Дата обнаружения
|
03/01/2018 |
Уровень угрозы
|
Critical |
Описание
|
Multiple vulnerabilities were found in Microsoft Products (Extended Support Update). Malicious users can exploit these vulnerabilities to obtain sensitive information, execute arbitrary code, gain privileges. Below is a complete list of vulnerabilities:
|
Пораженные продукты
|
ChakraCore |
Решение
|
Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel) |
Первичный источник обнаружения
|
CVE-2018-0750 CVE-2018-0762 CVE-2018-0747 CVE-2018-0788 CVE-2018-0754 CVE-2018-0741 CVE-2018-0772 CVE-2018-0749 CVE-2018-0748 ADV180002 |
Оказываемое влияние
?
|
ACE
[?]
OSI
[?]
PE
[?]
|
Связанные продукты
|
Microsoft Internet Explorer Microsoft Windows Microsoft Windows Server Microsoft Windows Server 2012 Microsoft Windows 8 Microsoft Windows 7 Microsoft Windows Server 2008 Microsoft Windows 10 Microsoft Edge ChakraCore |
CVE-IDS
|
CVE-2018-07410.0Unknown
CVE-2018-07470.0Unknown CVE-2018-07480.0Unknown CVE-2018-07490.0Unknown CVE-2018-07500.0Unknown CVE-2018-07540.0Unknown CVE-2018-07880.0Unknown CVE-2018-07620.0Unknown CVE-2018-07720.0Unknown |
Microsoft official advisories
|
Microsoft Security Update Guide |
KB list
|
4056894 |
Эксплуатация
|
The following public exploits exists for this vulnerability: https://www.exploit-db.com/exploits/43514 https://www.exploit-db.com/exploits/43517 Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details. |