4 matches found
Information disclosure
An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka "Windows GDI Information Disclosure Vulnerability." This affects Windows Server 2008, Windows 7, Windows Server 2008 R2. This CVE ID is unique from CVE-2018-8394,...
CVE-2018-8398
The connected CPAI-2019-0228 advisory describes a related information-disclosure vulnerability in the Microsoft Graphics Component due to improper in-memory handling of JPEG decoding. While CVE-2018-8398 (Windows GDI Information Disclosure) is the primary CVE here, the document confirms a memory-...
KLA11789 Multiple vulnerabilities in Microsoft Products (ESU)
Multiple vulnerabilities were found in Microsoft Products Eextended Support Update. Malicious users can exploit these vulnerabilities to execute arbitrary code, gain privileges, obtain sensitive information. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability in...
Security Updates for Windows Server 2008 (August 2018) (Foreshadow)
The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities : - Errors exist related to microprocessors utilizing speculative execution and L1 data cache that could allow information disclosure. CVE-2018-3615, CVE-2018-3620, CVE-2018-3646 - A remote...