CVE-2017-8669

Name of the Vulnerable Software and Affected Versions Microsoft browsers in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 R2, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016

Description The issue arises from Microsoft browsers improperly handling objects in memory while rendering content, which could allow an attacker to execute arbitrary code in the context of the current user. This is due to a memory corruption vulnerability. If the current user is logged on with administrative user rights, an attacker who successfully exploited the issue could take control of an affected system, enabling them to install programs, view, change, or delete data, or create new accounts with full user rights.

Recommendations For Microsoft Windows 7 SP1, consider applying the relevant security update to resolve the issue. For Windows Server 2008 R2 SP1, apply the security patch to fix the vulnerability. For Windows 8.1 and Windows RT 8.1, Windows Server 2012 R2, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016, update to the latest version that includes the security fix for this issue. As a temporary workaround, consider restricting access to sensitive data and limiting user privileges to minimize the risk of exploitation.