securitytracker.com/id/1039533
Common Vulnerability Exposure (CVE) ID: CVE-2017-11780
BugTraq ID: 101110
http://www.securityfocus.com/bid/101110
Common Vulnerability Exposure (CVE) ID: CVE-2017-11781
BugTraq ID: 101140
http://www.securityfocus.com/bid/101140
Common Vulnerability Exposure (CVE) ID: CVE-2017-11784
BugTraq ID: 101147
http://www.securityfocus.com/bid/101147
Common Vulnerability Exposure (CVE) ID: CVE-2017-11785
BugTraq ID: 101149
http://www.securityfocus.com/bid/101149
https://www.exploit-db.com/exploits/43001/
Common Vulnerability Exposure (CVE) ID: CVE-2017-11790
BugTraq ID: 101077
http://www.securityfocus.com/bid/101077
http://www.securitytracker.com/id/1039532
Common Vulnerability Exposure (CVE) ID: CVE-2017-11793
BugTraq ID: 101141
http://www.securityfocus.com/bid/101141
https://www.exploit-db.com/exploits/43368/
Common Vulnerability Exposure (CVE) ID: CVE-2017-11810
BugTraq ID: 101081
http://www.securityfocus.com/bid/101081
https://www.exploit-db.com/exploits/43131/
Common Vulnerability Exposure (CVE) ID: CVE-2017-11816
BugTraq ID: 101094
http://www.securityfocus.com/bid/101094
Common Vulnerability Exposure (CVE) ID: CVE-2017-11817
BugTraq ID: 101095
http://www.securityfocus.com/bid/101095
Common Vulnerability Exposure (CVE) ID: CVE-2017-11818
BugTraq ID: 101101
http://www.securityfocus.com/bid/101101
Common Vulnerability Exposure (CVE) ID: CVE-2017-11824
BugTraq ID: 101099
http://www.securityfocus.com/bid/101099
Common Vulnerability Exposure (CVE) ID: CVE-2017-11814
BugTraq ID: 101093
http://www.securityfocus.com/bid/101093
Common Vulnerability Exposure (CVE) ID: CVE-2017-13080
BugTraq ID: 101274
http://www.securityfocus.com/bid/101274
CERT/CC vulnerability note: VU#228519
http://www.kb.cert.org/vuls/id/228519
Cisco Security Advisory: 20171016 Multiple Vulnerabilities in Wi-Fi Protected Access and Wi-Fi Protected Access II
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20171016-wpa
Debian Security Information: DSA-3999 (Google Search)
http://www.debian.org/security/2017/dsa-3999
FreeBSD Security Advisory: FreeBSD-SA-17:07
https://security.FreeBSD.org/advisories/FreeBSD-SA-17:07.wpa.asc
https://security.gentoo.org/glsa/201711-03
https://w1.fi/security/2017-1/wpa-packet-number-reuse-with-replayed-messages.txt
https://www.krackattacks.com/
https://lists.debian.org/debian-lts-announce/2017/12/msg00004.html
https://lists.debian.org/debian-lts-announce/2018/11/msg00015.html
RedHat Security Advisories: RHSA-2017:2907
https://access.redhat.com/errata/RHSA-2017:2907
RedHat Security Advisories: RHSA-2017:2911
https://access.redhat.com/errata/RHSA-2017:2911
http://www.securitytracker.com/id/1039572
http://www.securitytracker.com/id/1039573
http://www.securitytracker.com/id/1039576
http://www.securitytracker.com/id/1039577
http://www.securitytracker.com/id/1039578
http://www.securitytracker.com/id/1039581
http://www.securitytracker.com/id/1039585
http://www.securitytracker.com/id/1039703
SuSE Security Announcement: SUSE-SU-2017:2745 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00020.html
SuSE Security Announcement: SUSE-SU-2017:2752 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00023.html
SuSE Security Announcement: openSUSE-SU-2017:2755 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00024.html
http://www.ubuntu.com/usn/USN-3455-1
CopyrightCopyright (C) 2017 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.

Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.



© 1998-2025 E-Soft Inc. Todos los derechos reservados.