KLA10989
Information disclosure vulnerability in Microsoft XML Core Services
Обновлено: 17/06/2019
Дата обнаружения
14/03/2017
Уровень угрозы
Warning
Описание

An improper object handling in memory was found in Microsoft XML CoreServices (MSXML). By exploiting this vulnerability malicious users can obtain sensitive information. This vulnerability can be exploited remotely via a specially designed website.

Пораженные продукты

Microsoft Windows Vista Service Pack 2
Microsoft Windows 7 Service Pack 1
Microsoft Windows 8.1
Microsoft Windows RT 8.1
Microsoft Windows 10
Microsoft Windows Server 2008 Service Pack 2
Microsoft Windows Server 2008 R2 Service Pack 1
Microsoft Windows Server 2012
Microsoft Windows Server 2012 R2

Решение

Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)

Первичный источник обнаружения
MS17-022
CVE-2017-0022
Оказываемое влияние
?
ACE 
[?]

OSI 
[?]

DoS 
[?]

SB 
[?]

PE 
[?]
Связанные продукты
Microsoft Windows Server 2012
Microsoft Windows 7
Microsoft Windows Server 2008
Windows RT
Microsoft Windows 10
CVE-IDS
CVE-2017-00224.3Warning
Microsoft official advisories
Microsoft Security Update Guide
KB list

4012217
4012215
4012216
4012606
4013198
4013429
4012212
4012214
4012213
4010321
3216916