Windows : Microsoft Bulletins : Microsoft Windows Kernel-Mode Drivers Privilege Elevation Vulnerabilities (4013083)

Anfälligkeitssuche		Suche in 219043 CVE Beschreibungen und 99761 Test Beschreibungen, Zugriff auf 10,000+ Quellverweise.
	Tests CVE Alle

Test Kennung: 1.3.6.1.4.1.25623.1.0.810594

Kategorie: Windows : Microsoft Bulletins

Titel: Microsoft Windows Kernel-Mode Drivers Privilege Elevation Vulnerabilities (4013083)

Zusammenfassung: This host is missing an important security; update according to Microsoft Bulletin MS17-018.

Beschreibung: Summary:
This host is missing an important security
update according to Microsoft Bulletin MS17-018.

Vulnerability Insight:
Multiple flaws exist when the Windows
kernel-mode driver fails to properly handle objects in memory.

Vulnerability Impact:
Successful exploitation will allow an attacker
to run arbitrary code in kernel mode. An attacker could then:

- install programs

- view, change, or delete data

- create new accounts with full user rights.

Affected Software/OS:
- Microsoft Windows 8.1 x32/x64

- Microsoft Windows 10 x32/x64

- Microsoft Windows Server 2012/2012R2

- Microsoft Windows 10 Version 1511 x32/x64

- Microsoft Windows 10 Version 1607 x32/x64

- Microsoft Windows Vista x32/x64 Edition Service Pack 2

- Microsoft Windows Server 2008 x32/x64 Edition Service Pack 2

- Microsoft Windows 7 x32/x64 Edition Service Pack 1

- Microsoft Windows Server 2008 R2 x64 Edition Service Pack 1

- Microsoft Windows Server 2016

Solution:
The vendor has released updates. Please see the references for more information.

CVSS Score:
7.2

CVSS Vector:
AV:L/AC:L/Au:N/C:C/I:C/A:C

Querverweis: BugTraq ID: 96029
BugTraq ID: 96032
BugTraq ID: 96630
BugTraq ID: 96631
BugTraq ID: 96632
BugTraq ID: 96633
BugTraq ID: 96634
BugTraq ID: 96635
Common Vulnerability Exposure (CVE) ID: CVE-2017-0024
http://www.securityfocus.com/bid/96029
http://www.securitytracker.com/id/1038017
Common Vulnerability Exposure (CVE) ID: CVE-2017-0026
http://www.securityfocus.com/bid/96032
Common Vulnerability Exposure (CVE) ID: CVE-2017-0056
http://www.securityfocus.com/bid/96630
Common Vulnerability Exposure (CVE) ID: CVE-2017-0078
http://www.securityfocus.com/bid/96631
Common Vulnerability Exposure (CVE) ID: CVE-2017-0079
http://www.securityfocus.com/bid/96632
Common Vulnerability Exposure (CVE) ID: CVE-2017-0080
http://www.securityfocus.com/bid/96633
Common Vulnerability Exposure (CVE) ID: CVE-2017-0081
http://www.securityfocus.com/bid/96634
Common Vulnerability Exposure (CVE) ID: CVE-2017-0082
http://www.securityfocus.com/bid/96635

Copyright Copyright (C) 2017 Greenbone Networks GmbH

Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.
Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.

Test Kennung:	1.3.6.1.4.1.25623.1.0.810594
Kategorie:	Windows : Microsoft Bulletins
Titel:	Microsoft Windows Kernel-Mode Drivers Privilege Elevation Vulnerabilities (4013083)
Zusammenfassung:	This host is missing an important security; update according to Microsoft Bulletin MS17-018.
Beschreibung:	Summary: This host is missing an important security update according to Microsoft Bulletin MS17-018. Vulnerability Insight: Multiple flaws exist when the Windows kernel-mode driver fails to properly handle objects in memory. Vulnerability Impact: Successful exploitation will allow an attacker to run arbitrary code in kernel mode. An attacker could then: - install programs - view, change, or delete data - create new accounts with full user rights. Affected Software/OS: - Microsoft Windows 8.1 x32/x64 - Microsoft Windows 10 x32/x64 - Microsoft Windows Server 2012/2012R2 - Microsoft Windows 10 Version 1511 x32/x64 - Microsoft Windows 10 Version 1607 x32/x64 - Microsoft Windows Vista x32/x64 Edition Service Pack 2 - Microsoft Windows Server 2008 x32/x64 Edition Service Pack 2 - Microsoft Windows 7 x32/x64 Edition Service Pack 1 - Microsoft Windows Server 2008 R2 x64 Edition Service Pack 1 - Microsoft Windows Server 2016 Solution: The vendor has released updates. Please see the references for more information. CVSS Score: 7.2 CVSS Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C
Querverweis:	BugTraq ID: 96029 BugTraq ID: 96032 BugTraq ID: 96630 BugTraq ID: 96631 BugTraq ID: 96632 BugTraq ID: 96633 BugTraq ID: 96634 BugTraq ID: 96635 Common Vulnerability Exposure (CVE) ID: CVE-2017-0024 http://www.securityfocus.com/bid/96029 http://www.securitytracker.com/id/1038017 Common Vulnerability Exposure (CVE) ID: CVE-2017-0026 http://www.securityfocus.com/bid/96032 Common Vulnerability Exposure (CVE) ID: CVE-2017-0056 http://www.securityfocus.com/bid/96630 Common Vulnerability Exposure (CVE) ID: CVE-2017-0078 http://www.securityfocus.com/bid/96631 Common Vulnerability Exposure (CVE) ID: CVE-2017-0079 http://www.securityfocus.com/bid/96632 Common Vulnerability Exposure (CVE) ID: CVE-2017-0080 http://www.securityfocus.com/bid/96633 Common Vulnerability Exposure (CVE) ID: CVE-2017-0081 http://www.securityfocus.com/bid/96634 Common Vulnerability Exposure (CVE) ID: CVE-2017-0082 http://www.securityfocus.com/bid/96635
Copyright	Copyright (C) 2017 Greenbone Networks GmbH