English | Deutsch | Español
 
Inicial ▼
Página inicial Acerca Nuestro Contáctenos Privacidad Programas de Asociados Testimonios En la Prensa Listas de Correos Abuso Developer APIs
Bookkeeping
Online ▼
Home Free Trial FAQ
Open/Create Company File Accept an Invite Order/Renew
 
Auditorias ▼
Inicial Dedicada Avanzada Estándar Periódica Sin Riesgo Escritorio Básica Sello FAQ Resumen de Precio/Funciones Ordenar Nuevas Pruebas Todas las Pruebas Confidencialidad Búsqueda de Vulnerabilidad Ejecutar Auditoría Programador IP Permissions Auditorías Personalizadas Cola Recordatorio Sellos Informes Estilos de Informes
DNS
Administrado ▼
Acerca de DNS Ordenar/Renovar Preguntas Frecuentes AUP Dynamic DNS Clients
Configurar Dominios Dynamic DNS Update Password
Monitoreo
de Redes ▼
Enterprise Avanzado Estándarr Prueba Preguntas Frecuentes Resumen de Precio/Funciones Ordenar Muestras
Configure/Status Alert Profiles
Research
Reports ▼
Home FAQ Glossary Archive
 Iniciar sesión/Registrarse 
 
 Búsqueda de    
Vulnerabilidad   		     Buscar 324607 Descripciones CVE y
145615 Descripciones de Pruebas,
accesos 10,000+ referencias cruzadas.
Pruebas   CVE   Todos  

ID de Prueba:1.3.6.1.4.1.25623.1.0.815400
Categoría:Windows : Microsoft Bulletins
Título:Microsoft Windows Multiple Vulnerabilities (KB4507455)
Resumen:This host is missing a critical security; update according to Microsoft KB4507455
Descripción:Summary:
This host is missing a critical security
update according to Microsoft KB4507455

Vulnerability Insight:
Multiple flaws exist due to:

- SymCrypt improperly handles a specially crafted digital signature.

- Scripting engine improperly handles objects in memory in Microsoft browsers.

- Windows RDP client improperly discloses the contents of its memory.

- Windows Graphics Device Interface (GDI) improperly handles objects in
the memory.

- An elevation of privilege exists in Windows Audio Service.

- Kernel Information Disclosure Vulnerability (SWAPGS Attack).

Please see the references for more information about the vulnerabilities.

Vulnerability Impact:
Successful exploitation will allow an
attacker to execute arbitrary code in kernel mode, elevate privileges
by escaping a sandbox, gain access to sensitive information, conduct
denial-of-service and take control of the affected system.

Affected Software/OS:
- Microsoft Windows 10 Version 1709 for 32-bit Systems

- Microsoft Windows 10 Version 1709 for 64-based Systems

Solution:
The vendor has released updates. Please see
the references for more information.

