Kaspersky Threats

KLA11061
Information disclosure vulnerability in Microsoft Windows

Updated: 01/24/2020

Detect date ?	04/11/2017
Severity ?	Warning
Description	An incorrect handling of objects in memory has been found in libjpeg image-processing library functionality used in Microsoft Windows. Malicious users can exploit this vulnerability to obtain sensitive information. This vulnerability can be exploited remotely by convincing a user to run a specially designed application.
Affected products	Mono Framework Version 5.0.0.48 Microsoft Windows Vista Service Pack 2 Microsoft Windows 7 Service Pack 1 Microsoft Windows 8.1 Microsoft Windows RT 8.1 Microsoft Windows 10 Microsoft Windows Server 2008 R2 Service Pack 1 Microsoft Windows Server 2008 Service Pack 2 Microsoft Windows Server 2012 Microsoft Windows Server 2012 R2 Microsoft Windows Server 2016 Microsoft Silverlight 5 Mono Framework Version 4.8.1.0
Solution	Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)
Original advisories	CVE-2013-6629
Impacts ?	OSI [?] DoS [?] OAF [?] LoI [?]
Related products	Microsoft Silverlight Microsoft Windows Microsoft Windows Server Microsoft Windows Vista Microsoft Windows Server 2012 Microsoft Windows 8 Microsoft Windows 7 Microsoft Windows Server 2008 Windows RT Microsoft Windows 10
CVE-IDS ?	CVE-2013-66290.0Unknown
Microsoft official advisories	Microsoft Security Update Guide
KB list	4015221 4015219 4015217 4015583 4019460 4017094