Multiple vulnerabilities in Microsoft Developer Tools

Описание

Multiple vulnerabilities were found in Microsoft Developer Tools. Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information.

Below is a complete list of vulnerabilities:

1. A remote code execution vulnerability in Windows Graphics Component can be exploited remotely via specially crafted website to execute arbitrary code.
2. An information disclosure vulnerability in Microsoft XML Core Services can be exploited remotely to obtain sensitive information.

Первичный источник обнаружения

• CVE-2017-0108
  CVE-2017-0022
  

Эксплуатация

Public exploits exist for this vulnerability.

Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.

Связанные продукты

• Microsoft-Silverlight
• Microsoft-XML-Core-Services

Список CVE

• CVE-2017-0022
  warning
• CVE-2017-0108
  critical

Список KB

• 4012217
• 4012215
• 4012216
• 4012606
• 4013198
• 4013429
• 4012212
• 4012214
• 4012213
• 4013867
• 3216916

Смотрите также

Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com