From winvulns-announcements at bigmail.bigfix.com Sat Apr 14 05:21:20 2018 From: winvulns-announcements at bigmail.bigfix.com (Notification of New Vulnerabilties to Windows Systems Fixlet Messages) Date: Sat, 14 Apr 2018 05:21:20 -0700 Subject: [Winvulns-announcements] BES Auto Notification: New Fixlets Published in Fixlet Site: 'Vulnerabilities to Windows Systems' Message-ID: Fixlet Site - 'Vulnerabilities to Windows Systems' Current Version: 581 Published: Fri, 13 Apr 2018 18:33:59 GMT New Fixlets: ============ *************************************************************** Title: Guidance to mitigate speculative execution side-channel vulnerabilities - CVE-2017-5753 Severity: Medium Fixlet ID: 391501 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A3915 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-5753 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Systems with microprocessors utilizing speculative execution and branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis. *************************************************************** Title: Branch Target Injection Vulnerability- CVE-2017-5715 Severity: Medium Fixlet ID: 392401 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A3924 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-5715 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis. *************************************************************** Title: Rogue Data Cache Load Vulnerability - CVE-2017-5754 Severity: Medium Fixlet ID: 392501 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A3925 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-5754 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis. *************************************************************** Title: Use of uninitialized value in Skia - CVE-2017-15418 Severity: Fixlet ID: 394701 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A3947 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-15418 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Use of uninitialized value in Skia. *************************************************************** Title: Buffer overflow when drawing and validating elements with ANGLE library using Direct 3D 9 - CVE-2017-7845 Severity: Fixlet ID: 400302 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4003 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-7845 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: A buffer overflow occurs when drawing and validating elements using Direct 3D 9 with the ANGLE graphics library, used for WebGL content. This is due to an incorrect value being passed within the library during checks and results in a potentially exploitable crash. *************************************************************** Title: Speculative execution side-channel attack ("Spectre") - CVE-2017-5753 Severity: Medium Fixlet ID: 400502 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4005 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-5753 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Speculative execution side-channel attack ("Spectre"). *************************************************************** Title: Speculative execution side-channel attack ("Spectre") - CVE-2017-5715 Severity: Medium Fixlet ID: 400601 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4006 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-5715 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Speculative execution side-channel attack ("Spectre"). *************************************************************** Title: Memory safety bugs fixed in Firefox 57 and Firefox ESR 52.5 - CVE-2017-7826 Severity: Fixlet ID: 400701 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4007 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-7826 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Mozilla developers and community members Christian Holler, David Keeler, Jon Coppeard, Julien Cristau, Jan de Mooij, Jason Kratzer, Philipp, Nicholas Nethercote, Oriol Brufau, Andr? Bargull, Bob Clary, Jet Villegas, Randell Jesup, Tyson Smith, Gary Kwong, and Ryan VanderMeulen reported memory safety bugs present in Firefox 56 and Firefox ESR 52.4. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code. *************************************************************** Title: Use-after-free of PressShell while restyling layout - CVE-2017-7828 Severity: Fixlet ID: 400801 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4008 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-7828 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: A use-after-free vulnerability can occur when flushing and resizing layout because the PressShell object has been freed while still in use. This results in a potentially exploitable crash during these operations. *************************************************************** Title: Developer Tools can expose style editor information cross-origin through service worker - CVE-2018-5106 Severity: Fixlet ID: 404901 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4049 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-5106 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Style editor traffic in the Developer Tools can be routed through a service worker hosted on a third party website if a user selects error links when these tools are open. This can allow style editor information used within Developer Tools to leak cross-origin. *************************************************************** Title: Race when opening downloaded files - CVE-2018-6033 Severity: Fixlet ID: 407001 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4070 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-6033 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Race when opening downloaded files. *************************************************************** Title: UI spoof in Permissions - CVE-2018-6049 Severity: Fixlet ID: 407201 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4072 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-6049 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: UI spoof in Permissions. *************************************************************** Title: Referrer policy bypass in Blink - CVE-2018-6048 Severity: Fixlet ID: 407301 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4073 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-6048 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Referrer policy bypass in Blink. *************************************************************** Title: Leak of page thumbnails in New Tab Page - CVE-2018-6053 Severity: Fixlet ID: 407501 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4075 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-6053 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Leak of page thumbnails in New Tab Page. *************************************************************** Title: Use after free in WebUI - CVE-2018-6054 Severity: Fixlet ID: 407701 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4077 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-6054 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Use after free in WebUI. *************************************************************** Title: Insufficient user gesture requirements in autofill - CVE-2018-6037 Severity: Fixlet ID: 407901 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4079 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-6037 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Insufficient user gesture requirements in autofill. *************************************************************** Title: Insufficient isolation of devtools from extensions - CVE-2018-6045 Severity: Fixlet ID: 408101 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4081 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-6045 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Insufficient isolation of devtools from extensions. *************************************************************** Title: Cross origin URL leak in WebGL - CVE-2018-6047 Severity: Fixlet ID: 408301 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4083 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-6047 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Cross origin URL leak in WebGL. *************************************************************** Title: Insufficient escaping with external URL handlers - CVE-2018-6043 Severity: Fixlet ID: 408502 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4085 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-6043 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Insufficient escaping with external URL handlers. *************************************************************** Title: Same origin bypass in Shared Worker - CVE-2018-6032 Severity: Fixlet ID: 408601 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4086 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-6032 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Same origin bypass in Shared Worker. *************************************************************** Title: XSS in DevTools - CVE-2018-6039 Severity: Fixlet ID: 408801 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4088 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-6039 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: XSS in DevTools. *************************************************************** Title: Heap buffer overflow in WebGL - CVE-2018-6038 Severity: Fixlet ID: 409001 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4090 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-6038 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Heap buffer overflow in WebGL. *************************************************************** Title: WebExtension ActiveTab permission allows cross-origin frame content access - CVE-2018-5116 Severity: Fixlet ID: 409701 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4097 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-5116 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: WebExtensions with the ActiveTab permission are able to access frames hosted within the active tab even if the frames are cross-origin. Malicious extensions can inject frames from arbitrary origins into the loaded page and then interact with them, bypassing same-origin user expectations with this permission. *************************************************************** Title: Memory safety bugs fixed in Firefox 58 - CVE-2018-5090 Severity: Fixlet ID: 409901 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4099 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-5090 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Mozilla developers and community members Calixte Denizet, Christian Holler, Alex Gaynor, Yoshi Huang, Bob Clary, Nils Ohlmeier, Jason Kratzer, Jesse Ruderman, Philipp, Mike Taylor, Marcia Knous, Paul Adenot, Randell Jesup, JW Wang, Tyson Smith, Emilio Cobos ?lvarez, Ted Campbell, Stephen Fewer, and Tristan Bourvon reported memory safety bugs present in Firefox 57. