KLA11662Multiple vulnerabilities in Microsoft Windows

2020-02-11T00:00:00
ID KLA11662
Type kaspersky
Reporter Kaspersky Lab
Modified 2020-06-18T00:00:00

Description

Detect date:

02/11/2020

Severity:

Critical

Description:

Multiple vulnerabilities were found in Microsoft Windows. Malicious users can exploit these vulnerabilities to gain privileges, obtain sensitive information, execute arbitrary code, cause denial of service, bypass security restrictions.

Exploitation:

Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.

Affected products:

Windows 10 Version 1909 for ARM64-based Systems
Windows Server 2008 for Itanium-Based Systems Service Pack 2
Windows Server 2008 R2 for Itanium-Based Systems Service Pack 1
Windows 10 Version 1809 for x64-based Systems
Windows Server 2019 (Server Core installation)
Windows 10 Version 1903 for x64-based Systems
Windows 10 for 32-bit Systems
Windows RT 8.1
Windows Server, version 1903 (Server Core installation)
Windows 10 Version 1803 for 32-bit Systems
Windows 7 for 32-bit Systems Service Pack 1
Windows Server 2008 R2 for x64-based Systems Service Pack 1
Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core installation)
Windows 10 Version 1809 for ARM64-based Systems
Windows 10 Version 1903 for ARM64-based Systems
Windows 10 Version 1607 for x64-based Systems
Windows Server 2012 R2
Windows 10 Version 1803 for x64-based Systems
Windows Server 2012 (Server Core installation)
Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)
Windows 10 Version 1809 for 32-bit Systems
Windows 10 Version 1709 for x64-based Systems
Windows Server 2008 for x64-based Systems Service Pack 2
Windows Server 2016
Windows Server 2019
Windows Server 2012
Windows 10 Version 1803 for ARM64-based Systems
Windows 8.1 for x64-based systems
Windows 10 Version 1607 for 32-bit Systems
Windows Server, version 1909 (Server Core installation)
Windows 7 for x64-based Systems Service Pack 1
Windows Server 2008 for 32-bit Systems Service Pack 2
Windows Server 2016 (Server Core installation)
Windows 8.1 for 32-bit systems
Windows 10 for x64-based Systems
Windows 10 Version 1909 for 32-bit Systems
Windows Server, version 1803 (Server Core Installation)
Windows 10 Version 1709 for ARM64-based Systems
Windows Server 2012 R2 (Server Core installation)
Windows 10 Version 1909 for x64-based Systems
Windows 10 Version 1709 for 32-bit Systems
Windows 10 Version 1903 for 32-bit Systems
Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation)

Solution:

Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)

Original advisories:

CVE-2020-0739
CVE-2020-0727
CVE-2020-0742
CVE-2020-0659
CVE-2020-0730
CVE-2020-0703
CVE-2020-0701
CVE-2020-0728
CVE-2020-0729
CVE-2020-0704
CVE-2020-0705
CVE-2020-0707
CVE-2020-0722
CVE-2020-0723
CVE-2020-0720
CVE-2020-0721
CVE-2020-0726
CVE-2020-0746
CVE-2020-0724
CVE-2020-0725
CVE-2020-0662
CVE-2020-0661
CVE-2020-0747
CVE-2020-0667
CVE-2020-0666
CVE-2020-0665
CVE-2020-0740
CVE-2020-0669
CVE-2020-0668
CVE-2020-0734
CVE-2020-0681
CVE-2020-0680
CVE-2020-0683
CVE-2020-0682
CVE-2020-0685
CVE-2020-0672
CVE-2020-0686
CVE-2020-0689
CVE-2020-0743
CVE-2020-0708
CVE-2020-0709
CVE-2020-0657
CVE-2020-0719
CVE-2020-0732
CVE-2020-0750
CVE-2020-0717
CVE-2020-0716
CVE-2020-0715
CVE-2020-0660
CVE-2020-0678
CVE-2020-0679
CVE-2020-0731
CVE-2020-0675
CVE-2020-0676
CVE-2020-0677
CVE-2020-0670
CVE-2020-0671
CVE-2020-0737
CVE-2020-0753
CVE-2020-0752
CVE-2020-0751
CVE-2020-0655
CVE-2020-0757
CVE-2020-0756
CVE-2020-0755
CVE-2020-0738
CVE-2020-0735
CVE-2020-0754
CVE-2020-0792
CVE-2020-0658
CVE-2020-0744
CVE-2020-0691
CVE-2020-0741
CVE-2020-0748
CVE-2020-0698
CVE-2020-0745
CVE-2020-0714
CVE-2020-0749
CVE-2020-0818
CVE-2020-0817

