PT-2017-18463 · Microsoft · Windows Server 2008 R2 Sp1+7
Published
2017-08-08
·
Updated
2017-08-15
·
CVE-2017-8668
CVSS v3.1
5.5
Medium
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Microsoft Windows 7 SP1
Microsoft Windows Server 2008 SP2
Microsoft Windows Server 2008 R2 SP1
Microsoft Windows 8.1
Microsoft Windows RT 8.1
Microsoft Windows Server 2012
Microsoft Windows Server 2012 R2
Description
The issue allows an attacker to run a specially crafted application and obtain kernel information. This can enable attackers to obtain sensitive information and affect the system.
Recommendations
For Microsoft Windows 7 SP1, update to a version that includes the fix for this issue.
For Microsoft Windows Server 2008 SP2, update to a version that includes the fix for this issue.
For Microsoft Windows Server 2008 R2 SP1, update to a version that includes the fix for this issue.
For Microsoft Windows 8.1, update to a version that includes the fix for this issue.
For Microsoft Windows RT 8.1, update to a version that includes the fix for this issue.
For Microsoft Windows Server 2012, update to a version that includes the fix for this issue.
For Microsoft Windows Server 2012 R2, update to a version that includes the fix for this issue.
Fix
Information Disclosure
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Windows
Windows 7 Sp1
Windows 8.1
Windows Rt 8.1
Windows Server 2008 R2 Sp1
Windows Server 2008 R2
Windows Server 2012
Windows Server 2012 R2