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code. *************************************************************** Title: Activity Stream images can attempt to load local content through file: - CVE-2018-5118 Severity: Fixlet ID: 410101 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4101 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-5118 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: The screenshot images displayed in the Activity Stream page displayed when a new tab is opened is created from the meta tags of websites. An issue was discovered where the page could attempt to create these images through file: URLs from the local file system. This loading is blocked by the sandbox but could expose local data if combined with another attack that escapes sandbox protections. *************************************************************** Title: Use-after-free while editing form elements - CVE-2018-5096 Severity: Fixlet ID: 415701 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4157 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-5096 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: A use-after-free vulnerability can occur while editing events in form elements on a page, resulting in a potentially exploitable crash. *************************************************************** Title: Vulnerability in Adobe Acrobat/Reader 2018.009.20050 and earlier, 2017.011.30070 and earlier, 2015.006.30394 and earlier - CVE-2018-4918 Severity: Fixlet ID: 460001 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4600 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-4918 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Vulnerability in Adobe Acrobat/Reader 2018.009.20050 and earlier, 2017.011.30070 and earlier, 2015.006.30394 and earlier. *************************************************************** Title: Microsoft Video Control Elevation of Privilege Vulnerability - CVE-2018-0881 Severity: Fixlet ID: 465501 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4655 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0881 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: The Microsoft Video Control in Microsoft Windows Server 2008 R2 SP1, Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and 1709, Windows Server 2016 and Windows Server, version 1709 allows an elevation of privilege due to how objects are handled in memory, aka "Microsoft Video Control Elevation of Privilege Vulnerability". *************************************************************** Title: Heap Overflow vulnerability in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions - CVE-2018-4917 Severity: Fixlet ID: 465901 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4659 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-4917 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Heap Overflow vulnerability in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. *************************************************************** Title: Windows Desktop Bridge Elevation of Privilege Vulnerability - CVE-2018-0880 Severity: Fixlet ID: 468701 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4687 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0880 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: The Desktop Bridge in Windows 10 1607, 1703, and 1709, Windows Server 2016 and Windows Server, version 1709 allows an elevation of privilege vulnerability due to how the virtual registry is managed, aka "Windows Desktop Bridge Elevation of Privilege Vulnerability". This CVE is unique from CVE-2018-0882. *************************************************************** Title: Windows Desktop Bridge Elevation of Privilege Vulnerability - CVE-2018-0882 Severity: Fixlet ID: 468901 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4689 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0882 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: The Desktop Bridge in Windows 10 1607, 1703, and 1709, Windows Server 2016 and Windows Server, version 1709 allows an elevation of privilege vulnerability due to how the virtual registry is managed, aka "Windows Desktop Bridge Elevation of Privilege Vulnerability". This CVE is unique from CVE-2018-0880. *************************************************************** Title: Hyper-V Information Disclosure Vulnerability - CVE-2018-0885 Severity: Fixlet ID: 470301 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4703 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0885 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: The Microsoft Hyper-V Network Switch in 64-bit versions of Microsoft Windows Server 2008 SP2 and R2 SP1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and 1709, Windows Server 2016 and Windows Server, version 1709 allows a denial of service vulnerability due to how input from a privileged user on a guest operating system is validated, aka "Hyper-V Denial of Service Vulnerability". *************************************************************** Title: Windows Security Feature Bypass Vulnerability - CVE-2018-0884 Severity: Fixlet ID: 470701 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4707 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0884 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Windows Scripting Host (WSH) in Windows 10 Gold, 1511, 1607, 1703 and 1709, Windows Server 2016 and Windows Server, version 1709 allows a security feature bypass vulnerability due to how objects are handled in memory, aka "Windows Security Feature Bypass Vulnerability". This CVE is unique from CVE-2018-0902. *************************************************************** Title: CredSSP Remote Code Execution Vulnerability - CVE-2018-0886 Severity: Fixlet ID: 470801 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4708 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0886 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: The Credential Security Support Provider protocol (CredSSP) in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and 1709 Windows Server 2016 and Windows Server, version 1709 allows a remote code execution vulnerability due to how CredSSP validates request during the authentication process, aka "CredSSP Remote Code Execution Vulnerability". *************************************************************** Title: CNG Security Feature Bypass Vulnerability - CVE-2018-0902 Severity: Fixlet ID: 470901 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4709 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0902 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: The Cryptography Next Generation (CNG) kernel-mode driver (cng.sys) in Windows 10 Gold, 1511, 1607, 1703, and 1709. Windows Server 2016 and Windows Server, version 1709 allows a security feature bypass vulnerability due to the way the kernel-mode driver validates and enforces impersonation levels, aka "Windows Security Feature Bypass Vulnerability". This CVE is unique from CVE-2018-0884. *************************************************************** Title: Use After Free (RCE) vulnerability in Adobe Flash Player before 29.0.0.113 - CVE-2018-4919 Severity: Fixlet ID: 472801 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4728 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-4919 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Use After Free (RCE) vulnerability in Adobe Flash Player before 29.0.0.113. *************************************************************** Title: Type confusion in V8 - CVE-2018-6064 Severity: Fixlet ID: 473101 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4731 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-6064 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Type confusion in V8. *************************************************************** Title: Same Origin Bypass via canvas - CVE-2018-6066 Severity: Fixlet ID: 473201 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4732 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-6066 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Same Origin Bypass via canvas. *************************************************************** Title: Buffer overflow in Skia - CVE-2018-6067 Severity: Fixlet ID: 473401 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4734 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-6067 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Buffer overflow in Skia. *************************************************************** Title: Race condition in V8 - CVE-2018-6061 Severity: Fixlet ID: 473701 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4737 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-6061 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Race condition in V8. *************************************************************** Title: Microsoft Exchange Information Disclosure Vulnerability - CVE-2018-0924 Severity: Fixlet ID: 474902 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4749 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0924 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Microsoft Exchange Server 2010 Service Pack 3 Update Rollup 20, Microsoft Exchange Server 2013 Cumulative Update 18, Microsoft Exchange Server 2013 Cumulative Update 19, Microsoft Exchange Server 2013 Service Pack 1, Microsoft Exchange Server 2016 Cumulative Update 7, and Microsoft Exchange Server 2016 Cumulative Update 8 allow an information disclosure vulnerability due to how URL redirects are handled, aka "Microsoft Exchange Information Disclosure Vulnerability". This CVE is unique from CVE-2018-0941. *************************************************************** Title: Microsoft Exchange Elevation of Privilege Vulnerability - CVE-2018-0940 Severity: Fixlet ID: 475601 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4756 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0940 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Microsoft Exchange Outlook Web Access (OWA) in Microsoft Exchange Server 2010 Service Pack 3 Update Rollup 20, Microsoft Exchange Server 2013 Cumulative Update 18, Microsoft Exchange Server 2013 Cumulative Update 19, Microsoft Exchange Server 2013 Service Pack 1, Microsoft Exchange Server 2016 Cumulative Update 7, and Microsoft Exchange Server 2016 Cumulative Update 8 allows an elevation of privilege vulnerability due to how links in the body of an email message are rewritten, aka "Microsoft Exchange Elevation of Privilege Vulnerability". From winvulns-announcements at bigmail.bigfix.com Wed Apr 18 05:21:23 2018 From: winvulns-announcements at bigmail.bigfix.com (Notification of New Vulnerabilties to Windows Systems Fixlet Messages) Date: Wed, 18 Apr 2018 05:21:23 -0700 Subject: [Winvulns-announcements] BES Auto Notification: New Fixlets Published in Fixlet Site: 'Vulnerabilities to Windows Systems' Message-ID: Fixlet Site - 'Vulnerabilities to Windows Systems' Current Version: 582 Published: Tue, 17 Apr 2018 17:37:21 GMT New Fixlets: ============ *************************************************************** Title: Vulnerability in the MySQL Server - CVE-2017-3732 Severity: Medium Fixlet ID: 304501 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A3045 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-3732 