Ruibo Liu

**Name of the Vulnerable Software and Affected Versions** Windows 7 Windows Server 2012 R2 Windows RT 8.1 Windows Server 2008 Windows Server 2019 Windows Server 2012 Windows 8.1 Windows Server 2016 Windows Server 2008 R2 Windows 10 Windows 10 Servers **Description** An information disclosure issue exists due to improper initialization of objects in memory by the "Kernel Remote Procedure Call Provider" driver. This allows attackers to obtain sensitive information and potentially affect the system. **Recommendations** For Windows 7, apply the necessary patch to fix the issue. For Windows Server 2012 R2, apply the necessary patch to fix the issue. For Windows RT 8.1, apply the necessary patch to fix the issue. For Windows Server 2008, apply the necessary patch to fix the issue. For Windows Server 2019, apply the necessary patch to fix the issue. For Windows Server 2012, apply the necessary patch to fix the issue. For Windows 8.1, apply the necessary patch to fix the issue. For Windows Server 2016, apply the necessary patch to fix the issue. For Windows Server 2008 R2, apply the necessary patch to fix the issue. For Windows 10, apply the necessary patch to fix the issue. For Windows 10 Servers, apply the necessary patch to fix the issue.

**Name of the Vulnerable Software and Affected Versions** Windows 7 Windows Server 2012 R2 Windows RT 8.1 Windows Server 2008 Windows Server 2019 Windows Server 2012 Windows 8.1 Windows Server 2016 Windows Server 2008 R2 Windows 10 Windows 10 Servers **Description** The issue is related to the Windows kernel improperly handling objects in memory, which can lead to information disclosure. This can be exploited by attackers to obtain sensitive information and affect the system. The vulnerability is associated with errors in access control. **Recommendations** For Windows 7, apply the recommended patch to fix the issue. For Windows Server 2012 R2, apply the recommended patch to fix the issue. For Windows RT 8.1, apply the recommended patch to fix the issue. For Windows Server 2008, apply the recommended patch to fix the issue. For Windows Server 2019, apply the recommended patch to fix the issue. For Windows Server 2012, apply the recommended patch to fix the issue. For Windows 8.1, apply the recommended patch to fix the issue. For Windows Server 2016, apply the recommended patch to fix the issue. For Windows Server 2008 R2, apply the recommended patch to fix the issue. For Windows 10, apply the recommended patch to fix the issue. For Windows 10 Servers, apply the recommended patch to fix the issue. As a temporary workaround, consider restricting access to sensitive information until a patch is available.

**Name of the Vulnerable Software and Affected Versions** Windows 7 Windows Server 2012 R2 Windows RT 8.1 Windows Server 2008 Windows Server 2019 Windows Server 2012 Windows 8.1 Windows Server 2016 Windows Server 2008 R2 Windows 10 Windows 10 Servers **Description** The issue is related to DirectX improperly handling objects in memory, which can lead to information disclosure. An attacker could exploit this to obtain sensitive information using a specially crafted application. **Recommendations** For Windows 7, consider applying security updates or patches to resolve the issue. For Windows Server 2012 R2, apply the latest security updates to fix the problem. For Windows RT 8.1, install the latest available patches to mitigate the risk. For Windows Server 2008, update to the latest service pack and apply security fixes. For Windows Server 2019, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Server 2008 R2, Windows 10, and Windows 10 Servers, ensure the latest security updates are installed to address the issue. As a temporary workaround, consider restricting access to sensitive information until a patch is available.

**Name of the Vulnerable Software and Affected Versions** Windows versions prior to the fixed version Windows 7 Windows Server 2012 R2 Windows RT 8.1 Windows Server 2008 Windows Server 2012 Windows 8.1 Windows Server 2016 Windows Server 2008 R2 Windows 10 Windows 10 Servers **Description** An information disclosure issue exists due to the Windows bowser.sys kernel-mode driver's failure to properly handle objects in memory. This could allow an attacker to access the contents of system memory, potentially obtaining sensitive information and affecting the system. **Recommendations** For Windows 7, update to a newer version that contains a fix for this issue. For Windows Server 2012 R2, update to a newer version that contains a fix for this issue. For Windows RT 8.1, update to a newer version that contains a fix for this issue. For Windows Server 2008, update to a newer version that contains a fix for this issue. For Windows Server 2012, update to a newer version that contains a fix for this issue. For Windows 8.1, update to a newer version that contains a fix for this issue. For Windows Server 2016, update to a newer version that contains a fix for this issue. For Windows Server 2008 R2, update to a newer version that contains a fix for this issue. For Windows 10, update to a newer version that contains a fix for this issue. For Windows 10 Servers, update to a newer version that contains a fix for this issue. As a temporary workaround, consider restricting access to the bowser.sys kernel-mode driver until a patch is available.