Kaspersky ID:
KLA62389
Дата обнаружения:
12/12/2023
Обновлено:
14/12/2023

Описание

Multiple vulnerabilities were found in Microsoft Products (Extended Security Update). Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information, gain privileges, overwrite arbitrary files, cause denial of service, spoof user interface.

Below is a complete list of vulnerabilities:

  1. A remote code execution vulnerability in Internet Connection Sharing (ICS) can be exploited remotely to execute arbitrary code.
  2. An information disclosure vulnerability in DHCP Server Service can be exploited remotely to obtain sensitive information.
  3. A remote code execution vulnerability in Microsoft WDAC OLE DB provider for SQL Server can be exploited remotely to execute arbitrary code.
  4. An elevation of privilege vulnerability in Windows Telephony Server can be exploited remotely to gain privileges.
  5. A division-by-zero error on some AMD processors can potentially return speculative data resulting in loss of confidentiality.
  6. A remote code execution vulnerability in Microsoft ODBC Driver can be exploited remotely to execute arbitrary code.
  7. A denial of service vulnerability in Internet Connection Sharing (ICS) can be exploited remotely to cause denial of service.
  8. An elevation of privilege vulnerability in Win32k can be exploited remotely to gain privileges.
  9. A remote code execution vulnerability in Windows MSHTML Platform can be exploited remotely to execute arbitrary code.
  10. An elevation of privilege vulnerability in Windows Ancillary Function Driver for WinSock can be exploited remotely to gain privileges.
  11. A spoofing vulnerability in Windows DPAPI (Data Protection Application Programming Interface) can be exploited remotely to spoof user interface.
  12. A denial of service vulnerability in DHCP Server Service can be exploited remotely to cause denial of service.
  13. An elevation of privilege vulnerability in Windows Kernel can be exploited remotely to gain privileges.
  14. A remote code execution vulnerability in Microsoft USBHUB 3.0 Device Driver can be exploited remotely to execute arbitrary code.
  15. A remote code execution vulnerability in Windows Media can be exploited remotely to execute arbitrary code.
  16. A spoofing vulnerability in Windows DNS can be exploited remotely to spoof user interface.

Первичный источник обнаружения

Эксплуатация

Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.

Связанные продукты

Список CVE

  • CVE-2023-20588
    warning
  • CVE-2023-35630
    warning
  • CVE-2023-35641
    warning
  • CVE-2023-35643
    warning
  • CVE-2023-36006
    warning
  • CVE-2023-36005
    warning
  • CVE-2023-35639
    warning
  • CVE-2023-35642
    warning
  • CVE-2023-36011
    warning
  • CVE-2023-35628
    warning
  • CVE-2023-36004
    warning
  • CVE-2023-35638
    warning
  • CVE-2023-36012
    warning
  • CVE-2023-35633
    warning
  • CVE-2023-35622
    warning
  • CVE-2023-35629
    warning
  • CVE-2023-21740
    warning
  • CVE-2023-35632
    warning

Список KB

Смотрите также

Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com

Нашли неточность в описании этой уязвимости? Дайте нам знать!
Kaspersky IT Security Calculator:
Оцените ваш профиль кибербезопасности
Узнать больше
Встречай новый Kaspersky!
Каждая минута твоей онлайн-жизни заслуживает топовой защиты.
Узнать больше
Confirm changes?
Your message has been sent successfully.