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Vulnerability in the MySQL Server. Supported versions that are affected are 5.6.35 and earlier and 5.7.17 and earlier. *************************************************************** Title: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Packaging (OpenSSL)) - CVE-2017-3737 Severity: Medium Fixlet ID: 400101 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4001 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-3737 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Packaging (OpenSSL)). *************************************************************** Title: Integer underflow in WebAssembly - CVE-2018-6036 Severity: Fixlet ID: 407401 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4074 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-6036 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Integer underflow in WebAssembly. *************************************************************** Title: Insufficient isolation of devtools from extensions - CVE-2018-6046 Severity: Fixlet ID: 408401 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4084 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-6046 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Insufficient isolation of devtools from extensions. *************************************************************** Title: Scripting Engine Memory Corruption Vulnerability - CVE-2018-0834 Severity: High Fixlet ID: 410601 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4106 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0834 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Microsoft Edge and ChakraCore in Microsoft Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allows remote code execution, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique from CVE-2018-0835, CVE-2018-0836, CVE-2018-0837, CVE-2018-0838, CVE-2018-0840, CVE-2018-0856, CVE-2018-0857, CVE-2018-0858, CVE-2018-0859, CVE-2018-0860, CVE-2018-0861, and CVE-2018-0866. *************************************************************** Title: Microsoft Edge Information Disclosure Vulnerability - CVE-2018-0839 Severity: Medium Fixlet ID: 410901 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4109 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0839 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Microsoft Edge in Microsoft Windows 10 1703 allows information disclosure, due to how Edge handles objects in memory, aka "Microsoft Edge Information Disclosure Vulnerability". This CVE ID is unique from CVE-2018-0763. *************************************************************** Title: Scripting Engine Memory Corruption Vulnerability - CVE-2018-0835 Severity: High Fixlet ID: 412101 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4121 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0835 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Microsoft Edge and ChakraCore in Microsoft Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allows remote code execution, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique from CVE-2018-0834, CVE-2018-0836, CVE-2018-0837, CVE-2018-0838, CVE-2018-0840, CVE-2018-0856, CVE-2018-0857, CVE-2018-0858, CVE-2018-0859, CVE-2018-0860, CVE-2018-0861, and CVE-2018-0866. *************************************************************** Title: Scripting Engine Memory Corruption Vulnerability - CVE-2018-0859 Severity: High Fixlet ID: 412301 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4123 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0859 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Microsoft Edge and ChakraCore in Microsoft Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allows remote code execution, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique from CVE-2018-0834, CVE-2018-0835, CVE-2018-0836, CVE-2018-0837, CVE-2018-0838, CVE-2018-0840, CVE-2018-0856, CVE-2018-0857, CVE-2018-0858, CVE-2018-0860, CVE-2018-0861, and CVE-2018-0866. *************************************************************** Title: Windows Kernel Elevation of Privilege Vulnerability - CVE-2018-0809 Severity: Medium Fixlet ID: 412501 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4125 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0809 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: The Windows kernel in Windows 10, versions 1703 and 1709, and Windows Server, version 1709 allows an elevation of privilege vulnerability due to the way objects are handled in memory, aka "Windows Elevation of Privilege Vulnerability". This CVE is unique from CVE-2018-0742, CVE-2018-0756, CVE-2018-0820 and CVE-2018-0843. *************************************************************** Title: Windows Kernel Information Disclosure Vulnerability - CVE-2018-0810 Severity: Low Fixlet ID: 412701 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4127 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0810 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: The Windows kernel in Windows 7 SP1, Windows Server 2008 SP2 and R2, and Windows Server 2012 allows an information disclosure vulnerability due to the way memory is initialized, aka "Windows Kernel Information Disclosure Vulnerability". This CVE is unique from CVE-2018-0757. *************************************************************** Title: Scripting Engine Memory Corruption Vulnerability - CVE-2018-0860 Severity: High Fixlet ID: 412801 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4128 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0860 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Microsoft Edge and ChakraCore in Microsoft Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allows remote code execution, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique from CVE-2018-0834, CVE-2018-0835, CVE-2018-0836, CVE-2018-0837, CVE-2018-0838, CVE-2018-0840, CVE-2018-0856, CVE-2018-0857, CVE-2018-0858, CVE-2018-0859, CVE-2018-0861, and CVE-2018-0866. *************************************************************** Title: Scripting Engine Memory Corruption Vulnerability - CVE-2018-0861 Severity: High Fixlet ID: 412901 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4129 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0861 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Microsoft Edge in Microsoft Windows 10 1607, 1703, and Windows Server 2016 allows remote code execution, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique from CVE-2018-0834, CVE-2018-0835, CVE-2018-0836, CVE-2018-0837, CVE-2018-0838, CVE-2018-0840, CVE-2018-0856, CVE-2018-0857, CVE-2018-0858, CVE-2018-0859, CVE-2018-0860, and CVE-2018-0866. *************************************************************** Title: Scripting Engine Memory Corruption Vulnerability - CVE-2018-0837 Severity: High Fixlet ID: 413001 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4130 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0837 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Microsoft Edge and ChakraCore in Microsoft Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allows remote code execution, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique from CVE-2018-0834, CVE-2018-0835, CVE-2018-0836, CVE-2018-0838, CVE-2018-0840, CVE-2018-0856, CVE-2018-0857, CVE-2018-0858, CVE-2018-0859, CVE-2018-0860, CVE-2018-0861, and CVE-2018-0866. *************************************************************** Title: Scripting Engine Memory Corruption Vulnerability - CVE-2018-0838 Severity: High Fixlet ID: 413101 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4131 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0838 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Microsoft Edge and ChakraCore in Microsoft Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allows remote code execution, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique from CVE-2018-0834, CVE-2018-0835, CVE-2018-0836, CVE-2018-0837, CVE-2018-0840, CVE-2018-0856, CVE-2018-0857, CVE-2018-0858, CVE-2018-0859, CVE-2018-0860, CVE-2018-0861, and CVE-2018-0866. *************************************************************** Title: Scripting Engine Memory Corruption Vulnerability - CVE-2018-0858 Severity: High Fixlet ID: 413201 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4132 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0858 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: ChakraCore allows remote code execution, due to how the ChakraCore scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique from CVE-2018-0834, CVE-2018-0835, CVE-2018-0836, CVE-2018-0837, CVE-2018-0838, CVE-2018-0840, CVE-2018-0856, CVE-2018-0857, CVE-2018-0859, CVE-2018-0860, CVE-2018-0861, and CVE-2018-0866. *************************************************************** Title: Windows Kernel Elevation of Privilege Vulnerability - CVE-2018-0842 Severity: Medium Fixlet ID: 413401 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4134 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0842 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2008 SP2 and R2 SP1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703 and 1709, Windows Server 2016 and Windows Server, version 1709 allow an elevation of privilege vulnerability due to how objects in memory are handled, aka "Windows Kernel Elevation of Privilege Vulnerability". *************************************************************** Title: Windows Kernel Information Disclosure Vulnerability - CVE-2018-0831 Severity: Medium Fixlet ID: 413601 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4136 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0831 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: The Windows kernel in Windows 10 versions 1607, 1703 and 1709, Windows Server 2016 and Windows Server, version 1709 allows an elevation of privilege vulnerability due to how objects in memory are handled, aka "Windows Kernel Elevation of Privilege Vulnerability". *************************************************************** Title: Windows Kernel Elevation of Privilege Vulnerability - CVE-2018-0820 Severity: Medium Fixlet ID: 413801 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4138 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0820 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: The Windows kernel in Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2008 SP2 and R2 SP1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703 and 1709, Windows Server 2016 and Windows Server, version 1709 allows an elevation of privilege vulnerability due to the way objects are handled in memory, aka "Windows Kernel Elevation Of Privilege Vulnerability". This CVE is unique from CVE-2018-0742, CVE-2018-0756, CVE-2018-0809 and CVE-2018-0843. *************************************************************** Title: Windows Kernel Information Disclosure Vulnerability - CVE-2018-0832 Severity: Low Fixlet ID: 413901 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4139 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0832 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: The Windows kernel in Windows 8.1 and RT 8.1, Windows Server 2012 R2, Windows 10 