PT-2017-12263 · Microsoft · Windows Server+3
Published
2017-11-14
·
Updated
2022-05-23
·
CVE-2017-11830
CVSS v3.1
5.3
Medium
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L |
Name of the Vulnerable Software and Affected Versions
Windows 10 versions Gold, 1511, 1607, 1703, and 1709
Windows Server 2016
Windows Server, version 1709
Description
A security feature bypass issue allows an attacker to make an unsigned file appear to be signed. This could potentially affect the system.
Recommendations
For Windows 10 versions Gold, 1511, 1607, 1703, and 1709, update to a version that includes the security fix for this issue.
For Windows Server 2016 and Windows Server, version 1709, apply the necessary security updates to resolve the security feature bypass vulnerability.
As a temporary workaround, consider restricting the execution of unsigned files until a patch is available.
Exploit
Fix
Time Of Check To Time Of Use
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Windows
Windows 10
Windows Server
Windows Server 2016