CVE-2017-8677

N/A

Beschreibung

The Windows GDI+ component on Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allows an information disclosure vulnerability when it improperly discloses kernel memory addresses, aka "Win32k Information Disclosure Vulnerability". This CVE ID is unique from CVE-2017-8678, CVE-2017-8680, CVE-2017-8681, and CVE-2017-8687.

CVE Details

CVSS v3.1 BewertungN/A

Veroffentlicht9/13/2017

Zuletzt geandert4/20/2025

Quellenvd

Honeypot-Sichtungen0

Betroffene Produkte

microsoft:windows_10microsoft:windows_7microsoft:windows_8.1microsoft:windows_rt_8.1microsoft:windows_server_2008microsoft:windows_server_2012microsoft:windows_server_2016

Schwachen (CWE)

CWE-200

Referenzen

http://www.securityfocus.com/bid/100767(secure@microsoft.com)

http://www.securitytracker.com/id/1039338(secure@microsoft.com)

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8677(secure@microsoft.com)

http://www.securityfocus.com/bid/100767(af854a3a-2127-422b-91ae-364da2661108)

http://www.securitytracker.com/id/1039338(af854a3a-2127-422b-91ae-364da2661108)

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8677(af854a3a-2127-422b-91ae-364da2661108)

IOC Korrelationen

Keine Korrelationen erfasst

This product uses data from the NVD API but is not endorsed or certified by the NVD.