Gold, 1511, 1607, 1703 and 1709, Windows Server 2016 and Windows Server, version 1709 allows an information disclosure vulnerability due to how objects in memory are handled, aka "Windows Information Disclosure Vulnerability". This CVE is unique from CVE-2018-0829 and CVE-2018-0830. *************************************************************** Title: Scripting Engine Memory Corruption Vulnerability - CVE-2018-0840 Severity: High Fixlet ID: 414001 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4140 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0840 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, and Internet Explorer and Microsoft Edge in Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allows remote code execution, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique from CVE-2018-0834, CVE-2018-0835, CVE-2018-0836, CVE-2018-0837, CVE-2018-0838, CVE-2018-0856, CVE-2018-0857, CVE-2018-0858, CVE-2018-0859, CVE-2018-0860, CVE-2018-0861, and CVE-2018-0866. *************************************************************** Title: Windows EOT Font Engine Information Disclosure Vulnerability - CVE-2018-0761 Severity: Low Fixlet ID: 414301 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4143 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0761 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: The Microsoft Windows Embedded OpenType (EOT) font engine in Microsoft Windows 7 SP1 and Windows Server 2008 R2 allows information disclosure, due to how the Windows EOT font engine handles embedded fonts, aka "Windows EOT Font Engine Information Disclosure Vulnerability". *************************************************************** Title: Windows EOT Font Engine Information Disclosure Vulnerability - CVE-2018-0755 Severity: Low Fixlet ID: 414501 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4145 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0755 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: The Microsoft Windows Embedded OpenType (EOT) font engine in Microsoft Windows 7 SP1 and Windows Server 2008 R2 allows information disclosure, due to how the Windows EOT font engine handles embedded fonts, aka "Windows EOT Font Engine Information Disclosure Vulnerability" *************************************************************** Title: Microsoft SharePoint Elevation of Privilege Vulnerability - CVE-2018-0864 Severity: Low Fixlet ID: 414701 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4147 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0864 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: SharePoint Project Server 2013 and SharePoint Enterprise Server 2016 allow an information disclosure vulnerability due to how web requests are handled, aka "Microsoft SharePoint Information Disclosure Vulnerability". *************************************************************** Title: Microsoft SharePoint Elevation of Privilege Vulnerability - CVE-2018-0869 Severity: Low Fixlet ID: 415401 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4154 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0869 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: SharePoint Server 2016 allows an elevation of privilege vulnerability due to how web requests are handled, aka "Microsoft SharePoint Elevation of Privilege Vulnerability". *************************************************************** Title: Vulnerability in Adobe Acrobat/Reader 2018.009.20050 and earlier, 2017.011.30070 and earlier, 2015.006.30394 and earlier - CVE-2018-4915 Severity: Medium Fixlet ID: 416001 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4160 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-4915 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. The vulnerability is caused by the computation that writes data past the end of the intended buffer; the computation is part of the JavaScript API related to color conversion. An attacker can potentially leverage the vulnerability to corrupt sensitive data or execute arbitrary code. *************************************************************** Title: Windows Common Log File System Driver Elevation of Privilege Vulnerability - CVE-2018-0844 Severity: Medium Fixlet ID: 416201 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4162 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0844 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: The Windows Common Log File System (CLFS) driver in Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2008 SP2 and R2 SP1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703 and 1709, Windows Server 2016 and Windows Server, version 1709 allows an elevation of privilege vulnerability due to how objects in memory are handled, aka "Windows Common Log File System Driver Elevation Of Privilege Vulnerability". *************************************************************** Title: Windows NTFS Global Reparse Point Elevation of Privilege Vulnerability - CVE-2018-0823 Severity: Medium Fixlet ID: 416301 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4163 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0823 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: The Named Pipe File System in Windows 10 version 1709 and Windows Server, version 1709 allows an elevation of privilege vulnerability due to the way the Named Pipe File System handles objects, aka "Named Pipe File System Elevation of Privilege Vulnerability". *************************************************************** Title: Windows Elevation of Privilege Vulnerability - CVE-2018-0821 Severity: Medium Fixlet ID: 416401 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4164 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0821 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: AppContainer in Windows 10 Gold, 1511, 1607, 1703 and 1709, Windows Server 2016 and Windows Server, version 1709 allows an elevation of privilege vulnerability due to the way constrained impersonations are handled, aka "Windows AppContainer Elevation Of Privilege Vulnerability". *************************************************************** Title: Windows NTFS Global Reparse Point Elevation of Privilege Vulnerability - CVE-2018-0822 Severity: Medium Fixlet ID: 416501 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4165 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0822 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: NTFS in Windows 10 Gold, 1511, 1607, 1703 and 1709, Windows Server 2016 and Windows Server, version 1709 allows an elevation of privilege vulnerability due to the way NTFS handles objects, aka "Windows NTFS Global Reparse Point Elevation of Privilege Vulnerability". *************************************************************** Title: Windows Elevation of Privilege Vulnerability - CVE-2018-0833 Severity: Medium Fixlet ID: 416701 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4167 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0833 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: The Microsoft Server Message Block 2.0 and 3.0 (SMBv2/SMBv3) client in Windows 8.1 and RT 8.1 and Windows Server 2012 R2 allows a denial of service vulnerability due to how specially crafted requests are handled, aka "SMBv2/SMBv3 Null Dereference Denial of Service Vulnerability". *************************************************************** Title: Windows Storage Services Elevation of Privilege Vulnerability - CVE-2018-0826 Severity: Medium Fixlet ID: 416902 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4169 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0826 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Windows Storage Services in Windows 10 versions 1511, 1607, 1703 and 1709, Windows Server 2016 and Windows Server, version 1709 allows an elevation of privilege vulnerability due to the way objects are handled in memory, aka "Windows Storage Services Elevation of Privilege Vulnerability". *************************************************************** Title: Scripting Engine Memory Corruption Vulnerability - CVE-2018-0847 Severity: Medium Fixlet ID: 417101 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4171 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0847 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, and Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allow information disclosure, due to how Internet Explorer handles objects in memory, aka "Internet Explorer Information Disclosure Vulnerability". *************************************************************** Title: Windows Kernel Elevation of Privilege Vulnerability - CVE-2018-0757 Severity: Low Fixlet ID: 417301 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4173 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0757 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: The Windows kernel in Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2008 SP2 and R2 SP1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703 and 1709, Windows Server 2016 and Windows Server, version 1709 allows an information disclosure vulnerability due to the way objects are handled in memory, aka "Windows Kernel Information Disclosure Vulnerability". This CVE is unique from CVE-2018-0810. *************************************************************** Title: Out-of-bounds read vulnerability in Adobe Acrobat Reader 2018.009.20050 and earlier, 2017.011.30070 and earlier, 2015.006.30394 and earlier - CVE-2018-4908 Severity: Medium Fixlet ID: 458801 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4588 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-4908 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. This vulnerability occurs as a result of computation that reads data that is past the end of the target buffer; the computation is part of the TTF font processing in the XPS module. A successful attack can lead to sensitive data exposure. *************************************************************** Title: Out-of-bounds read vulnerability in Adobe Acrobat Reader 2018.009.20050 and earlier, 2017.011.30070 and earlier, 2015.006.30394 and earlier - CVE-2018-4900 Severity: Medium Fixlet ID: 458901 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4589 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-4900 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. This vulnerability occurs as a result of computation that reads data that is past the end of the target buffer; the computation is part of JavaScript manipulation of an Annotation object. A successful attack can lead to sensitive data exposure. *************************************************************** Title: Out-of-bounds read vulnerability in Adobe Acrobat Reader 2018.009.20050 and earlier, 2017.011.30070 and earlier, 2015.006.30394 and earlier - CVE-2018-4906 Severity: Medium Fixlet ID: 459302 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4593 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-4906 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. This vulnerability occurs as a result of computation that reads data that is past the end of the target buffer; the computation is part of the image conversion