5 matches found
Microsoft Windows Graphics Component Information Disclosure (CVE-2017-11816)
An information disclosure vulnerability exists in the GDI component of Microsoft Windows. The vulnerability is due to an out-of-bounds read error when processing a WMF file. A remote attacker can exploit this vulnerability by enticing a victim to open a maliciously crafted web page or document...
CVE-2017-11816
The Microsoft Windows Graphics Device Interface GDI on Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allows an information disclosure vulnerability in the wa...
CVE-2017-11816
CVE-2017-11816 is an information disclosure flaw in the Microsoft Windows GDI component. The connected advisory notes a WMF-file processing out-of-bounds read as the root cause, enabling a remote attacker to cause information leakage by convincing a user to open a specially crafted web page or do...
Windows 2008 October 2017 Multiple Security Updates (KRACK)
The remote Windows host is missing multiple security updates released on 2017/10/10. It is, therefore, affected by multiple vulnerabilities : - A buffer overflow vulnerability exists in the Microsoft JET Database Engine that could allow remote code execution on an affected system. An attacker who...
Windows Server 2012 October 2017 Security Updates (KRACK)
The remote Windows host is missing security update 4041679 or cumulative update 4041690. It is, therefore, affected by multiple vulnerabilities : - A remote code execution vulnerability exists when Internet Explorer improperly accesses objects in memory via the Microsoft Windows Text Services...