Lucene search

Kaspersky LabKLA11077

HistoryMay 09, 2017 - 12:00 a.m.

KLA11077 Multiple vulnerabilities in Microsoft Products (ESU)

2017-05-0900:00:00

Kaspersky Lab

threats.kaspersky.com

8.1 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

8.7 High

AI Score

Confidence

High

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.263 Low

EPSS

Percentile

96.6%

JSON

Detect date:

05/09/2017

Severity:

Critical

Description:

Multiple vulnerabilities were found in Microsoft Products (Extended Support Update). Malicious users can exploit these vulnerabilities to obtain sensitive information, execute arbitrary code, cause denial of service, bypass security restrictions, gain privileges.

Affected products:

Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation)
Windows 10 for 32-bit Systems
Internet Explorer 9
Windows 10 for x64-based Systems
Windows Server 2012 (Server Core installation)
Windows Server 2016 (Server Core installation)
Windows 7 for x64-based Systems Service Pack 1
Windows Server 2012
Windows Server 2008 for 32-bit Systems Service Pack 2
Windows 8.1 for 32-bit systems
Windows 8.1 for x64-based systems
Internet Explorer 11
Windows Server 2008 for x64-based Systems Service Pack 2
Windows Server 2016
Windows Server 2008 for Itanium-Based Systems Service Pack 2
Windows RT 8.1
Windows 10 Version 1703 for x64-based Systems
Windows Server 2012 R2 (Server Core installation)
Windows Server 2008 R2 for Itanium-Based Systems Service Pack 1
Windows 10 Version 1511 for 32-bit Systems
Microsoft Edge (EdgeHTML-based)
Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)
Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core installation)
Windows 10 Version 1511 for x64-based Systems
Windows 10 Version 1607 for 32-bit Systems
Windows 10 Version 1607 for x64-based Systems
Windows 7 for 32-bit Systems Service Pack 1
Windows Server 2008 R2 for x64-based Systems Service Pack 1
Internet Explorer 10
Windows 10 Version 1703 for 32-bit Systems
Windows Server 2012 R2

Solution:

Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)

Original advisories:

CVE-2017-0220
CVE-2017-0222
CVE-2017-0280
CVE-2017-0064
CVE-2017-0272
CVE-2017-0246
CVE-2017-0278
CVE-2017-0279
CVE-2017-0190
CVE-2017-0214
CVE-2017-0273
CVE-2017-0270
CVE-2017-0271
CVE-2017-0276
CVE-2017-0277
CVE-2017-0274
CVE-2017-0213
CVE-2017-0238
CVE-2017-0258
CVE-2017-0077
CVE-2017-0175
CVE-2017-0171
CVE-2017-0269
CVE-2017-0268
CVE-2017-0245
CVE-2017-0244
CVE-2017-0242
CVE-2017-0263
CVE-2017-0275
CVE-2017-0267

Impacts:

ACE

Related products:

Microsoft Internet Explorer

CVE-IDS:

CVE-2017-02387.5Critical
CVE-2017-02227.5Critical
CVE-2017-00646.5High
CVE-2017-02805.9High
CVE-2017-02797.0High
CVE-2017-02787.0High
CVE-2017-02777.0High
CVE-2017-02765.9High
CVE-2017-02755.9High
CVE-2017-02745.9High
CVE-2017-02735.9High
CVE-2017-02728.1Critical
CVE-2017-02715.9High
CVE-2017-02705.9High
CVE-2017-02695.9High
CVE-2017-02685.9High
CVE-2017-02675.9High
CVE-2017-02637.8Critical
CVE-2017-02584.7Warning
CVE-2017-02467.0High
CVE-2017-02454.7Warning
CVE-2017-02446.7High
CVE-2017-02425.5High
CVE-2017-02204.7Warning
CVE-2017-02147.0High
CVE-2017-02134.7Warning
CVE-2017-01904.4Warning
CVE-2017-01754.7Warning
CVE-2017-01715.9High
CVE-2017-00777.8Critical

Exploitation:

Public exploits exist for this vulnerability.

Microsoft official advisories:

KB list:

4018271
4019264
4019263
4019149
4018885
4019206
4018821
4018927
4018556
4019204
4018466
4018196

References

support.microsoft.com/kb/4018196

support.microsoft.com/kb/4018271

support.microsoft.com/kb/4018466

support.microsoft.com/kb/4018556

support.microsoft.com/kb/4018821

support.microsoft.com/kb/4018885

support.microsoft.com/kb/4018927

support.microsoft.com/kb/4019149

support.microsoft.com/kb/4019204

support.microsoft.com/kb/4019206

support.microsoft.com/kb/4019263

support.microsoft.com/kb/4019264

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-0064

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-0077

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-0171

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-0175

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-0190

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-0213

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-0214

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-0220

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-0222

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-0238

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-0242

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-0244

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-0245

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-0246

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-0258

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-0263

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-0267

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-0268

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-0269

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-0270

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-0271

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-0272

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-0273

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-0274

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-0275

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-0276

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-0277

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-0278

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-0279

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-0280

portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2017-0064

portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2017-0077

portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2017-0171

portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2017-0175

portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2017-0190

portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2017-0213

portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2017-0214

portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2017-0220

portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2017-0222

portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2017-0238

portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2017-0242

portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2017-0244

portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2017-0245

portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2017-0246

portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2017-0258

portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2017-0263

portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2017-0267

portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2017-0268

portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2017-0269

portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2017-0270

portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2017-0271

portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2017-0272

portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2017-0273

portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2017-0274

portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2017-0275

portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2017-0276

portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2017-0277

portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2017-0278

portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2017-0279

portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2017-0280

portal.msrc.microsoft.com/en-us/security-guidance

statistics.securelist.com/vulnerability-scan/month

threats.kaspersky.com/en/class/Exploit/

threats.kaspersky.com/en/product/Microsoft-Edge/

threats.kaspersky.com/en/product/Microsoft-Internet-Explorer/

threats.kaspersky.com/en/product/Microsoft-Windows-10/

threats.kaspersky.com/en/product/Microsoft-Windows-7/

threats.kaspersky.com/en/product/Microsoft-Windows-8/

threats.kaspersky.com/en/product/Microsoft-Windows-Server-2008/

threats.kaspersky.com/en/product/Microsoft-Windows-Server-2012/

threats.kaspersky.com/en/product/Microsoft-Windows-Server/

threats.kaspersky.com/en/product/Microsoft-Windows/

threats.kaspersky.com/en/product/Windows-RT/

8.1 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

8.7 High

AI Score

Confidence

High

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.263 Low

EPSS

Percentile

96.6%

JSON