module that handles Enhanced Metafile Format Plus (EMF+) data related to graphic object image attributes. A successful attack can lead to sensitive data exposure. *************************************************************** Title: Out-of-bounds read vulnerability in Adobe Acrobat Reader 2018.009.20050 and earlier, 2017.011.30070 and earlier, 2015.006.30394 and earlier - CVE-2018-4899 Severity: Medium Fixlet ID: 459401 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4594 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-4899 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. This vulnerability occurs as a result of computation that reads data that is past the end of the target buffer; the computation is part of the initial XPS page processing. A successful attack can lead to sensitive data exposure. *************************************************************** Title: Out-of-bounds read vulnerability in Adobe Acrobat Reader 2018.009.20050 and earlier, 2017.011.30070 and earlier, 2015.006.30394 and earlier - CVE-2018-4903 Severity: Medium Fixlet ID: 459501 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4595 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-4903 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. This vulnerability occurs as a result of computation that reads data that is past the end of the target buffer; the computation is part of the TIFF processing within the XPS module. A successful attack can lead to sensitive data exposure. *************************************************************** Title: Out-of-bounds read vulnerability in Adobe Acrobat Reader 2018.009.20050 and earlier, 2017.011.30070 and earlier, 2015.006.30394 and earlier - CVE-2018-4894 Severity: Medium Fixlet ID: 459601 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4596 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-4894 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. This vulnerability occurs as a result of computation that reads data that is past the end of the target buffer; the computation is part of the XPS font processing. A successful attack can lead to sensitive data exposure. *************************************************************** Title: Out-of-bounds read vulnerability in Adobe Acrobat Reader 2018.009.20050 and earlier, 2017.011.30070 and earlier, 2015.006.30394 and earlier - CVE-2018-4897 Severity: Medium Fixlet ID: 459701 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4597 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-4897 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. This vulnerability occurs as a result of computation that reads data that is past the end of the target buffer; the computation is part of the image conversion module that parses TIFF metadata. A successful attack can lead to sensitive data exposure. *************************************************************** Title: Vulnerability in Adobe Acrobat/Reader 2018.009.20050 and earlier, 2017.011.30070 and earlier, 2015.006.30394 and earlier - CVE-2018-4916 Severity: Medium Fixlet ID: 460101 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4601 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-4916 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. The vulnerability is caused by the computation that writes data past the end of the intended buffer; the computation is part of the JavaScript API related to color conversion. An attacker can potentially leverage the vulnerability to corrupt sensitive data or execute arbitrary code. *************************************************************** Title: Vulnerability in Adobe Acrobat/Reader 2018.009.20050 and earlier, 2017.011.30070 and earlier, 2015.006.30394 and earlier - CVE-2018-4880 Severity: Medium Fixlet ID: 460301 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4603 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-4880 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. This vulnerability occurs as a result of computation that reads data that is past the end of the target buffer; the computation is part of the conversion module that reads U3D data. A successful attack can lead to sensitive data exposure. *************************************************************** Title: Vulnerability in Adobe Acrobat/Reader 2018.009.20050 and earlier, 2017.011.30070 and earlier, 2015.006.30394 and earlier - CVE-2018-4885 Severity: Medium Fixlet ID: 461701 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4617 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-4885 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. This vulnerability occurs as a result of computation that reads data that is past the end of the target buffer; the computation is part of Enhanced Metafile Format processing engine (within the image conversion module). A successful attack can lead to sensitive data exposure. *************************************************************** Title: Vulnerability in Adobe Acrobat/Reader 2018.009.20050 and earlier, 2017.011.30070 and earlier, 2015.006.30394 and earlier - CVE-2018-4891 Severity: Medium Fixlet ID: 461801 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4618 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-4891 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. This vulnerability occurs as a result of computation that reads data that is past the end of the target buffer; the computation is part of the XPS module that handles TIFF data. A successful attack can lead to sensitive data exposure. *************************************************************** Title: Vulnerability in Adobe Acrobat/Reader 2018.009.20050 and earlier, 2017.011.30070 and earlier, 2015.006.30394 and earlier - CVE-2018-4889 Severity: Medium Fixlet ID: 462101 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4621 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-4889 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. This vulnerability occurs as a result of computation that reads data that is past the end of the target buffer; the computation is part of the XPS image conversion. A successful attack can lead to sensitive data exposure. *************************************************************** Title: A use-after-free vulnerability in Adobe Flash Player 28.0.0.137 and earlier versions - CVE-2018-4877 Severity: High Fixlet ID: 462301 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4623 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-4877 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: A use-after-free vulnerability was discovered in Adobe Flash Player before 28.0.0.161. This vulnerability occurs due to a dangling pointer in the Primetime SDK related to media player's quality of service functionality. A successful attack can lead to arbitrary code execution. . *************************************************************** Title: Out-of-bounds read vulnerability in Adobe Acrobat Reader 2018.009.20050 and earlier, 2017.011.30070 and earlier, 2015.006.30394 and earlier - CVE-2018-4909 Severity: Medium Fixlet ID: 462401 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4624 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-4909 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. This vulnerability occurs as a result of computation that reads data that is past the end of the target buffer; the computation is part of the image conversion module when processing metadata in JPEG images. A successful attack can lead to sensitive data exposure. *************************************************************** Title: Out-of-bounds read vulnerability in Adobe Acrobat Reader 2018.009.20050 and earlier, 2017.011.30070 and earlier, 2015.006.30394 and earlier - CVE-2018-4912 Severity: Medium Fixlet ID: 462501 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4625 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-4912 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. This vulnerability occurs as a result of computation that reads data that is past the end of the target buffer; the computation is part of the image conversion module that handles JPEG 2000 data. A successful attack can lead to sensitive data exposure. *************************************************************** Title: Out-of-bounds read vulnerability in Adobe Acrobat Reader 2018.009.20050 and earlier, 2017.011.30070 and earlier, 2015.006.30394 and earlier - CVE-2018-4914 Severity: Medium Fixlet ID: 462601 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4626 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-4914 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. This vulnerability occurs as a result of computation that reads data that is past the end of the target buffer; the computation is part of the TIFF processing in the XPS engine. A successful attack can lead to sensitive data exposure. *************************************************************** Title: Windows Kernel Information Disclosure Vulnerability - CVE-2018-0897 Severity: Low Fixlet ID: 463901 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4639 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0897 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: The Windows kernel in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and 1709, Windows Server 2016 and Windows Server, version 1709 allows an information disclosure vulnerability due to the way memory addresses are handled, aka "Windows Kernel Information Disclosure Vulnerability". This CVE is unique from CVE-2018-0811, CVE-2018-0813, CVE-2018-0814, CVE-2018-0894, CVE-2018-0895, CVE-2018-0896, CVE-2018-0898, CVE-2018-0899, CVE-2018-0900, CVE-2018-0901 and CVE-2018-0926. *************************************************************** Title: Windows Kernel Information Disclosure Vulnerability - CVE-2018-0894 Severity: Low Fixlet ID: 464101 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4641 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0894 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: The Windows kernel in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and 1709, Windows Server 2016 and Windows Server, version 1709 allows an information disclosure vulnerability due to the way memory addresses are handled, aka "Windows Kernel Information Disclosure Vulnerability". This CVE is unique from CVE-2018-0811, CVE-2018-0813, CVE-2018-0814, CVE-2018-0895, CVE-2018-0896, CVE-2018-0897, CVE-2018-0898, CVE-2018-0899, CVE-2018-0900, CVE-2018-0901 and CVE-2018-0926. *************************************************************** Title: Windows Kernel Information Disclosure Vulnerability - CVE-2018-0898 Severity: Low Fixlet ID: 464201 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4642 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0898 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: The Windows kernel in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and 1709, Windows Server 2016 and Windows Server, version 1709 allows an information disclosure vulnerability due to the way memory addresses are handled, aka "Windows Kernel Information Disclosure Vulnerability". This CVE is unique from