Дата обнаружения
|
11/11/2014 |
Уровень угрозы
|
Critical |
Описание
|
Multiple serious vulnerabilities have been found in Microsoft products. Malicious users can exploit these vulnerabilities to bypass security restrictions, cause denial of service gain privileges, execute arbitrary code or obtain sensitive information. Below is a complete list of vulnerabilities
|
Пораженные продукты
|
Windows XP Service pack 3 |
Решение
|
Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel) |
Первичный источник обнаружения
|
CVE-2014-1816 CVE-2014-6532 CVE-2014-0266 CVE-2014-4076 CVE-2014-6321 CVE-2014-6322 CVE-2014-6324 CVE-2014-1767 CVE-2014-4077 CVE-2014-4074 CVE-2014-1807 CVE-2013-5065 CVE-2014-0300 CVE-2014-0323 CVE-2014-4971 CVE-2014-0301 CVE-2014-0262 CVE-2014-0263 CVE-2014-4115 CVE-2014-4113 CVE-2014-0315 CVE-2014-0316 CVE-2014-0317 CVE-2014-0255 CVE-2014-0318 CVE-2014-4118 CVE-2014-6352 CVE-2014-6332 CVE-2014-0296 CVE-2014-0256 CVE-2014-1811 CVE-2014-0254 CVE-2014-1819 CVE-2014-6355 CVE-2014-2780 CVE-2014-2781 CVE-2014-1812 CVE-2014-4064 CVE-2014-6318 CVE-2014-1814 CVE-2014-4060 CVE-2014-1824 CVE-2014-6317 CVE-2014-4114 CVE-2014-4148 |
Оказываемое влияние
?
|
ACE
[?]
OSI
[?]
DoS
[?]
SB
[?]
WLF
[?]
PE
[?]
RLF
[?]
LoI
[?]
|
Связанные продукты
|
Microsoft Windows Vista Microsoft Windows Server 2012 Microsoft Windows 8 Microsoft Windows 7 Microsoft Windows Server 2008 Microsoft Windows Server 2003 Windows RT Microsoft Windows XP |
CVE-IDS
|
CVE-2014-18164.3Warning
CVE-2014-65329.3Critical CVE-2014-02667.1High CVE-2014-40767.2High CVE-2014-632110.0Critical CVE-2014-63224.3Warning CVE-2014-63249.0Critical CVE-2014-17677.2High CVE-2014-40779.3Critical CVE-2014-40746.8High CVE-2014-18077.2High CVE-2013-50657.2High CVE-2014-03007.2High CVE-2014-03236.6High CVE-2014-49717.2High CVE-2014-03019.3Critical CVE-2014-02627.2High CVE-2014-02639.3Critical CVE-2014-41157.2High CVE-2014-41137.2High CVE-2014-03156.9High CVE-2014-03167.5Critical CVE-2014-03175.4High CVE-2014-02555.0Critical CVE-2014-03187.2High CVE-2014-41189.3Critical CVE-2014-63529.3Critical CVE-2014-63329.3Critical CVE-2014-02965.1High CVE-2014-02565.0Critical CVE-2014-18115.0Critical CVE-2014-02547.8Critical CVE-2014-18197.2High CVE-2014-63555.0Critical CVE-2014-27806.9High CVE-2014-27817.6Critical CVE-2014-18126.8High CVE-2014-40644.9Warning CVE-2014-63185.0Critical CVE-2014-18147.2High CVE-2014-40606.8High CVE-2014-18249.3Critical CVE-2014-63177.1High CVE-2014-41149.3Critical CVE-2014-41489.3Critical |
Microsoft official advisories
|
Microsoft Security Update Guide |
KB list
|
2966631 |
Эксплуатация
|
The following public exploits exists for this vulnerability: https://www.exploit-db.com/exploits/37755 https://www.exploit-db.com/exploits/35936 https://www.exploit-db.com/exploits/39525 https://www.exploit-db.com/exploits/39446 https://www.exploit-db.com/exploits/37732 https://www.exploit-db.com/exploits/34982 https://www.exploit-db.com/exploits/34112 https://www.exploit-db.com/exploits/34131 https://www.exploit-db.com/exploits/39666 https://www.exploit-db.com/exploits/35101 https://www.exploit-db.com/exploits/37064 https://www.exploit-db.com/exploits/38512 https://www.exploit-db.com/exploits/37668 https://www.exploit-db.com/exploits/37800 https://www.exploit-db.com/exploits/38500 https://www.exploit-db.com/exploits/35055 https://www.exploit-db.com/exploits/35019 https://www.exploit-db.com/exploits/35020 Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details. |