CVE-2018-8404

Name of the Vulnerable Software and Affected Versions Windows 7 Windows Server 2012 R2 Windows Server 2012 Windows 8.1 Windows Server 2016 Windows Server 2008 R2 Windows 10 Windows 10 Servers

Description The issue is caused by a buffer overflow in the Win32k component of Windows operating systems, which can be exploited to elevate privileges and gain full control over the system using a specially crafted application. This is due to the Win32k component's failure to properly handle objects in memory.

Recommendations For Windows 7, apply the patch provided by Microsoft to fix the issue. For Windows Server 2012 R2, apply the patch provided by Microsoft to fix the issue. For Windows Server 2012, apply the patch provided by Microsoft to fix the issue. For Windows 8.1, apply the patch provided by Microsoft to fix the issue. For Windows Server 2016, apply the patch provided by Microsoft to fix the issue. For Windows Server 2008 R2, apply the patch provided by Microsoft to fix the issue. For Windows 10, apply the patch provided by Microsoft to fix the issue. For Windows 10 Servers, apply the patch provided by Microsoft to fix the issue. As a temporary workaround, consider restricting access to the NtGdiClearBitmapAttributes function until a patch is available.