The Windows Graphics Device Interface (GDI) in multiple Microsoft products allows authenticated attacker to retrieve information
Reporter | Title | Published | Views | Family All 61 |
---|---|---|---|---|
NVD | CVE-2017-8676 | 13 Sep 201701:29 | â | nvd |
Prion | Information disclosure | 13 Sep 201701:29 | â | prion |
Cvelist | CVE-2017-8676 | 13 Sep 201701:00 | â | cvelist |
Microsoft CVE | Windows GDI+ Information Disclosure Vulnerability | 12 Sep 201707:00 | â | mscve |
Symantec | Microsoft Windows Graphics Device Interface CVE-2017-8676 Local Information Disclosure Vulnerability | 12 Sep 201700:00 | â | symantec |
Zero Day Initiative | Microsoft Windows Bitmap Parsing Out-Of-Bounds Read Information Disclosure Vulnerability | 12 Sep 201700:00 | â | zdi |
OpenVAS | Microsoft Office Multiple Vulnerabilities (KB3213641) | 13 Sep 201700:00 | â | openvas |
OpenVAS | Microsoft Live Meeting 2007 Console Multiple Vulnerabilities (KB4025868) | 13 Sep 201700:00 | â | openvas |
OpenVAS | Microsoft Office 2010 Service Pack 2 Multiple Vulnerabilities (KB3213638) | 13 Sep 201700:00 | â | openvas |
OpenVAS | Microsoft Lync Attendee Multiple Remote Code Execution Vulnerabilities (KB4025866 and KB4025867) | 13 Sep 201700:00 | â | openvas |
[
{
"product": "Windows Graphics Device Interface (GDI)",
"vendor": "Microsoft Corporation",
"versions": [
{
"status": "affected",
"version": "Microsoft Windows Server 2008 SP2 and R2 SP1"
},
{
"status": "affected",
"version": "Windows 7 SP1"
},
{
"status": "affected",
"version": "Windows 8.1"
},
{
"status": "affected",
"version": "Windows Server 2012 Gold and R2"
},
{
"status": "affected",
"version": "Windows RT 8.1"
},
{
"status": "affected",
"version": "Windows 10 Gold, 1511, 1607, 1703, and Server 2016"
},
{
"status": "affected",
"version": "Office 2007 SP3"
},
{
"status": "affected",
"version": "Office 2010 SP2"
},
{
"status": "affected",
"version": "Word Viewer"
},
{
"status": "affected",
"version": "Office for Mac 2011 and 2016"
},
{
"status": "affected",
"version": "Skype for Business 2016"
},
{
"status": "affected",
"version": "Lync 2013 SP1"
},
{
"status": "affected",
"version": "Lync 2010"
},
{
"status": "affected",
"version": "Lync 2010 Attendee"
},
{
"status": "affected",
"version": "Live Meeting 2007 Add-in and Console"
}
]
}
]
Source | Link |
---|---|
portal | www.portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8676 |
securitytracker | www.securitytracker.com/id/1039333 |
securityfocus | www.securityfocus.com/bid/100755 |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo