KLA10989
Information disclosure vulnerability in Microsoft XML Core Services

Updated: 06/03/2020

Detect date ?	03/14/2017
Severity ?	Warning
Description	An improper object handling in memory was found in Microsoft XML CoreServices (MSXML). By exploiting this vulnerability malicious users can obtain sensitive information. This vulnerability can be exploited remotely via a specially designed website.
Affected products	Microsoft Windows Vista Service Pack 2 Microsoft Windows 7 Service Pack 1 Microsoft Windows 8.1 Microsoft Windows RT 8.1 Microsoft Windows 10 Microsoft Windows Server 2008 Service Pack 2 Microsoft Windows Server 2008 R2 Service Pack 1 Microsoft Windows Server 2012 Microsoft Windows Server 2012 R2
Solution	Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)
Original advisories	MS17-022 CVE-2017-0022
Impacts ?	OSI [?]
Related products	Microsoft Windows Server 2012 Microsoft Windows 7 Microsoft Windows Server 2008 Windows RT Microsoft Windows 10
CVE-IDS ?	CVE-2017-00224.3Warning
Microsoft official advisories	Microsoft Security Update Guide
KB list	4012217 4012215 4012216 4012606 4013198 4013429 4012212 4012214 4012213 4010321 3216916
	Find out the statistics of the vulnerabilities spreading in your region

KLA10989Information disclosure vulnerability in Microsoft XML Core Services