Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
kasperskyKaspersky LabKLA11048
HistoryJun 13, 2017 - 12:00 a.m.

KLA11048 Multiple vulnerabilities in Windows Kernel

2017-06-1300:00:00
Kaspersky Lab
threats.kaspersky.com
187

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.001 Low

EPSS

Percentile

46.5%

JSON

Detect date:

06/13/2017

Severity:

Critical

Description:

Multiple serious vulnerabilities have been found in Microsoft Windows kernel. Malicious users can exploit these vulnerabilities to obtain sensitive information and gain privileges.

Affected products:

Microsoft Windows 7 Service Pack 1
Microsoft Windows RT 8.1
Microsoft Windows 8.1
Microsoft Windows 10
Microsoft Windows Server 2008 Pack 2
Microsoft Windows Server 2008 R2 Service Pack 1
Microsoft Windows Server 2012
Microsoft Windows Server 2012 R2
Microsoft Windows Server 2016

Solution:

Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)

Original advisories:

CVE-2017-8478
CVE-2017-8479
CVE-2017-8474
CVE-2017-8476
CVE-2017-8477
CVE-2017-0300
CVE-2017-8481
CVE-2017-8480
CVE-2017-8482
CVE-2017-8485
CVE-2017-8484
CVE-2017-8489
CVE-2017-0299
CVE-2017-0297
CVE-2017-8469
CVE-2017-8468
CVE-2017-8465
CVE-2017-8462
CVE-2017-8494
CVE-2017-8492
CVE-2017-8490
CVE-2017-8491
CVE-2017-8479
CVE-2017-0299
CVE-2017-8485
CVE-2017-8478
CVE-2017-8476
CVE-2017-8494
CVE-2017-8480
CVE-2017-8489
CVE-2017-0300
CVE-2017-8491
CVE-2017-8477
CVE-2017-8462
CVE-2017-8482
CVE-2017-8492
CVE-2017-8490
CVE-2017-8484
CVE-2017-8481
CVE-2017-8468
CVE-2017-8469
CVE-2017-8474
CVE-2017-8465
CVE-2017-0297

Impacts:

OSI

Related products:

Microsoft Windows Server 2012

CVE-IDS:

CVE-2017-84791.9Warning
CVE-2017-02991.9Warning
CVE-2017-84851.9Warning
CVE-2017-84781.9Warning
CVE-2017-84761.9Warning
CVE-2017-84946.9High
CVE-2017-84801.9Warning
CVE-2017-84891.9Warning
CVE-2017-03001.9Warning
CVE-2017-84911.9Warning
CVE-2017-84771.9Warning
CVE-2017-84621.9Warning
CVE-2017-84821.9Warning
CVE-2017-84921.9Warning
CVE-2017-84901.9Warning
CVE-2017-84841.9Warning
CVE-2017-84811.9Warning
CVE-2017-84687.2High
CVE-2017-84692.1Warning
CVE-2017-84741.9Warning
CVE-2017-84657.2High
CVE-2017-02971.9Warning

Microsoft official advisories:

KB list:

4022719
4022726
4022714
4022724
4022727
4022715
4022725
4022722
4022717
4022718
4022013
4022887
4034741

Exploitation:

Public exploits exist for this vulnerability.

