Lucene search
K

4 matches found

Check Point Advisories
Check Point Advisories
added 2017/07/19 12:0 a.m.4 views

Microsoft Windows System Information Console XXE Injection Information Disclosure (CVE-2017-8557)

An XML external entity XXE injection vulnerability exist in the System Information Console component of Microsoft Windows. The vulnerability is due to a failure to properly handle external entity references in XML files. A remote attacker could exploit this vulnerability by enticing a target user...

2.1CVSS7.5AI score0.01541EPSS
Exploits0
OpenVAS
OpenVAS
added 2017/07/12 12:0 a.m.109 views

Microsoft Windows Server 2012 Multiple Vulnerabilities (KB4025343)

This host is missing a critical security update according to Microsoft KB4025343 SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS6.5AI score0.26161EPSS
Exploits5References23
CVE
CVE
added 2017/07/11 9:0 p.m.94 views

CVE-2017-8557

CVE-2017-8557 is a information- disclosure (XXE) vulnerability in Microsoft Windows System Information Console where XML input containing an external entity reference can cause reading arbitrary files. The issue affects Windows versions listed in the CVE description. Exploitation details are not ...

5.5CVSS5.5AI score0.01541EPSS
Exploits0References4Affected Software7
Symantec
Symantec
added 2017/07/11 12:0 a.m.29 views

Microsoft Windows CVE-2017-8557 Local XML External Entity Information Disclosure Vulnerability

Description Microsoft Windows is prone to a local information-disclosure vulnerability. A local attacker can leverage this issue to disclose sensitive information that may aid in further attacks. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Versi...

2.1CVSS1.3AI score0.01541EPSS
Exploits0Affected Software3
Rows per page
Query Builder