Beschreibung
Multiple serious vulnerabilities were found in Microsoft Windows. Malicious users can exploit these vulnerabilities to cause denial of service, obtain sensitive information, gain privileges, execute arbitrary code.
Below is a complete list of vulnerabilities:
- A denial of service vulnerability in Windows can be exploited remotely via specially crafted application to cause denial of service.
- An information disclosure vulnerability in Windows Kernel can be exploited remotely via specially crafted application to obtain sensitive information.
- An elevation of privilege vulnerability in Win32k can be exploited remotely via specially crafted application to gain privileges.
- An elevation of privilege vulnerability in Win32k can be exploited remotely via specially crafted application to obtain sensitive information.
- An elevation of privilege vulnerability in Diagnostics Hub Standard Collector Service can be exploited to gain privileges.
- An information disclosure vulnerability in Win32k can be exploited remotely via specially crafted application to obtain sensitive information.
- An information disclosure vulnerability in Windows GDI can be exploited remotely via specially crafted document to obtain sensitive information.
- An elevation of privilege vulnerability in Windows Kernel can be exploited remotely via specially crafted application to gain privileges.
- An information disclosure vulnerability in Windows Kernel can be exploited remotely via specially crafted application to obtain sensitive information.
- An information disclosure vulnerability in DirectX can be exploited remotely via specially crafted application to obtain sensitive information.
- An information disclosure vulnerability in Windows Kernel can be exploited remotely via specially crafted application to obtain sensitive information.
- An information disclosure vulnerability in Remote Procedure Call runtime can be exploited remotely via specially crafted application to obtain sensitive information.
- An information disclosure vulnerability in Windows GDI can be exploited remotely via specially crafted document to obtain sensitive information.
- A denial of service vulnerability in Connected User Experiences and Telemetry Service can be exploited remotely via specially crafted application to cause denial of service.
- A cross-site-scripting (XSS) vulnerability Windows Azure Pack can be exploited remotely via specially crafted payload to execute arbitrary code.
- A remote code execution vulnerability in Microsoft Text-To-Speech can be exploited remotely to execute arbitrary code.
- A remote code execution vulnerability in Windows DNS server can be exploited to execute arbitrary code.
Ursprüngliche Informationshinweise
- CVE-2018-8622
- CVE-2018-8641
- CVE-2018-8639
- CVE-2018-8599
- CVE-2018-8637
- CVE-2018-8596
- CVE-2018-8611
- CVE-2018-8621
- CVE-2018-8638
- CVE-2018-8477
- CVE-2018-8514
- CVE-2018-8595
- CVE-2018-8612
- CVE-2018-8652
- CVE-2018-8634
- CVE-2018-8626
CVE Liste
- CVE-2018-8599 critical
- CVE-2018-8649 critical
- CVE-2018-8622 critical
- CVE-2018-8641 critical
- CVE-2018-8639 critical
- CVE-2018-8637 critical
- CVE-2018-8596 critical
- CVE-2018-8611 critical
- CVE-2018-8621 critical
- CVE-2018-8638 critical
- CVE-2018-8477 critical
- CVE-2018-8514 critical
- CVE-2018-8595 critical
- CVE-2018-8612 critical
- CVE-2018-8652 critical
- CVE-2018-8634 critical
- CVE-2018-8626 critical
KB Liste
- 4471329
- 4471323
- 4471324
- 4471327
- 4471321
- 4471332
- 4471320
- 4471322
- 4471319
- 4471326
- 4471330
- 4471328
- 4471318
- 4471325
- 4480788
Mehr erfahren
Informieren Sie sich über die Statistiken der in Ihrer Region verbreiteten Sicherheitslücken statistics.securelist.com
Sie haben einen Fehler in der Beschreibung der Schwachstelle gefunden? Mitteilen!