KLA10989
Information disclosure vulnerability in Microsoft XML Core Services
Updated: 04/12/2017
CVSS
?
4.3
Detect date
?
03/13/2017
Severity
?
Warning
Description

An improper object handling in memory was found in Microsoft XML CoreServices (MSXML). By exploiting this vulnerability malicious users can obtain sensitive information. This vulnerability can be exploited remotely via a specially designed website.

Affected products

Microsoft Windows Vista Service Pack 2
Microsoft Windows 7 Service Pack 1
Microsoft Windows 8.1
Microsoft Windows RT 8.1
Microsoft Windows 10
Microsoft Windows Server 2008 Service Pack 2
Microsoft Windows Server 2008 R2 Service Pack 1
Microsoft Windows Server 2012
Microsoft Windows Server 2012 R2

Solution

Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)

Original advisories

MS17-022

Impacts
?
OSI 
[?]
Related products
Windows RT
Microsoft Windows Server 2012
Microsoft Windows Server 2008
Microsoft Windows 7
Microsoft Windows 10
CVE-IDS
?

CVE-2017-0022

MS list
MS17-022
KB list

4010321