Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
symantecSymantec Security ResponseSMNTC-101102
HistoryOct 10, 2017 - 12:00 a.m.

Microsoft Windows Device Guard CVE-2017-11823 Local Security Bypass Vulnerability

2017-10-1000:00:00
Symantec Security Response
www.symantec.com
18

0.002 Low

EPSS

Percentile

62.4%

JSON

Description

Microsoft Windows is prone to a local security-bypass vulnerability. An attacker can exploit this issue to bypass certain security restrictions and perform unauthorized actions. This may aid in further attacks.

Technologies Affected

  • Microsoft Windows 10 Version 1607 for 32-bit Systems
  • Microsoft Windows 10 Version 1607 for x64-based Systems
  • Microsoft Windows 10 for 32-bit Systems
  • Microsoft Windows 10 for x64-based Systems
  • Microsoft Windows 10 version 1511 for 32-bit Systems
  • Microsoft Windows 10 version 1511 for x64-based Systems
  • Microsoft Windows 10 version 1703 for 32-bit Systems
  • Microsoft Windows 10 version 1703 for x64-based Systems
  • Microsoft Windows Server 2016

Recommendations

Configure webservers to serve only specific, defined file types.
To exploit this vulnerability, an attacker requires local access to an affected computer. Grant local access for trusted and accountable users only.

Updates are available. Please see the references or vendor advisory for more information.

Related

checkpoint_advisories 1
seebug 1
cve 1
mscve 1
prion 1
zdt 1
myhack58 1
kaspersky 1
nessus 4
mskb 4
openvas 4
trendmicroblog 1
talosblog 1
checkpoint_advisories
checkpoint_advisories
Microsoft Device Guard Security Feature Bypass (CVE-2017-11823)
2017-10-16 00:00:00
seebug
seebug
Microsoft Windows Device Guard Local Security Bypass Vulnerability(CVE-2017-11823)
2017-10-17 00:00:00
cve
cve
CVE-2017-11823
2017-10-13 13:29:00
mscve
mscve
Device Guard Code Integrity Policy Security Feature Bypass Vulnerability
2017-10-10 07:00:00
prion
prion
Security feature bypass
2017-10-13 13:29:00
zdt
zdt
Microsoft Windows 10 - WLDP/MSHTML CLSID UMCI Bypass Exploit
2017-10-18 00:00:00
myhack58
myhack58
Microsoft windows October release of the 62 flaws vulnerability bug patch, and repair of the National researchers submitted the 0-day flaw vulnerability bug-vulnerability warning-the black bar safety net
2017-10-12 00:00:00
kaspersky
kaspersky
KLA11111 Multiple vulnerabilities in Microsoft Windows
2017-10-10 00:00:00
nessus
nessus
KB4041689: Windows 10 Version 1511 October 2017 Cumulative Update (KRACK)
2017-10-10 00:00:00
KB4041691: Windows 10 Version 1607 and Windows Server 2016 October 2017 Cumulative Update (KRACK)
2017-10-10 00:00:00
KB4042895: Windows 10 October 2017 Cumulative Update (KRACK)
2017-11-03 00:00:00
mskb
mskb
October 10, 2017—KB4042895 (OS Build 10240.17643)
2017-11-14 08:00:00
October 10, 2017—KB4041691 (OS Build 14393.1770)
2017-10-16 07:00:00
October 10, 2017—KB4041689 (OS Build 10586.1176)
2017-10-16 07:00:00
openvas
openvas
Microsoft Windows Multiple Vulnerabilities (KB4041691)
2017-10-11 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB4042895)
2017-10-11 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB4041689)
2017-10-11 00:00:00
trendmicroblog
trendmicroblog
TippingPoint Threat Intelligence and Zero-Day Coverage – Week of October 9, 2017
2017-10-13 14:03:59
talosblog
talosblog
Microsoft Patch Tuesday - October 2017
2017-10-10 13:25:00

0.002 Low

EPSS

Percentile

62.4%

JSON
Related for SMNTC-101102
checkpoint_advisories1seebug1cve1mscve1prion1zdt1myhack581kaspersky1nessus4mskb4openvas4trendmicroblog1talosblog1