Дата обнаружения
|
13/06/2017 |
Уровень угрозы
|
Critical |
Описание
|
Multiple vulnerabilities were found in Microsoft Products (Extended Support Update). Malicious users can exploit these vulnerabilities to obtain sensitive information, execute arbitrary code, gain privileges. Below is a complete list of vulnerabilities:
|
Эксплуатация
|
The following public exploits exists for this vulnerability: https://www.exploit-db.com/exploits/42235 https://www.exploit-db.com/exploits/42232 https://www.exploit-db.com/exploits/42219 https://www.exploit-db.com/exploits/42228 https://www.exploit-db.com/exploits/42231 https://www.exploit-db.com/exploits/42212 https://www.exploit-db.com/exploits/42229 https://www.exploit-db.com/exploits/42223 https://www.exploit-db.com/exploits/42429 https://www.exploit-db.com/exploits/42382 https://github.com/Elm0D/CVE-2017-8464 https://github.com/3gstudent/CVE-2017-8464-EXP https://github.com/doudouhala/CVE-2017-8464-exp-generator https://github.com/X-Vector/usbhijacking https://github.com/xssfile/CVE-2017-8464-EXP https://github.com/TrG-1999/DetectPacket-CVE-2017-8464 https://www.exploit-db.com/exploits/42233 https://www.exploit-db.com/exploits/42213 https://www.exploit-db.com/exploits/42236 https://www.exploit-db.com/exploits/42244 https://www.exploit-db.com/exploits/42215 https://www.exploit-db.com/exploits/42224 https://www.exploit-db.com/exploits/42230 https://www.exploit-db.com/exploits/42218 https://www.exploit-db.com/exploits/42225 https://www.exploit-db.com/exploits/42220 https://www.exploit-db.com/exploits/42216 https://www.exploit-db.com/exploits/42214 https://www.exploit-db.com/exploits/42243 https://www.exploit-db.com/exploits/42234 https://www.exploit-db.com/exploits/42210 https://www.exploit-db.com/exploits/42242 https://www.exploit-db.com/exploits/42237 https://www.exploit-db.com/exploits/42217 https://www.exploit-db.com/exploits/42226 https://www.exploit-db.com/exploits/42238 https://www.exploit-db.com/exploits/42239 https://www.exploit-db.com/exploits/42241 https://www.exploit-db.com/exploits/42240 Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details. |
Пораженные продукты
|
Microsoft Silverlight 5 when installed on Microsoft Windows (x64-based) |
Решение
|
Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel) |
Первичный источник обнаружения
|
CVE-2017-8485 CVE-2017-8484 CVE-2017-8481 CVE-2017-8480 CVE-2017-8469 CVE-2017-8482 CVE-2017-8464 CVE-2017-8544 CVE-2017-8462 CVE-2017-0289 CVE-2017-0288 CVE-2017-8528 CVE-2017-8529 CVE-2017-0283 CVE-2017-0282 CVE-2017-0287 CVE-2017-0286 CVE-2017-0285 CVE-2017-0284 CVE-2017-8483 CVE-2017-8517 CVE-2017-0193 CVE-2017-8471 CVE-2017-0298 CVE-2017-8478 CVE-2017-8479 CVE-2017-8543 CVE-2017-8492 CVE-2017-8490 CVE-2017-8491 CVE-2017-8470 CVE-2017-8489 CVE-2017-8472 CVE-2017-8473 CVE-2017-8553 CVE-2017-8475 CVE-2017-8476 CVE-2017-8488 CVE-2017-0294 CVE-2017-0296 CVE-2017-0297 CVE-2017-8534 CVE-2017-8477 CVE-2017-8531 CVE-2017-0299 CVE-2017-8533 CVE-2017-8532 CVE-2017-8527 CVE-2017-8519 CVE-2017-0260 CVE-2017-0300 |
Оказываемое влияние
?
|
ACE
[?]
OSI
[?]
SB
[?]
PE
[?]
|
Связанные продукты
|
Microsoft Internet Explorer Microsoft Silverlight Microsoft Lync Microsoft Office Microsoft Lync 2010 Attendee Microsoft Word Microsoft Windows Microsoft Windows Server Microsoft Windows Server 2012 Microsoft Windows 8 Microsoft Windows 7 Microsoft Windows Server 2008 Windows RT Microsoft Windows 10 Microsoft Edge |
CVE-IDS
|
CVE-2017-02841.9Warning CVE-2017-84791.9Warning CVE-2017-02991.9Warning CVE-2017-84851.9Warning CVE-2017-01934.6Warning CVE-2017-84781.9Warning CVE-2017-84881.9Warning CVE-2017-85289.3Critical CVE-2017-84751.9Warning CVE-2017-84761.9Warning CVE-2017-84701.9Warning CVE-2017-84649.3Critical CVE-2017-84801.9Warning CVE-2017-84891.9Warning CVE-2017-02851.9Warning CVE-2017-03001.9Warning CVE-2017-85344.3Warning CVE-2017-84911.9Warning CVE-2017-84711.9Warning CVE-2017-84771.9Warning CVE-2017-84621.9Warning CVE-2017-02949.3Critical CVE-2017-84721.9Warning CVE-2017-84821.9Warning CVE-2017-84921.9Warning CVE-2017-84901.9Warning CVE-2017-84831.9Warning CVE-2017-02839.3Critical CVE-2017-84841.9Warning CVE-2017-84811.9Warning CVE-2017-02821.9Warning CVE-2017-02609.3Critical CVE-2017-84692.1Warning CVE-2017-02971.9Warning CVE-2017-02967.2High CVE-2017-84731.9Warning CVE-2017-85177.6Critical CVE-2017-85197.6Critical CVE-2017-85294.3Warning CVE-2017-02861.9Warning CVE-2017-02871.9Warning CVE-2017-02881.9Warning CVE-2017-02891.9Warning CVE-2017-85279.3Critical CVE-2017-85314.3Warning CVE-2017-85324.3Warning CVE-2017-85334.3Warning CVE-2017-02984.4Warning CVE-2017-85442.1Warning CVE-2017-85531.9Warning |