CVE-2018-0811, CVE-2018-0813, CVE-2018-0814, CVE-2018-0894, CVE-2018-0895, CVE-2018-0896, CVE-2018-0897, CVE-2018-0899, CVE-2018-0900, CVE-2018-0901 and CVE-2018-0926. *************************************************************** Title: Windows Kernel Information Disclosure Vulnerability - CVE-2018-0896 Severity: Low Fixlet ID: 464301 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4643 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0896 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: The Windows kernel in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and 1709, Windows Server 2016 and Windows Server, version 1709 allows an information disclosure vulnerability due to the way memory addresses are handled, aka "Windows Kernel Information Disclosure Vulnerability". This CVE is unique from CVE-2018-0811, CVE-2018-0813, CVE-2018-0814, CVE-2018-0894, CVE-2018-0895, CVE-2018-0897, CVE-2018-0898, CVE-2018-0899, CVE-2018-0900, CVE-2018-0901 and CVE-2018-0926. *************************************************************** Title: Windows Kernel Information Disclosure Vulnerability - CVE-2018-0904 Severity: Low Fixlet ID: 464401 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4644 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0904 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: The Windows kernel in Microsoft Windows Server 2008 R2 SP1, Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and 1709, Windows Server 2016 and Windows Server, version 1709 allows information disclosure vulnerability due to how memory addresses are handled, aka "Windows Kernel Information Disclosure Vulnerability". *************************************************************** Title: Windows Kernel Information Disclosure Vulnerability - CVE-2018-0813 Severity: Low Fixlet ID: 464501 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4645 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0813 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: The Windows kernel in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and 1709, Windows Server 2016 and Windows Server, version 1709 allows an information disclosure vulnerability due to the way objects are initialized in memory, aka "Windows Kernel Information Disclosure Vulnerability". This CVE is unique from CVE-2018-0811, CVE-2018-0814, CVE-2018-0894, CVE-2018-0895, CVE-2018-0896, CVE-2018-0897, CVE-2018-0898, CVE-2018-0899, CVE-2018-0900, and CVE-2018-0901 and CVE-2018-0926. *************************************************************** Title: Windows Kernel Information Disclosure Vulnerability - CVE-2018-0900 Severity: Low Fixlet ID: 464701 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4647 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0900 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: The Windows kernel in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and 1709, Windows Server 2016 and Windows Server, version 1709 allows an information disclosure vulnerability due to the way memory addresses are handled, aka "Windows Kernel Information Disclosure Vulnerability". This CVE is unique from CVE-2018-0811, CVE-2018-0813, CVE-2018-0814, CVE-2018-0894, CVE-2018-0895, CVE-2018-0896, CVE-2018-0897, CVE-2018-0898, CVE-2018-0899, CVE-2018-0901 and CVE-2018-0926. *************************************************************** Title: Windows Kernel Information Disclosure Vulnerability - CVE-2018-0895 Severity: Low Fixlet ID: 464901 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4649 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0895 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: The Windows kernel in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and 1709, Windows Server 2016 and Windows Server, version 1709 allows an information disclosure vulnerability due to the way memory addresses are handled, aka "Windows Kernel Information Disclosure Vulnerability". This CVE is unique from CVE-2018-0811, CVE-2018-0813, CVE-2018-0814, CVE-2018-0894, CVE-2018-0896, CVE-2018-0897, CVE-2018-0898, CVE-2018-0899, CVE-2018-0900, CVE-2018-0901 and CVE-2018-0926. *************************************************************** Title: Windows GDI Elevation of Privilege Vulnerability - CVE-2018-0815 Severity: Medium Fixlet ID: 465201 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4652 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0815 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: The Windows Graphics Device Interface (GDI) in Microsoft Windows Server 2008 SP2 and R2 SP1 and Windows 7 SP1 allows an elevation of privilege vulnerability due to the way objects are handled in memory, aka "Windows GDI Elevation of Privilege Vulnerability". This CVE is unique from CVE-2018-0816, and CVE-2018-0817. *************************************************************** Title: Windows Kernel Information Disclosure Vulnerability - CVE-2018-0814 Severity: Low Fixlet ID: 465301 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4653 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0814 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: The Windows kernel in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and 1709, Windows Server 2016 and Windows Server, version 1709 allows an information disclosure vulnerability due to the way objects are initialized in memory, aka "Windows Kernel Information Disclosure Vulnerability". This CVE is unique from CVE-2018-0811, CVE-2018-0813, CVE-2018-0894, CVE-2018-0895, CVE-2018-0896, CVE-2018-0897, CVE-2018-0898, CVE-2018-0899, CVE-2018-0900, and CVE-2018-0901 and CVE-2018-0926. *************************************************************** Title: Windows Installer Elevation of Privilege Vulnerability - CVE-2018-0868 Severity: Medium Fixlet ID: 465401 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4654 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0868 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Windows Installer in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and 1709, Windows Server 2016 and Windows Server, version 1709 allows an elevation of privilege vulnerability due to how input is sanitized, aka "Windows Installer Elevation of Privilege Vulnerability". *************************************************************** Title: Out-of-bounds write vulnerability in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions - CVE-2018-4895 Severity: High Fixlet ID: 466001 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4660 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-4895 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. The vulnerability is caused by the computation that writes data past the end of the intended buffer; the computation is part of the image conversion engine when processing Enhanced Metafile Format Plus (EMF+) data. An attacker can potentially leverage the vulnerability to corrupt sensitive data or execute arbitrary code. *************************************************************** Title: Security Mitigation Bypass vulnerability in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions - CVE-2018-4872 Severity: High Fixlet ID: 466501 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4665 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-4872 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. This vulnerability is a security bypass vulnerability that leads to a sandbox escape. Specifically, the vulnerability exists in the way a cross call is handled. *************************************************************** Title: Out-of-bounds write vulnerability in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions - CVE-2018-4898 Severity: Medium Fixlet ID: 466901 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4669 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-4898 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. The vulnerability is caused by the computation that writes data past the end of the intended buffer; the computation is part of the XPS engine that adds vector graphics and images to a fixed page. An attacker can potentially leverage the vulnerability to corrupt sensitive data or execute arbitrary code. *************************************************************** Title: Use-after-free vulnerability in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions - CVE-2018-4892 Severity: Medium Fixlet ID: 467001 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4670 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-4892 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. This vulnerability is an instance of a use after free vulnerability in the JBIG2 decoder. The vulnerability is triggered by a crafted PDF file that contains a malformed JBIG2 stream. Successful exploitation could lead to arbitrary code execution. *************************************************************** Title: Microsoft SharePoint Elevation of Privilege Vulnerability - CVE-2018-0921 Severity: Medium Fixlet ID: 467402 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4674 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0921 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Microsoft SharePoint Enterprise Server 2016 allows an elevation of privilege vulnerability to due how specially crafted web requests are sanitized, aka "Microsoft SharePoint Elevation of Privilege Vulnerability". This CVE is unique from CVE-2018-0909, CVE-2018-0910. CVE-2018-0911, CVE-2018-0912, CVE-2018-0913 CVE-2018-0914, CVE-2018-0915, CVE-2018-0916, CVE-2018-0917, CVE-2018-0923, CVE-2018-0944 and CVE-2018-0947. *************************************************************** Title: Use-after-free write vulnerability in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions - CVE-2018-4902 Severity: Medium Fixlet ID: 467801 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4678 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-4902 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. This vulnerability is an instance of a use after free vulnerability in the rendering engine. The vulnerability is triggered by a crafted PDF file containing a video annotation (and corresponding media files) that is activated by the embedded JavaScript. Successful exploitation could lead to arbitrary code execution. *************************************************************** Title: Use-after-free vulnerability in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions - CVE-2018-4911 Severity: Medium Fixlet ID: 468201 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4682 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-4911 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. This vulnerability is an instance of a use after free vulnerability in the JavaScript API related to bookmark functionality. The vulnerability is triggered by crafted JavaScript code embedded within a PDF file. A successful attack can lead to code corruption, control-flow hijack, or a code re-use attack. *************************************************************** Title: Heap Overflow write vulnerability in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions - CVE-2018-4904 Severity: Medium Fixlet ID: 468401 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4684 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-4904 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. This vulnerability is an instance of a heap overflow vulnerability. The vulnerability is triggered by crafted TIFF data within an XPS file, which causes an out of bounds memory access. An attacker can potentially leverage the vulnerability to corrupt sensitive data or execute arbitrary code. *************************************************************** Title: Scripting Engine Memory Corruption Vulnerability - CVE-2018-0893 Severity: High Fixlet ID: 469001 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4690 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0893 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Microsoft Edge in Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allows remote code execution, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique from CVE-2018-0876, CVE-2018-0889, CVE-2018-0925, and CVE-2018-0935. *************************************************************** Title: Chakra Scripting Engine Memory Corruption Vulnerability - CVE-2018-0933 Severity: High Fixlet ID: 469101 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4691 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0933 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: ChakraCore and Microsoft Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allows remote code execution, due to how the Chakra scripting engine handles objects in memory, aka "Chakra Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique from CVE-2018-0872, CVE-2018-0873, CVE-2018-0874, CVE-2018-0930, CVE-2018-0931, CVE-2018-0934, CVE-2018-0936, and CVE-2018-0937. *************************************************************** Title: Chakra Scripting Engine Memory Corruption Vulnerability - CVE-2018-0937 Severity: High Fixlet ID: 469301 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4693 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0937 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: ChakraCore and Microsoft Windows 10 1703 and 1709 allow remote code execution, due to how the Chakra scripting engine handles objects in memory, aka "Chakra Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique from CVE-2018-0872, CVE-2018-0873, CVE-2018-0874, CVE-2018-0930, CVE-2018-0931, CVE-2018-0933, CVE-2018-0934, and CVE-2018-0936. *************************************************************** Title: Chakra Scripting Engine Memory Corruption Vulnerability - CVE-2018-0936 Severity: High Fixlet ID: 469501 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4695 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0936 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: ChakraCore and Microsoft Windows 10 1709 allow remote code execution, due to how the Chakra scripting engine handles objects in memory, aka "Chakra Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique from CVE-2018-0872, CVE-2018-0873, CVE-2018-0874, CVE-2018-0930, CVE-2018-0931, CVE-2018-0933, CVE-2018-0934, and CVE-2018-0937. *************************************************************** Title: Chakra Scripting Engine Memory Corruption Vulnerability - CVE-2018-0874 Severity: High Fixlet ID: 469601 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4696 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0874 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: ChakraCore and Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allows remote code execution, due to how the Chakra scripting engine handles objects in memory, aka "Chakra Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique from CVE-2018-0872, CVE-2018-0873, CVE-2018-0930, CVE-2018-0931, CVE-2018-0933, CVE-2018-0934, CVE-2018-0936, and CVE-2018-0937. *************************************************************** Title: Chakra Scripting Engine Memory Corruption Vulnerability - CVE-2018-0931 Severity: High Fixlet ID: 469801 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4698 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0931 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: ChakraCore and Microsoft Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allows remote code execution, due to how the Chakra scripting engine handles objects in memory, aka "Chakra Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique from CVE-2018-0872, CVE-2018-0873, CVE-2018-0874, CVE-2018-0930, CVE-2018-0933, CVE-2018-0934, CVE-2018-0936, and CVE-2018-0937. *************************************************************** Title: Scripting Engine Memory Corruption Vulnerability - CVE-2018-0876 Severity: High Fixlet ID: 469901 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4699 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0876 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Microsoft Edge in Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allows remote code execution, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique from CVE-2018-0889, CVE-2018-0893, CVE-2018-0925, and CVE-2018-0935. *************************************************************** Title: Chakra Scripting Engine Memory Corruption Vulnerability - CVE-2018-0934 Severity: High Fixlet ID: 470001 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4700 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0934 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: ChakraCore and Microsoft Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allows remote code execution, due to how the Chakra scripting engine handles objects in memory, aka "Chakra Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique from CVE-2018-0872, CVE-2018-0873, CVE-2018-0874, CVE-2018-0930, CVE-2018-0931, CVE-2018-0933, CVE-2018-0936, and CVE-2018-0937. *************************************************************** Title: Microsoft Video Control Elevation of Privilege Vulnerability - CVE-2018-0883 Severity: High Fixlet ID: 470501 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4705 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0883 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Windows Shell in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, Windows Server 2016 and Windows Server, version 1709 allows a remote code execution vulnerability due to how file copy destinations are validated, aka "Windows Shell Remote Code Execution Vulnerability". *************************************************************** Title: Microsoft Browser Information Disclosure Vulnerability - CVE-2018-0927 Severity: Medium Fixlet ID: 472401 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4724 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0927 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, and Microsoft Edge and Internet Explorer in Windows 10 Gold, 1511, 1607, 1703, 1709, Windows Server 2016 and Windows Server, version 1709 allows information disclosure, due to how Microsoft browsers handle objects in memory, aka "Microsoft Browser Information Disclosure Vulnerability". *************************************************************** Title: Internet Explorer Information Disclosure Vulnerability - CVE-2018-0929 Severity: Medium Fixlet ID: 472501 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4725 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0929 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 SP2 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allow information disclosure, due to how Internet Explorer handles objects in memory, aka "Internet Explorer Information Disclosure Vulnerability". *************************************************************** Title: Microsoft Office Memory Corruption Vulnerability - CVE-2018-0922 Severity: High Fixlet ID: 475101 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4751 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0922 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Microsoft Office 2010 SP2, 2013 SP1, and 2016, Microsoft Office 2016 Click-to-Run Microsoft Office 2016 for Mac, Microsoft Office Compatibility Pack SP2, Microsoft Office Web Apps 2010 SP2, Microsoft Office Web Apps 2013 SP1, Microsoft Office Word Viewer, Microsoft SharePoint Enterprise Server 2013 SP1, Microsoft SharePoint Enterprise Server 2016, Microsoft Office Compatibility Pack SP2, Microsoft Online Server 2016, Microsoft SharePoint Server 2010 SP2, Microsoft Word 2007 SP3, Microsoft Word 2010 SP2, Word 2013 and Microsoft Word 2016 allow a remote code execution vulnerability due to how objects are handled in memory, aka "Microsoft Office Memory Corruption Vulnerability". *************************************************************** Title: Microsoft Access Remote Code Execution Vulnerability - CVE-2018-0903 Severity: Medium Fixlet ID: 475201 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4752 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0903 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Microsoft Access 2010 SP2, Microsoft Access 2013 SP1, Microsoft Access 2016, and Microsoft Office 2016 Click-to-Run allow a remote code execution vulnerability due to how objects are handled in memory, aka "Microsoft Access Remote Code Execution Vulnerability". *************************************************************** Title: Use after free in Flash - CVE-2017-11215 Severity: High Fixlet ID: 485301 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4853 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-11215 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Use after free in Flash. *************************************************************** Title: URL Spoof in OmniBox - CVE-2018-6078 Severity: Fixlet ID: 485401 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4854 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-6078 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: URL Spoof in OmniBox. *************************************************************** Title: Timing attack using SVG filters - CVE-2018-6077 Severity: Fixlet ID: 485501 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4855 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-6077 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Timing attack using SVG filters. *************************************************************** Title: Information disclosure via texture data in WebGL - CVE-2018-6079 Severity: Fixlet ID: 485601 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4856 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-6079 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Information disclosure via texture data in WebGL. From winvulns-announcements at bigmail.bigfix.com Fri Apr 20 05:21:35 2018 From: winvulns-announcements at bigmail.bigfix.com (Notification of New Vulnerabilties to Windows Systems Fixlet Messages) Date: Fri, 20 Apr 2018 05:21:35 -0700 Subject: [Winvulns-announcements] BES Auto Notification: New Fixlets Published in Fixlet Site: 'Vulnerabilities to Windows Systems' Message-ID: Fixlet Site - 'Vulnerabilities to Windows Systems' Current Version: 583 Published: Thu, 19 Apr 2018 18:23:04 GMT