Impacts:

ACE

Related products:

Microsoft Windows

CVE-IDS:

CVE-2020-07390.0Unknown
CVE-2020-07270.0Unknown
CVE-2020-07420.0Unknown
CVE-2020-06590.0Unknown
CVE-2020-07300.0Unknown
CVE-2020-07030.0Unknown
CVE-2020-07010.0Unknown
CVE-2020-07280.0Unknown
CVE-2020-07290.0Unknown
CVE-2020-07040.0Unknown
CVE-2020-07050.0Unknown
CVE-2020-07070.0Unknown
CVE-2020-07220.0Unknown
CVE-2020-07230.0Unknown
CVE-2020-07200.0Unknown
CVE-2020-07210.0Unknown
CVE-2020-07260.0Unknown
CVE-2020-07460.0Unknown
CVE-2020-07240.0Unknown
CVE-2020-07250.0Unknown
CVE-2020-06620.0Unknown
CVE-2020-06610.0Unknown
CVE-2020-07470.0Unknown
CVE-2020-06670.0Unknown
CVE-2020-06660.0Unknown
CVE-2020-06650.0Unknown
CVE-2020-07400.0Unknown
CVE-2020-06690.0Unknown
CVE-2020-06680.0Unknown
CVE-2020-07340.0Unknown
CVE-2020-06810.0Unknown
CVE-2020-06800.0Unknown
CVE-2020-06830.0Unknown
CVE-2020-06820.0Unknown
CVE-2020-06850.0Unknown
CVE-2020-06720.0Unknown
CVE-2020-06860.0Unknown
CVE-2020-06890.0Unknown
CVE-2020-07430.0Unknown
CVE-2020-07080.0Unknown
CVE-2020-07090.0Unknown
CVE-2020-06570.0Unknown
CVE-2020-07190.0Unknown
CVE-2020-07320.0Unknown
CVE-2020-07500.0Unknown
CVE-2020-07170.0Unknown
CVE-2020-07160.0Unknown
CVE-2020-07150.0Unknown
CVE-2020-06600.0Unknown
CVE-2020-06780.0Unknown
CVE-2020-06790.0Unknown
CVE-2020-07310.0Unknown
CVE-2020-06750.0Unknown
CVE-2020-06760.0Unknown
CVE-2020-06770.0Unknown
CVE-2020-06700.0Unknown
CVE-2020-06710.0Unknown
CVE-2020-07370.0Unknown
CVE-2020-07530.0Unknown
CVE-2020-07520.0Unknown
CVE-2020-07510.0Unknown
CVE-2020-06550.0Unknown
CVE-2020-07570.0Unknown
CVE-2020-07560.0Unknown
CVE-2020-07550.0Unknown
CVE-2020-07380.0Unknown
CVE-2020-07350.0Unknown
CVE-2020-07540.0Unknown
CVE-2020-07920.0Unknown
CVE-2020-06580.0Unknown
CVE-2020-07440.0Unknown
CVE-2020-06910.0Unknown
CVE-2020-07410.0Unknown
CVE-2020-07480.0Unknown
CVE-2020-06980.0Unknown
CVE-2020-07450.0Unknown
CVE-2020-07140.0Unknown
CVE-2020-07490.0Unknown
CVE-2020-08180.0Unknown
CVE-2020-08170.0Unknown

KB list:

4537821
4537776
4537794
4524244
4532693
4532691
4502496
4537762
4537764
4537789
4537803
4537814

Microsoft official advisories: