Kaspersky ID:
KLA10984
Дата обнаружения:
14/03/2017
Обновлено:
19/07/2024

Описание

Multiple serious vulnerabilities have been found in Microsoft Windows kernel. Malicious users can exploit these vulnerabilities to gain privileges.

Below is a complete list of vulnerabilities:

  1. An improper check of a buffer length (prior to copying memory to the buffer) can be exploited remotely to gain privileges;
  2. An incorrect permission enforcement done by Windows Kernel API can be exploited remotely via a specially designed application to gain privileges;
  3. An improper handling of objects in memory in Windows Transaction Manager can be exploited remotely via a specially designed application to gain privileges;
  4. An improper handling of registry objects in memory in Windows Kernel API can be exploited remotely via a specially designed application to gain privileges.

Technical details

Vulnerability (1) can be exploited only is malicious user has an access to the target system and have proper permissions to copy a file to a shared drive or folder.

Первичный источник обнаружения

Эксплуатация

Public exploits exist for this vulnerability.

Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.

Связанные продукты

Список CVE

  • CVE-2017-0102
    critical
  • CVE-2017-0103
    high
  • CVE-2017-0101
    critical
  • CVE-2017-0050
    critical

Список KB

Смотрите также

Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com

Нашли неточность в описании этой уязвимости? Дайте нам знать!
Kaspersky IT Security Calculator:
Оцените ваш профиль кибербезопасности
Узнать больше
Встречай новый Kaspersky!
Каждая минута твоей онлайн-жизни заслуживает топовой защиты.
Узнать больше
Confirm changes?
Your message has been sent successfully.