References

Related

mskb 23
openvas 12
prion 29
cve 29
kaspersky 2
nessus 9
symantec 22
checkpoint_advisories 2
zdi 3
zdt 17
seebug 10
talosblog 1
myhack58 1
trendmicroblog 1
mscve 22
rapid7community 1
mskb
mskb
Windows kernel information disclosure vulnerability: June 13, 2017
2017-06-13 07:00:00
June 13, 2017—KB4022717 (Security-only update)
2017-06-28 07:00:00
June 13, 2017—KB4022726 (Monthly Rollup)
2017-06-28 07:00:00
openvas
openvas
Microsoft Windows Multiple Vulnerabilities (KB4022013)
2017-06-14 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB4022717)
2017-06-14 00:00:00
Microsoft Windows Server 2012 Multiple Vulnerabilities (KB4022718)
2017-06-14 00:00:00
prion
prion
Information disclosure
2017-06-15 01:29:00
Information disclosure
2017-06-15 01:29:00
Information disclosure
2017-06-15 01:29:00
cve
cve
CVE-2017-0300
2017-06-15 01:29:00
CVE-2017-8478
2017-06-15 01:29:00
CVE-2017-8479
2017-06-15 01:29:00
kaspersky
kaspersky
KLA11039 Multiple vulnerabilities in Microsoft Windows
2019-06-13 00:00:00
KLA11842 Multiple vulnerabilities in Microsoft Products (ESU)
2017-06-13 00:00:00
nessus
nessus
Windows 8.1 and Windows Server 2012 R2 June 2017 Security Updates
2017-06-13 00:00:00
Windows Server 2012 June 2017 Security Updates
2017-06-13 00:00:00
Windows 7 and Windows Server 2008 R2 June 2017 Security Updates
2017-06-13 00:00:00
symantec
symantec
Microsoft Windows CVE-2017-8494 Local Privilege Escalation Vulnerability
2017-06-13 00:00:00
Microsoft Windows Kernel CVE-2017-8474 Local Information Disclosure Vulnerability
2017-06-13 00:00:00
Microsoft Windows Kernel 'Win32k.sys' CVE-2017-8465 Local Privilege Escalation Vulnerability
2017-06-13 00:00:00
checkpoint_advisories
checkpoint_advisories
Microsoft Win32k Elevation of Privilege (CVE-2017-8468)
2017-06-13 00:00:00
Microsoft Win32k Elevation of Privilege (CVE-2017-8465)
2017-06-13 00:00:00
zdi
zdi
(Pwn2Own) Microsoft Windows NtUserLinkDpiCursor Use-After-Free Privilege Escalation Vulnerability
2017-06-13 00:00:00
(Pwn2Own) Microsoft Windows NtUserLinkDpiCursor Use-After-Free Privilege Escalation Vulnerability
2017-06-13 00:00:00
(Pwn2Own) Microsoft Windows NtUserLinkDpiCursor Use-After-Free Privilege Escalation Vulnerability
2017-07-12 00:00:00
zdt
zdt
Microsoft Windows - win32k!NtGdiMakeFontDir Kernel Stack Memory Disclosure Exploit
2017-06-28 00:00:00
Microsoft Windows - nt!NtQueryInformationJobObject (information class 12) Kernel Stack Memory Disclo
2017-06-28 00:00:00
Microsoft Windows - IOCTL_DISK_GET_DRIVE_LAYOUT_EX Kernel partmgr Pool Memory Disclosure Exploit
2017-06-21 00:00:00
seebug
seebug
Windows Kernel stack memory disclosure in DeviceApi(CVE-2017-8474)
2017-06-27 00:00:00
Windows Kernel stack memory disclosure in nt!NtQueryInformationTransaction(CVE-2017-8480)
2017-06-27 00:00:00
Windows Kernel stack memory disclosure in nt!NtQueryInformationJobObject(CVE-2017-8478)
2017-06-27 00:00:00
talosblog
talosblog
Microsoft Patch Tuesday - June 2017
2017-06-13 13:48:00
myhack58
myhack58
Automated mining Windows kernel information disclosure vulnerability-vulnerability warning-the black bar safety net
2017-06-14 00:00:00
trendmicroblog
trendmicroblog
TippingPoint Threat Intelligence and Zero-Day Coverage – Week of June 12, 2017
2017-06-16 12:00:40
mscve
mscve
Windows Elevation of Privilege Vulnerability
2017-06-13 07:00:00
Windows Kernel Information Disclosure Vulnerability
2017-06-13 07:00:00
Win32k Elevation of Privilege Vulnerability
2017-06-13 07:00:00
rapid7community
rapid7community
Patch Tuesday - August 2017
2017-08-08 20:03:46

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.001 Low

EPSS

Percentile

46.5%

JSON
Related for KLA11048
mskb23openvas12prion29cve29kaspersky2nessus9symantec22checkpoint_advisories2zdi3zdt17seebug10talosblog1myhack581trendmicroblog1mscve22rapid7community1