Windows : Microsoft Bulletins : Microsoft Windows Kernel-Mode Drivers Privilege Elevation Vulnerabilities (4013083)

Anfälligkeitssuche		Suche in 324607 CVE Beschreibungen und 146377 Test Beschreibungen, Zugriff auf 10,000+ Quellverweise.
	Tests CVE Alle

Test Kennung: 1.3.6.1.4.1.25623.1.0.810594

Kategorie: Windows : Microsoft Bulletins

Titel: Microsoft Windows Kernel-Mode Drivers Privilege Elevation Vulnerabilities (4013083)

Zusammenfassung: This host is missing an important security; update according to Microsoft Bulletin MS17-018.

Beschreibung: Summary:
This host is missing an important security
update according to Microsoft Bulletin MS17-018.

Vulnerability Insight:
Multiple flaws exist when the Windows
kernel-mode driver fails to properly handle objects in memory.

Vulnerability Impact:
Successful exploitation will allow an attacker
to run arbitrary code in kernel mode. An attacker could then:

- install programs

- view, change, or delete data

- create new accounts with full user rights.

Affected Software/OS:
- Microsoft Windows 8.1 x32/x64

- Microsoft Windows 10 x32/x64

- Microsoft Windows Server 2012/2012R2

- Microsoft Windows 10 Version 1511 x32/x64

- Microsoft Windows 10 Version 1607 x32/x64

- Microsoft Windows Vista x32/x64 Edition Service Pack 2

- Microsoft Windows Server 2008 x32/x64 Edition Service Pack 2

- Microsoft Windows 7 x32/x64 Edition Service Pack 1

- Microsoft Windows Server 2008 R2 x64 Edition Service Pack 1

- Microsoft Windows Server 2016

Solution:
The vendor has released updates. Please see the references for more information.

CVSS Score:
7.2

CVSS Vector:
AV:L/AC:L/Au:N/C:C/I:C/A:C

Querverweis: Common Vulnerability Exposure (CVE) ID: CVE-2017-0024
BugTraq ID: 96029
http://www.securityfocus.com/bid/96029
http://www.securitytracker.com/id/1038017
Common Vulnerability Exposure (CVE) ID: CVE-2017-0026
BugTraq ID: 96032
http://www.securityfocus.com/bid/96032
Common Vulnerability Exposure (CVE) ID: CVE-2017-0056
BugTraq ID: 96630
http://www.securityfocus.com/bid/96630
Common Vulnerability Exposure (CVE) ID: CVE-2017-0078
BugTraq ID: 96631
http://www.securityfocus.com/bid/96631
Common Vulnerability Exposure (CVE) ID: CVE-2017-0079
BugTraq ID: 96632
http://www.securityfocus.com/bid/96632
Common Vulnerability Exposure (CVE) ID: CVE-2017-0080
BugTraq ID: 96633
http://www.securityfocus.com/bid/96633
Common Vulnerability Exposure (CVE) ID: CVE-2017-0081
BugTraq ID: 96634
http://www.securityfocus.com/bid/96634
Common Vulnerability Exposure (CVE) ID: CVE-2017-0082
BugTraq ID: 96635
http://www.securityfocus.com/bid/96635

Copyright Copyright (C) 2017 Greenbone AG

Dies ist nur einer von 146377 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.
Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.

Test Kennung:	1.3.6.1.4.1.25623.1.0.810594
Kategorie:	Windows : Microsoft Bulletins
Titel:	Microsoft Windows Kernel-Mode Drivers Privilege Elevation Vulnerabilities (4013083)
Zusammenfassung:	This host is missing an important security; update according to Microsoft Bulletin MS17-018.
Beschreibung:	Summary: This host is missing an important security update according to Microsoft Bulletin MS17-018. Vulnerability Insight: Multiple flaws exist when the Windows kernel-mode driver fails to properly handle objects in memory. Vulnerability Impact: Successful exploitation will allow an attacker to run arbitrary code in kernel mode. An attacker could then: - install programs - view, change, or delete data - create new accounts with full user rights. Affected Software/OS: - Microsoft Windows 8.1 x32/x64 - Microsoft Windows 10 x32/x64 - Microsoft Windows Server 2012/2012R2 - Microsoft Windows 10 Version 1511 x32/x64 - Microsoft Windows 10 Version 1607 x32/x64 - Microsoft Windows Vista x32/x64 Edition Service Pack 2 - Microsoft Windows Server 2008 x32/x64 Edition Service Pack 2 - Microsoft Windows 7 x32/x64 Edition Service Pack 1 - Microsoft Windows Server 2008 R2 x64 Edition Service Pack 1 - Microsoft Windows Server 2016 Solution: The vendor has released updates. Please see the references for more information. CVSS Score: 7.2 CVSS Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2017-0024 BugTraq ID: 96029 http://www.securityfocus.com/bid/96029 http://www.securitytracker.com/id/1038017 Common Vulnerability Exposure (CVE) ID: CVE-2017-0026 BugTraq ID: 96032 http://www.securityfocus.com/bid/96032 Common Vulnerability Exposure (CVE) ID: CVE-2017-0056 BugTraq ID: 96630 http://www.securityfocus.com/bid/96630 Common Vulnerability Exposure (CVE) ID: CVE-2017-0078 BugTraq ID: 96631 http://www.securityfocus.com/bid/96631 Common Vulnerability Exposure (CVE) ID: CVE-2017-0079 BugTraq ID: 96632 http://www.securityfocus.com/bid/96632 Common Vulnerability Exposure (CVE) ID: CVE-2017-0080 BugTraq ID: 96633 http://www.securityfocus.com/bid/96633 Common Vulnerability Exposure (CVE) ID: CVE-2017-0081 BugTraq ID: 96634 http://www.securityfocus.com/bid/96634 Common Vulnerability Exposure (CVE) ID: CVE-2017-0082 BugTraq ID: 96635 http://www.securityfocus.com/bid/96635
Copyright	Copyright (C) 2017 Greenbone AG