CVE-2017-8720

Name of the Vulnerable Software and Affected Versions Microsoft Windows versions prior to the fixed version Microsoft Windows Server 2008 SP2 and R2 SP1 Windows 7 SP1 Windows 8.1 Windows Server 2012 Gold and R2 Windows RT 8.1 Windows 10 Gold, 1511, 1607, and 1703 Windows Server 2016

Description The issue is related to the Microsoft Windows graphics component, specifically the Win32k component, which fails to properly handle objects in memory. This allows an elevation of privilege when exploited. The vulnerability is associated with inadequate access control and can be exploited by a local attacker to execute code in kernel mode and elevate privileges using a specially crafted application. It is reported that this issue can affect the system.

Recommendations For Windows Server 2008 SP2 and R2 SP1, update to a newer version that includes the fix for this issue. For Windows 7 SP1, apply the recommended configuration changes to mitigate the risk of exploitation. For Windows 8.1, restrict access to the Win32k component to minimize the risk of exploitation. For Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016, update to a version that includes the security fix for this vulnerability. At the moment, there is no information about a newer version that contains a fix for this vulnerability on some systems, so ensure to follow general best practices for security.