Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
kasperskyKaspersky LabKLA11156
HistoryDec 12, 2017 - 12:00 a.m.

KLA11156 Multiple vulnerabilities in Microsoft Windows

2017-12-1200:00:00
Kaspersky Lab
threats.kaspersky.com
89

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

8.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:S/C:C/I:C/A:C

0.387 Low

EPSS

Percentile

97.2%

JSON

Detect date:

12/12/2017

Severity:

High

Description:

Multiple serious vulnerabilities have been found in Microsoft Windows. Malicious user can exploit these vulnerabilities to obtain sensitive information, bypass security restrictions and execute arbitrary code.

Affected products:

Windows 10 for 32-bit Systems
Windows 10 for x64-based Systems
Windows 10 Version 1511 for 32-bit Systems
Windows 10 Version 1511 for x64-based Systems
Windows 10 Version 1607 for 32-bit Systems
Windows 10 Version 1607 for x64-based Systems
Windows 10 Version 1703 for 32-bit Systems
Windows 10 Version 1703 for x64-based Systems
Windows 10 Version 1709 for 32-bit Systems
Windows 10 Version 1709 for x64-based Systems
Windows 7 for 32-bit Systems Service Pack 1
Windows 7 for x64-based Systems Service Pack 1
Windows 8.1 for 32-bit systems
Windows 8.1 for x64-based systems
Windows RT 8.1
Windows Server 2008 for 32-bit Systems Service Pack 2
Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core installation)
Windows Server 2008 for Itanium-Based Systems Service Pack 2
Windows Server 2008 for x64-based Systems Service Pack 2
Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation)
Windows Server 2008 R2 for Itanium-Based Systems Service Pack 1
Windows Server 2008 R2 for x64-based Systems Service Pack 1
Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)
Windows Server 2012
Windows Server 2012 (Server Core installation)
Windows Server 2012 R2
Windows Server 2012 R2 (Server Core installation)
Windows Server 2016
Windows Server 2016 (Server Core installation)
Windows Server, version 1709 (Server Core Installation)

Solution:

Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)

Original advisories:

CVE-2017-11885
CVE-2017-11899
CVE-2017-11927

Impacts:

ACE

Related products:

Microsoft Windows

CVE-IDS:

CVE-2017-118858.5Critical
CVE-2017-118997.5Critical
CVE-2017-119274.3Warning

Microsoft official advisories:

KB list:

4053578
4053579
4053580
4053581
4054517
4054519
4054520
4054522
4054523
4103723
4103716
4103731
4103715
4103730
4103726
4103727
4103725

Exploitation:

Public exploits exist for this vulnerability.

References

Related

nessus 9
cve 3
prion 3
saint 3
mskb 24
mscve 3
packetstorm 1
symantec 3
zdt 1
checkpoint_advisories 1
qualysblog 1
trellix 2
kaspersky 1
openvas 13
threatpost 1
trendmicroblog 1
talosblog 1
nessus
nessus
Windows 2008 December 2017 Multiple Security Updates
2017-12-12 00:00:00
Windows Server 2012 December 2017 Security Updates
2017-12-12 00:00:00
KB4053581: Windows 10 December 2017 Security Update
2017-12-12 00:00:00
cve
cve
CVE-2017-11885
2017-12-12 21:29:00
CVE-2017-11927
2017-12-12 21:29:00
CVE-2017-11899
2017-12-12 21:29:00
prion
prion
Information disclosure
2017-12-12 21:29:00
Security feature bypass
2017-12-12 21:29:00
Remote code execution
2017-12-12 21:29:00
saint
saint
Windows RRAS Service Remote Code Execution Vulnerability
2018-06-06 00:00:00
Windows RRAS Service Remote Code Execution Vulnerability
2018-06-06 00:00:00
Windows RRAS Service Remote Code Execution Vulnerability
2018-06-06 00:00:00
mskb
mskb
Description of the security update for the Windows RRAS Service remote code execution vulnerability in Windows Server 2008: December 12, 2017
2017-12-12 08:00:00
December 12, 2017โ€”KB4054521 (Security-only update)
2017-12-12 08:00:00
December 12, 2017โ€”KB4054523 (Security-only update)
2017-12-12 08:00:00
mscve
mscve
Windows RRAS Service Remote Code Execution Vulnerability
2017-12-12 08:00:00
Microsoft Windows Information Disclosure Vulnerability
2017-12-12 08:00:00
Device Guard Security Feature Bypass Vulnerability
2017-12-12 08:00:00
packetstorm
packetstorm
Microsoft Windows 2003 SP2 RRAS SMB Remote Code Execution
2018-05-13 00:00:00
symantec
symantec
Microsoft Windows Device Guard CVE-2017-11899 Remote Security Bypass Vulnerability
2017-12-12 00:00:00
Microsoft Windows RPC CVE-2017-11885 Remote Code Execution Vulnerability
2017-12-12 00:00:00
Microsoft Windows CVE-2017-11927 Information Disclosure Vulnerability
2017-12-12 00:00:00
zdt
zdt
Microsoft Windows 2003 SP2 - RRAS SMB Remote Code Execution Exploit
2018-05-13 00:00:00
checkpoint_advisories
checkpoint_advisories
Microsoft Windows ITS Protocol Information Disclosure (CVE-2017-11927)
2018-01-03 00:00:00
qualysblog
qualysblog
December Patch Tuesday: Quiet End to the Year
2017-12-12 19:27:03
trellix
trellix
CVE-2023-23397: The Notification Sound You Donโ€™t Want to Hear
2023-03-17 00:00:00
CVE-2023-23397: The Notification Sound You Donโ€™t Want to Hear
2023-03-17 00:00:00
kaspersky
kaspersky
KLA10918 Multiple vulnerabilities in Microsoft Products (ESU)
2017-12-12 00:00:00
openvas
openvas
Microsoft Windows Multiple Vulnerabilities (KB4053581)
2017-12-13 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB4054518)
2017-12-13 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB4053580)
2017-12-13 00:00:00
threatpost
threatpost
Microsoft December Patch Tuesday Update Fixes Six Critical Bugs
2017-12-12 17:12:36
trendmicroblog
trendmicroblog
TippingPoint Threat Intelligence and Zero-Day Coverage โ€“ Week of December 11, 2017
2017-12-15 16:06:45
talosblog
talosblog
Microsoft Patch Tuesday - December 2017
2017-12-12 15:32:00

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

8.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:S/C:C/I:C/A:C

0.387 Low

EPSS

Percentile

97.2%

JSON
Related for KLA11156
nessus9cve3prion3saint3mskb24mscve3packetstorm1symantec3zdt1checkpoint_advisories1qualysblog1trellix2kaspersky1openvas13threatpost1trendmicroblog1talosblog1