1786 matches found
CVE-2018-8116
A denial of service vulnerability exists in the way that Windows handles objects in memory, aka "Microsoft Graphics Component Denial of Service Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8.1, Windows Server 201...
CVE-2018-1028
A remote code execution vulnerability exists when the Office graphics component improperly handles specially crafted embedded fonts, aka "Microsoft Office Graphics Remote Code Execution Vulnerability." This affects Word, Microsoft Office, Microsoft SharePoint, Excel, Microsoft SharePoint Server...
CVE-2018-1028
A remote code execution vulnerability exists when the Office graphics component improperly handles specially crafted embedded fonts, aka "Microsoft Office Graphics Remote Code Execution Vulnerability." This affects Word, Microsoft Office, Microsoft SharePoint, Excel, Microsoft SharePoint Server...
CVE-2018-1028
A remote code execution vulnerability exists when the Office graphics component improperly handles specially crafted embedded fonts, aka "Microsoft Office Graphics Remote Code Execution Vulnerability." This affects Word, Microsoft Office, Microsoft SharePoint, Excel, Microsoft SharePoint Server...
CVE-2018-8116
The provided connected documents confirm CVE-2018-8116 is a DoS vulnerability in the Windows Graphics Component, arising from how the component handles objects in memory and affecting multiple Windows versions (e.g., Windows 7, Windows 10, server editions). Concrete details include the affected p...
April 10, 2018—KB4093115 (Security-only update)
April 10, 2018—KB4093115 Security-only update Improvements and fixes This security update includes quality improvements. No new operating system features are being introduced in this update. Key changes include: Windows Update and WSUS will offer this update to applicable Windows client and serve...
Microsoft Office Graphics Remote Code Execution Vulnerability
A remote code execution vulnerability exists when the Office graphics component improperly handles specially crafted embedded fonts. An attacker who successfully exploited this vulnerability could take control of the affected system. An attacker could then install programs; view, change, or delet...
Graphics Component Font Parsing Elevation of Privilege Vulnerability
An elevation of privilege vulnerability exists when the Microsoft Windows Graphics Component improperly handles objects in memory. An attacker who successfully exploits this vulnerability could run arbitrary code in kernel mode. An attacker could then install programs; view, change, or delete dat...
KLA11896 Multiple vulnerabilities in Microsoft Products (ESU)
Multiple vulnerabilities were found in Microsoft Products Extended Support Update. Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information, gain privileges, cause denial of service. Below is a complete list of vulnerabilities: 1. A memory corrupti...
Security Updates for Microsoft Office Web Apps (April 2018)
The Microsoft Office Web Apps installation on the remote host is missing a security update. It is, therefore, affected by the following vulnerability : - A remote code execution vulnerability exists when the Office graphics component improperly handles specially crafted embedded fonts. An attacke...
October 17, 2017—KB4043961 (OS Build 16299.19)
October 17, 2017—KB4043961 OS Build 16299.19 Improvements and fixes This update includes quality improvements. No new operating system features are being introduced in this update. Key changes include: Addressed issue where, after removing apps, they're reinstalled on every restart, logoff, and...
Google Android Qualcomm component elevation of privilege vulnerability (CNVD-2017-36519)
Android is a free and open source Linux-based operating system led and developed by Google Inc. and the Open Handset Alliance. An elevation of privilege vulnerability exists in the Google Android Graphics Qualcomm component. An attacker can exploit this vulnerability to achieve elevation of...
Microsoft Windows Graphics Component Information Disclosure Vulnerability (CNVD-2017-37117)
Microsoft Windows 8.1 and others are operating systems released by Microsoft Corporation in the U.S. Graphics is one of the graphics driver components. An information disclosure vulnerability exists in the Graphics component of Microsoft Windows, which arises from a program's failure to properly...
CVE-2017-11850
Microsoft Graphics Component in Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and 1709, Windows Server 2016 and Windows Server, version 1709 allows an attacker to log on to an affected system and run a specially crafted application due to improper handling...
CVE-2017-11850
Microsoft Graphics Component in Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and 1709, Windows Server 2016 and Windows Server, version 1709 allows an attacker to log on to an affected system and run a specially crafted application due to improper handling...
CVE-2017-11850
Microsoft Graphics Component in Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and 1709, Windows Server 2016 and Windows Server, version 1709 allows an attacker to log on to an affected system and run a specially crafted application due to improper handling...
CVE-2017-11850
CVE-2017-11850 affects the Microsoft Graphics Component in Windows variants listed in the CVE entry (Windows 8.1/RT 8.1, Windows Server 2012/2012 R2, Windows 10 releases 1511, 1607, 1703, 1709, Windows Server 2016, and Windows Server 1709). Root cause is improper handling of objects in memory, le...
Microsoft Windows Multiple Vulnerabilities (KB4048956)
This host is missing a critical security update according to Microsoft KB4048956 SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Microsoft Windows Multiple Vulnerabilities (KB4048957)
This host is missing a critical security update according to Microsoft KB4048957 SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
November 14, 2017—KB4048960 (Security-only update)
November 14, 2017—KB4048960 Security-only update Improvements and fixes This security update includes quality improvements. No new operating system features are being introduced in this update. Key changes include: Addressed issue where applications based on the Microsoft JET Database Engine...