Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

Win32k Information Disclosure Vulnerability

🗓️ 11 Apr 2017 07:00:00Reported by MicrosoftType 
mscve
 mscve🔗 msrc.microsoft.com👁 18 Views

Win32k Information Disclosure Vulnerability. Improper kernel information provision. Attacker can exploit to compromise user system. Security update corrects win32k memory object handling

Related
Detection
ReporterTitlePublishedViews
Family
0day.today		Microsoft Windows Kernel win32k.sys - Multiple Bugs in the NtGdiGetDIBitsInternal System Call Exploi
13 Apr 201700:00
zdt
Circl		CVE-2017-0058
13 Apr 201700:00
circl
CNVD		Microsoft Windows Kernel 'Win32k.sys' Local Information Disclosure Vulnerability (CNVD-2017-05765)
14 Apr 201700:00
cnvd
CVE		CVE-2017-0058
12 Apr 201714:00
cve
Cvelist		CVE-2017-0058
12 Apr 201714:00
cvelist
Microsoft KB		Security update for the Win32k information disclosure and escalation of privilege vulnerabilities in Windows Vista and Windows Server 2008: April 11, 2017
11 Apr 201707:00
mskb
Microsoft KB		April 11, 2017—KB4015217 (OS Build 14393.1066 and 14393.1083)
11 Apr 201707:00
mskb
Microsoft KB		April 11, 2017—KB4015219 (OS Build 10586.873)
11 Apr 201707:00
mskb
Microsoft KB		April 11, 2017—KB4015221 (OS Build 10240.17354)
11 Apr 201707:00
mskb
Microsoft KB		April 11, 2017—KB4015546 (Security-only update)
11 Apr 201707:00
mskb
Rows per page
Vulners
Node
microsoftwindows_server_2016
OR
microsoftwindows_server_2008_for_32-bit_systems_service_pack_2_(server_core_installation)
OR
microsoftwindows_10_version_1703_for_x64-based_systems
OR
microsoftwindows_10_version_1703_for_32-bit_systems
OR
microsoftwindows_server_2016_(server_core_installation)
OR
microsoftwindows_vista_x64_edition_service_pack_2
OR
microsoftwindows_vista_service_pack_2
OR
microsoftwindows_server_2012_r2_(server_core_installation)
OR
microsoftwindows_server_2012_r2_(server_core_installation)
OR
microsoftwindows_server_2012_r2
OR
microsoftwindows_server_2012_r2
OR
microsoftwindows_server_2012_(server_core_installation)
OR
microsoftwindows_server_2012_(server_core_installation)
OR
microsoftwindows_server_2012
OR
microsoftwindows_server_2012
OR
microsoftwindows_server_2008_r2_for_x64-based_systems_service_pack_1_(server_core_installation)
OR
microsoftwindows_server_2008_r2_for_x64-based_systems_service_pack_1_(server_core_installation)
OR
microsoftwindows_server_2008_r2_for_x64-based_systems_service_pack_1
OR
microsoftwindows_server_2008_r2_for_x64-based_systems_service_pack_1
OR
microsoftwindows_server_2008_r2_for_itanium-based_systems_service_pack_1
OR
microsoftwindows_server_2008_r2_for_itanium-based_systems_service_pack_1
OR
microsoftwindows_server_2008_for_x64-based_systems_service_pack_2_(server_core_installation)
OR
microsoftwindows_server_2008_for_x64-based_systems_service_pack_2
OR
microsoftwindows_server_2008_for_itanium-based_systems_service_pack_2
OR
microsoftwindows_server_2008_for_32-bit_systems_service_pack_2
OR
microsoftwindows_rt_8.1
OR
microsoftwindows_8.1_for_x64-based_systems
OR
microsoftwindows_8.1_for_x64-based_systems
OR
microsoftwindows_8.1_for_32-bit_systems
OR
microsoftwindows_8.1_for_32-bit_systems
OR
microsoftwindows_7_for_x64-based_systems_service_pack_1
OR
microsoftwindows_7_for_x64-based_systems_service_pack_1
OR
microsoftwindows_7_for_32-bit_systems_service_pack_1
OR
microsoftwindows_7_for_32-bit_systems_service_pack_1
OR
microsoftwindows_10_version_1607_for_x64-based_systems
OR
microsoftwindows_10_version_1607_for_32-bit_systems
OR
microsoftwindows_10_version_1511_for_x64-based_systems
OR
microsoftwindows_10_version_1511_for_32-bit_systems
OR
microsoftwindows_10_for_x64-based_systems
OR
microsoftwindows_10_for_32-bit_systems

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
11 Apr 2017 07:00Current
1.4Low risk
Vulners AI Score1.4
CVSS 21.9
CVSS 34.7
EPSS0.03655
win32kinformation disclosurevulnerabilitykernelcompromisesecurity updatememory object handlingmicrosoft
18