10 matches found
CVE-2017-0283
CVE-2017-0283 is described in the connected MSKB as a remote code execution vulnerability in Microsoft Office components that could be triggered by opening a specially crafted Office file. The MSKB describes a security update KB3191937 for Skype for Business 2015 (Lync 2013) that addresses CVE-20...
CVE-2017-0193
CVE-2017-0193 affects Hyper-V instruction emulation in Microsoft Windows, enabling a local attacker to escalate privileges inside a guest VM due to insufficient enforcement of privilege levels in Hypervisor Code Integrity. Affected scope includes Windows Server 2008 R2/2012, Windows 7/8.1, Window...
CVE-2017-0299
The CVE-2017-0299 entry describes a Windows kernel information disclosure vulnerability in the NT kernel affecting multiple Windows versions (Windows 7 SP1, Windows 8.1, Windows Server 2012/2016, Windows 10 various builds, and more). The issue allows an authenticated attacker to obtain informatio...
CVE-2017-0296
CVE-2017-0296 affects Windows platforms (Windows 7 SP1 to Windows Server 2016) with a privilege-escalation via tdx.sys due to a missing length check when copying memory. The affected component is tdx.sys; root cause is inadequate buffer length validation. Impact per description: privilege escalat...
CVE-2017-0300
Technical details for CVE-2017-0300 are not publicly available in the provided documents. Monitor for updates.
CVE-2017-0297
Technical details (affected products, root cause, impact, remediation) are not publicly available in the provided connected documents. Monitor for updates from official advisories.
CVE-2017-8468
CVE-2017-8468 is a Win32k Elevation of Privilege vulnerability in Microsoft Windows. Public exploits exist and the root cause is improper handling of objects in memory within the Windows kernel’s Win32k subsystem, enabling an attacker to run processes in an elevated context locally. Affected prod...
CVE-2017-0298
Technical details about CVE-2017-0298 are not publicly provided in the supplied documents. No specific affected products/versions or root cause are described here. Monitor official sources for updates.
CVE-2017-8474
Technical details about CVE-2017-8474 are not publicly provided in the supplied connected documents. Monitor EUVD entries for updates; no concrete affected products, root cause, impact, or remediation are stated in the available sources.
CVE-2017-8465
Technical details for CVE-2017-8465 are not publicly available in the provided documents. No specifics on affected products, root cause, or fixes are present here. Monitor for updates.