July 11, 2017—KB4025341 (Monthly Rollup)

July 11, 2017—KB4025341 Monthly Rollup Improvements and fixes This security update includes improvements and fixes that were a part of update KB4022168 released June 27, 2017 and resolves the following issues: Addressed issue called out in KB4022168 where Internet Explorer 11 may close unexpected...

Microsoft Windows Graphics Component CVE-2017-8556 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability. A local attacker can exploit this issue to execute arbitrary code in kernel mode with elevated privileges. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version...

Microsoft Windows Graphics Component CVE-2017-8573 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability. A local attacker can exploit this issue to execute arbitrary code in kernel mode with elevated privileges. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version...

Microsoft Graphics Component Information Disclosure (CVE-2017-0283)

An information disclosure vulnerability exists in Microsoft Graphics Component. The vulnerability is due to improper handling of objects in memory, allowing an attacker to retrieve information that could lead to an Address Space Layout Randomization ASLR bypass. An attacker could convince a user ...

CVE-2017-8576

The graphics component in Microsoft Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an authenticated attacker to run arbitrary code in kernel mode via a specially crafted application, aka "Microsoft Graphics Component Elevation of Privilege Vulnerability."...

CVE-2017-8575

The kernel in Microsoft Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an authenticated attacker to obtain information via a specially crafted application, aka "Microsoft Graphics Component Information Disclosure Vulnerability."...

Privilege escalation

The graphics component in Microsoft Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an authenticated attacker to run arbitrary code in kernel mode via a specially crafted application, aka "Microsoft Graphics Component Elevation of Privilege Vulnerability."...

CVE-2017-8575

The kernel in Microsoft Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an authenticated attacker to obtain information via a specially crafted application, aka "Microsoft Graphics Component Information Disclosure Vulnerability."...

CVE-2017-8576

CVE-2017-8576 affects the Windows Graphics Component in Windows 10 (Gold, 1511, 1607, 1703) and Windows Server 2016. An authenticated attacker can run arbitrary code in kernel mode by presenting a specially crafted application, enabling elevation of privilege. The issue is rooted in how the Windo...

June 13, 2017—KB4022719 (Monthly Rollup)

June 13, 2017—KB4022719 Monthly Rollup Improvements and fixes This security update includes improvements and fixes that were a part of update KB4019265 released May 16, 2017 and also resolves the following issues: Addressed issue where, after installing KB3164035, users cannot print enhanced...

June 13, 2017—KB4022718 (Security-only update)

June 13, 2017—KB4022718 Security-only update Improvements and fixes This security update includes quality improvements. No new operating system features are being introduced in this update. Key changes include: Addressed issue where, after installing KB3164035, users cannot print enhanced metafil...

Microsoft Windows Graphics Component Information Disclosure Vulnerability(CVE-2017-0289)

We have encountered a crash in the Windows Uniscribe user-mode library, in the USP10!otlValueRecord::adjustPos function, while trying to display text using a corrupted TTF font file: --- 470.4d4: Access violation - code c0000005 first chance First chance exceptions are reported before any excepti...

Microsoft Windows Graphics Component Information Disclosure Vulnerability(CVE-2017-0288)

We have encountered a crash in the Windows Uniscribe user-mode library, in the USP10!otlReverseChainingLookup::apply function, while trying to display text using a corrupted TTF font file: --- 678.6c8: Access violation - code c0000005 first chance First chance exceptions are reported before any...

Microsoft Windows Graphics Information Disclosure Vulnerability

Microsoft Windows is a series of operating systems released by Microsoft Corporation in the U.S. Graphics is one of the graphics components. An information disclosure vulnerability exists in the Windows Graphics component that does not properly initialize memory contents, which can be exploited b...

Microsoft Windows Graphics Elevation of Privilege Vulnerability

Microsoft Windows is a series of operating systems released by Microsoft Corporation in the U.S. Graphics is one of the graphics components. An elevation of privilege vulnerability exists in the Windows Graphics component that does not properly initialize memory contents, which can be exploited b...

Microsoft Graphics Component Information Disclosure Vulnerability

An information disclosure vulnerability exists when the Windows Graphics component improperly handles objects in memory. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user’s system. An authenticated attacker could exploit this...

KLA11841 Multiple vulnerabilities in Microsoft Windows

Multiple vulnerabilities were found in Microsoft Windows. Malicious users can exploit these vulnerabilities to gain privileges, obtain sensitive information. Below is a complete list of vulnerabilities: 1. An elevation of privilege vulnerability in DirectX can be exploited remotely via specially...

Microsoft Windows Graphics Component Information Disclosure Vulnerability (CNVD-2017-13001)

Microsoft Windows is a series of operating systems released by the American company Microsoft. An information disclosure vulnerability exists in Microsoft Windows. An attacker could exploit this vulnerability to obtain sensitive information...

Microsoft Windows Multiple Vulnerabilities (KB4022717)

This host is missing a critical security update according to Microsoft KB4022717 SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Microsoft Windows Multiple Vulnerabilities (KB4022722)

This host is missing a critical security update according to Microsoft KB4022722 SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...