Kaspersky Threats — KLA10978

KLA10978
Multiple vulnerabilities in Windows Uniscribe

Обновлено: 18/06/2020

Дата обнаружения	14/03/2017
Уровень угрозы	Critical
Описание	Multiple serious vulnerabilities have been found in Windows Uniscribe. Malicious users can exploit these vulnerabilities to execute arbitrary code or obtain sensitive information. Below is a complete list of vulnerabilities: An improper handling of objects in memory can be exploted remotely via a specially designed website or a specially designed document file to execute arbitrary code; An improper disclosure of the contents of Windows Uniscribe memory can be exploited remotely via a specially designed document or by convincing a user to visit an untrusted webpage to obtain sensitive information.
Пораженные продукты	Microsoft Windows Vista Service Pack 2 Microsoft Windows 7 Service Pack 1 Microsoft Windows 8.1 Microsoft Windows RT 8.1 Microsoft Windows 10 Microsoft Windows Server 2008 Service Pack 2 Microsoft Windows Server 2008 R2 Service Pack 1 Microsoft Windows Server 2012 Microsoft Windows Server 2012 R2
Решение	Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)
Первичный источник обнаружения	MS17-011 CVE-2017-0072 CVE-2017-0083 CVE-2017-0084 CVE-2017-0085 CVE-2017-0086 CVE-2017-0087 CVE-2017-0088 CVE-2017-0089 CVE-2017-0090 CVE-2017-0091 CVE-2017-0092 CVE-2017-0111 CVE-2017-0112 CVE-2017-0113 CVE-2017-0114 CVE-2017-0115 CVE-2017-0116 CVE-2017-0117 CVE-2017-0118 CVE-2017-0119 CVE-2017-0120 CVE-2017-0121 CVE-2017-0122 CVE-2017-0123 CVE-2017-0124 CVE-2017-0125 CVE-2017-0126 CVE-2017-0127 CVE-2017-0128
Оказываемое влияние ?	ACE [?] OSI [?] DoS [?] SB [?] PE [?]
Связанные продукты	Microsoft Windows Vista Microsoft Windows Server 2012 Microsoft Windows 7 Microsoft Windows Server 2008 Windows RT Microsoft Windows 10
CVE-IDS	CVE-2017-00729.3Critical CVE-2017-00839.3Critical CVE-2017-00849.3Critical CVE-2017-00854.3Warning CVE-2017-00869.3Critical CVE-2017-00879.3Critical CVE-2017-00889.3Critical CVE-2017-00899.3Critical CVE-2017-00909.3Critical CVE-2017-00914.3Warning CVE-2017-00924.3Warning CVE-2017-01114.3Warning CVE-2017-01124.3Warning CVE-2017-01134.3Warning CVE-2017-01144.3Warning CVE-2017-01154.3Warning CVE-2017-01164.3Warning CVE-2017-01174.3Warning CVE-2017-01184.3Warning CVE-2017-01194.3Warning CVE-2017-01204.3Warning CVE-2017-01214.3Warning CVE-2017-01224.3Warning CVE-2017-01234.3Warning CVE-2017-01244.3Warning CVE-2017-01254.3Warning CVE-2017-01264.3Warning CVE-2017-01274.3Warning CVE-2017-01284.3Warning
Microsoft official advisories	Microsoft Security Update Guide
KB list	4012217 4012215 4012216 4012606 4013198 4013429 4012212 4012214 4012213 4013076 4012583
Эксплуатация	The following public exploits exists for this vulnerability: https://www.exploit-db.com/exploits/41654 https://www.exploit-db.com/exploits/41655 https://www.exploit-db.com/exploits/41648 https://www.exploit-db.com/exploits/41646 https://www.exploit-db.com/exploits/41649 https://www.exploit-db.com/exploits/41650 https://www.exploit-db.com/exploits/41651 https://www.exploit-db.com/exploits/41652 https://www.exploit-db.com/exploits/41653 https://www.exploit-db.com/exploits/41655 https://www.exploit-db.com/exploits/41655 https://www.exploit-db.com/exploits/41655 https://www.exploit-db.com/exploits/41655 https://www.exploit-db.com/exploits/41655 https://www.exploit-db.com/exploits/41655 https://www.exploit-db.com/exploits/41655 https://www.exploit-db.com/exploits/41655 https://www.exploit-db.com/exploits/41655 https://www.exploit-db.com/exploits/41655 https://www.exploit-db.com/exploits/41655 https://www.exploit-db.com/exploits/41655 https://www.exploit-db.com/exploits/41655 https://www.exploit-db.com/exploits/41655 https://www.exploit-db.com/exploits/41655 https://www.exploit-db.com/exploits/41655 https://www.exploit-db.com/exploits/41655 https://www.exploit-db.com/exploits/41655 https://www.exploit-db.com/exploits/41655 https://www.exploit-db.com/exploits/41655 Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.