CVSS Score:
9.3

CVSS Vector:
AV:N/AC:M/Au:N/C:C/I:C/A:C

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2019-0865
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0865
Common Vulnerability Exposure (CVE) ID: CVE-2019-0880
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0880
Common Vulnerability Exposure (CVE) ID: CVE-2019-0887
BugTraq ID: 108964
http://www.securityfocus.com/bid/108964
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0887
https://research.checkpoint.com/reverse-rdp-attack-code-execution-on-rdp-clients/
https://research.checkpoint.com/reverse-rdp-the-hyper-v-connection/
Common Vulnerability Exposure (CVE) ID: CVE-2019-1097
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1097
Common Vulnerability Exposure (CVE) ID: CVE-2019-1102
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1102
Common Vulnerability Exposure (CVE) ID: CVE-2019-0966
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0966
Common Vulnerability Exposure (CVE) ID: CVE-2019-0999
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0999
Common Vulnerability Exposure (CVE) ID: CVE-2019-1001
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1001
Common Vulnerability Exposure (CVE) ID: CVE-2019-1004
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1004
Common Vulnerability Exposure (CVE) ID: CVE-2019-1103
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1103
Common Vulnerability Exposure (CVE) ID: CVE-2019-1104
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1104
Common Vulnerability Exposure (CVE) ID: CVE-2019-1106
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1106
Common Vulnerability Exposure (CVE) ID: CVE-2019-1107
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1107
Common Vulnerability Exposure (CVE) ID: CVE-2019-1006
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1006
Common Vulnerability Exposure (CVE) ID: CVE-2019-1108
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1108
Common Vulnerability Exposure (CVE) ID: CVE-2019-1113
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1113
Common Vulnerability Exposure (CVE) ID: CVE-2019-1037
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1037
Common Vulnerability Exposure (CVE) ID: CVE-2019-1056
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1056
Common Vulnerability Exposure (CVE) ID: CVE-2019-1059
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1059
Common Vulnerability Exposure (CVE) ID: CVE-2019-1062
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1062
Common Vulnerability Exposure (CVE) ID: CVE-2019-1063
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1063
Common Vulnerability Exposure (CVE) ID: CVE-2019-1067
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1067
Common Vulnerability Exposure (CVE) ID: CVE-2019-1117
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1117
Common Vulnerability Exposure (CVE) ID: CVE-2019-1118
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1118
Common Vulnerability Exposure (CVE) ID: CVE-2019-1119
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1119
Common Vulnerability Exposure (CVE) ID: CVE-2019-1120
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1120
Common Vulnerability Exposure (CVE) ID: CVE-2019-1121
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1121
Common Vulnerability Exposure (CVE) ID: CVE-2019-1122
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1122
Common Vulnerability Exposure (CVE) ID: CVE-2019-1123
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1123
Common Vulnerability Exposure (CVE) ID: CVE-2019-1124
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1124
Common Vulnerability Exposure (CVE) ID: CVE-2019-1071
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1071
Common Vulnerability Exposure (CVE) ID: CVE-2019-1073
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1073
Common Vulnerability Exposure (CVE) ID: CVE-2019-1127
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1127
Common Vulnerability Exposure (CVE) ID: CVE-2019-1128
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1128
Common Vulnerability Exposure (CVE) ID: CVE-2019-1129
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1129
Common Vulnerability Exposure (CVE) ID: CVE-2019-1130
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1130
Common Vulnerability Exposure (CVE) ID: CVE-2019-1074
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1074
Common Vulnerability Exposure (CVE) ID: CVE-2019-1083
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1083
Common Vulnerability Exposure (CVE) ID: CVE-2019-1085
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1085
Common Vulnerability Exposure (CVE) ID: CVE-2019-1086
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1086
Common Vulnerability Exposure (CVE) ID: CVE-2019-1087
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1087
Common Vulnerability Exposure (CVE) ID: CVE-2019-1088
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1088
Common Vulnerability Exposure (CVE) ID: CVE-2019-1089
http://packetstormsecurity.com/files/153683/Microsoft-Windows-RPCSS-Activation-Kernel-Security-Callback-Privilege-Escalation.html
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1089
Common Vulnerability Exposure (CVE) ID: CVE-2019-1091
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1091
Common Vulnerability Exposure (CVE) ID: CVE-2019-1092
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1092
Common Vulnerability Exposure (CVE) ID: CVE-2019-1095
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1095
Common Vulnerability Exposure (CVE) ID: CVE-2019-1096
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1096
Common Vulnerability Exposure (CVE) ID: CVE-2019-1093
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1093
Common Vulnerability Exposure (CVE) ID: CVE-2019-1094
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1094
Common Vulnerability Exposure (CVE) ID: CVE-2019-0683
Common Vulnerability Exposure (CVE) ID: CVE-2019-1125
RHBA-2019:2824
https://access.redhat.com/errata/RHBA-2019:2824
RHBA-2019:3248
https://access.redhat.com/errata/RHBA-2019:3248
RHSA-2019:2600
https://access.redhat.com/errata/RHSA-2019:2600
RHSA-2019:2609
https://access.redhat.com/errata/RHSA-2019:2609
RHSA-2019:2695
https://access.redhat.com/errata/RHSA-2019:2695
RHSA-2019:2696
https://access.redhat.com/errata/RHSA-2019:2696
RHSA-2019:2730
https://access.redhat.com/errata/RHSA-2019:2730
RHSA-2019:2899
https://access.redhat.com/errata/RHSA-2019:2899
RHSA-2019:2900
https://access.redhat.com/errata/RHSA-2019:2900
RHSA-2019:2975
https://access.redhat.com/errata/RHSA-2019:2975
RHSA-2019:3011
https://access.redhat.com/errata/RHSA-2019:3011
RHSA-2019:3220
https://access.redhat.com/errata/RHSA-2019:3220
http://packetstormsecurity.com/files/156337/SWAPGS-Attack-Proof-Of-Concept.html
http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200408-01-swapgs-en
https://kc.mcafee.com/corporate/index?page=content&id=SB10297
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1125
https://www.synology.com/security/advisory/Synology_SA_19_32
CopyrightCopyright (C) 2019 Greenbone Networks GmbH

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.

Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.



© 1998-2025 E-Soft Inc. Todos los derechos reservados.