Kaspersky ID:
KLA11048
Detect Date:
06/13/2017
Updated:
01/22/2024

Description

Multiple serious vulnerabilities have been found in Microsoft Windows kernel. Malicious users can exploit these vulnerabilities to obtain sensitive information and gain privileges.

Below is a complete list of vulnerabilities:

  1. An improper handling of objects in memory can be exploited locally via a specially designed application to gain privileges;
  2. Multiple vulnerabilities related to an improper handling of memory addresses can be exploited locally via a specially designed application to obtain sensitive information;
  3. Multiple vulnerabilities related to an incorrect handling of objects in memory done by the Windows kernel-mode driver can be exploited locally via a specially designed application to gain privileges;
  4. Multiple vulnerabilities related to an improper initialization of objects in memory can be exploited locally via a specialy designed application to obtain sensitive information;
  5. An improper handling of objects in memory related to proper enforcement of VTLs (virtual trust levels) can be exploited locally via a specially designed application to gain privileges.

Technical details

Vulnerabilities (2) occur in case the Windows kernel fails to initialize a memory adress in a proper way and can cause security bypass called KASLR (Kernel Address Space Layout Randomization) bypass.

NB: Not every vulnerability already have CVSS rating so cumulative CVSS rating can be not representative.

Original advisories

Exploitation

Public exploits exist for this vulnerability.

Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.

Related products

CVE list

  • CVE-2017-8479
    warning
  • CVE-2017-0299
    warning
  • CVE-2017-8485
    warning
  • CVE-2017-8478
    warning
  • CVE-2017-8476
    warning
  • CVE-2017-8494
    high
  • CVE-2017-8480
    warning
  • CVE-2017-8489
    warning
  • CVE-2017-0300
    warning
  • CVE-2017-8491
    warning
  • CVE-2017-8477
    warning
  • CVE-2017-8462
    warning
  • CVE-2017-8482
    warning
  • CVE-2017-8492
    warning
  • CVE-2017-8490
    warning
  • CVE-2017-8484
    warning
  • CVE-2017-8481
    warning
  • CVE-2017-8468
    high
  • CVE-2017-8469
    warning
  • CVE-2017-8474
    warning
  • CVE-2017-8465
    high
  • CVE-2017-0297
    warning

KB list

Read more

Find out the statistics of the vulnerabilities spreading in your region on statistics.securelist.com

Found an inaccuracy in the description of this vulnerability? Let us know!
Kaspersky Next
Let’s go Next: redefine your business’s cybersecurity
Learn more
New Kaspersky!
Your digital life deserves complete protection!
Learn more
Confirm changes?
Your message has been sent successfully.