KLA10577
Arbitrary code execution vulnerabilities in Windows Journal

Обновлено: 03/06/2020
Дата обнаружения
12/05/2015
Уровень угрозы
Critical
Описание

An unspecified vulnerabilities were found in Windows products. By exploiting these vulnerabilities malicious users can execute arbitrary code. These vulnerabilities can be exploited remotely via a specially designed Journal file.

Пораженные продукты

Windows Vista x86, x64 Service Pack 2
Windows Server 2008 x86, x64 Service Pack 2
Windows 7 x86, x64 Service Pack 1
Windows Server 2008 R2 x64 Service Pack 1
Windows 8, 8.1 x86, x64
Windows Server 2012
Windows Server 2012 R2
Windows RT
Windows RT 8.1

Решение

Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)

Первичный источник обнаружения
Microsoft Advisory
CVE-2015-1697
CVE-2015-1696
CVE-2015-1675
CVE-2015-1695
CVE-2015-1699
CVE-2015-1698
Оказываемое влияние
?
ACE 
[?]
Связанные продукты
Microsoft Windows Vista
Microsoft Windows Server 2012
Microsoft Windows 8
Microsoft Windows 7
Microsoft Windows Server 2008
Windows RT
CVE-IDS
CVE-2015-16979.3Critical
CVE-2015-16969.3Critical
CVE-2015-16759.3Critical
CVE-2015-16959.3Critical
CVE-2015-16999.3Critical
CVE-2015-16989.3Critical