New Fixlets: ============ *************************************************************** Title: Microsoft Word Memory Corruption Vulnerability - CVE-2018-0797 Severity: High Fixlet ID: 390101 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A3901 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0797 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Microsoft Office 2010, Microsoft Office 2013, and Microsoft Office 2016 allow a remote code execution vulnerability due to the way RTF content is handled, aka "Microsoft Word Memory Corruption Vulnerability". *************************************************************** Title: Mixed content blocking incorrectly applies with redirects - CVE-2017-7835 Severity: Fixlet ID: 397401 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A3974 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-7835 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Mixed content blocking of insecure (HTTP) sub-resources in a secure (HTTPS) document was not correctly applied for resources that redirect from HTTPS to HTTP, allowing content that should be blocked, such as scripts, to be loaded on a page. *************************************************************** Title: Web worker in Private Browsing mode can write IndexedDB data - CVE-2017-7843 Severity: Fixlet ID: 400201 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4002 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-7843 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: When Private Browsing mode is used, it is possible for a web worker to write persistent data to IndexedDB and fingerprint a user uniquely. IndexedDB should not be available in Private Browsing mode and this stored data will persist across multiple private browsing mode sessions because it is not cleared when exiting. *************************************************************** Title: Cross-origin URL information leak through Resource Timing API - CVE-2017-7830 Severity: Fixlet ID: 400901 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4009 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-7830 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: The Resource Timing API incorrectly revealed navigations in cross-origin iframes. This is a same-origin policy violation and could allow for data theft of URLs loaded by users. *************************************************************** Title: Integer overflow in Blink - CVE-2018-6034 Severity: Fixlet ID: 406901 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4069 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-6034 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Integer overflow in Blink. *************************************************************** Title: Incomplete no-referrer policy implementation - CVE-2018-6052 Severity: Fixlet ID: 407101 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4071 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-6052 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Incomplete no-referrer policy implementation. *************************************************************** Title: URL spoof in OmniBox - CVE-2018-6042 Severity: Fixlet ID: 407602 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4076 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-6042 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: URL spoof in OmniBox. *************************************************************** Title: URL spoof in OmniBox - CVE-2018-6050 Severity: Fixlet ID: 407801 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4078 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-6050 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: URL spoof in OmniBox. *************************************************************** Title: Content security policy bypass - CVE-2018-6040 Severity: Fixlet ID: 408001 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4080 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-6040 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Content security policy bypass. *************************************************************** Title: Insufficient isolation of devtools from extensions - CVE-2018-6035 Severity: Fixlet ID: 408201 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4082 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-6035 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Insufficient isolation of devtools from extensions. *************************************************************** Title: Referrer leak in XSS Auditor - CVE-2018-6051 Severity: Fixlet ID: 408701 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4087 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-6051 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Referrer leak in XSS Auditor. *************************************************************** Title: Use after free in PDFium - CVE-2018-6031 Severity: Fixlet ID: 408901 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4089 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-6031 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Use after free in PDFium. *************************************************************** Title: URL spoof in Navigation - CVE-2018-6041 Severity: Fixlet ID: 409101 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4091 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-6041 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: URL spoof in Navigation. *************************************************************** Title: Background network requests can open HTTP authentication in unrelated foreground tabs - CVE-2018-5115 Severity: Fixlet ID: 409801 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4098 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-5115 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: If an HTTP authentication prompt is triggered by a background network request from a page or extension, it is displayed over the currently loaded foreground page. Although the prompt contains the real domain making the request, this can result in user confusion about the originating site of the authentication request and may cause users to mistakenly send private credential information to a third party site. *************************************************************** Title: Potential integer overflow in DoCrypt - CVE-2018-5122 Severity: Fixlet ID: 410001 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4100 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-5122 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: A potential integer overflow in the DoCrypt function of WebCrypto was identified. If a means was found of exploiting it, it could result in an out-of-bounds write. *************************************************************** Title: Reader view will load cross-origin content in violation of CORS headers - CVE-2018-5119 Severity: Fixlet ID: 410201 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4102 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-5119 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: The reader view will display cross-origin content when CORS headers are set to prohibit the loading of cross-origin content by a site. This could allow access to content that should be restricted in reader view. *************************************************************** Title: Microsoft Edge Security Feature Bypass Vulnerability - CVE-2018-0771 Severity: Medium Fixlet ID: 410701 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4107 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0771 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Microsoft Edge in Microsoft Windows 10 1607, 1703, and Windows Server 2016 allows a security feature bypass, due to how Edge handles different-origin requests, aka "Microsoft Edge Security Feature Bypass". *************************************************************** Title: Microsoft Edge Information Disclosure Vulnerability - CVE-2018-0763 Severity: Low Fixlet ID: 410801 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4108 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0763 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Microsoft Edge in Microsoft Windows 10 1703 and 1709 allows information disclosure, due to how Edge handles objects in memory, aka "Microsoft Edge Information Disclosure Vulnerability". This CVE ID is unique from CVE-2018-0839. *************************************************************** Title: Scripting Engine Memory Corruption Vulnerability - CVE-2018-0857 Severity: High Fixlet ID: 412201 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4122 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0857 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Microsoft Edge and ChakraCore in Microsoft Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allows remote code execution, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique from CVE-2018-0834, CVE-2018-0835, CVE-2018-0836, CVE-2018-0837, CVE-2018-0838, CVE-2018-0840, CVE-2018-0856, CVE-2018-0858, CVE-2018-0859, CVE-2018-0860, CVE-2018-0861, and CVE-2018-0866. *************************************************************** Title: Scripting Engine Memory Corruption Vulnerability - CVE-2018-0836 Severity: High Fixlet ID: 412401 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4124 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0836 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Microsoft Edge and ChakraCore in Microsoft Windows 10 1703 and 1709 allows remote code execution, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique from CVE-2018-0834, CVE-2018-0835, CVE-2018-0837, CVE-2018-0838, CVE-2018-0840, CVE-2018-0856, CVE-2018-0857, CVE-2018-0858, CVE-2018-0859, CVE-2018-0860, CVE-2018-0861, and CVE-2018-0866. *************************************************************** Title: Scripting Engine Memory Corruption Vulnerability - CVE-2018-0856 Severity: High Fixlet ID: 412601 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4126 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0856 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Microsoft Edge and ChakraCore in Microsoft Windows 10 1703 and 1709 allows remote code execution, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique from CVE-2018-0834, CVE-2018-0835, CVE-2018-0836, CVE-2018-0837, CVE-2018-0838, CVE-2018-0840, CVE-2018-0857, CVE-2018-0858, CVE-2018-0859, CVE-2018-0860, CVE-2018-0861, and CVE-2018-0866. *************************************************************** Title: Windows Kernel Information Disclosure Vulnerability - CVE-2018-0829 Severity: Low Fixlet ID: 413301 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4133 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0829 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: The Windows kernel in Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2008 SP2 and R2 SP1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703 and 1709, Windows Server 2016 and Windows Server, version 1709 allows an information disclosure vulnerability due to how objects in memory are handled, aka "Windows Information Disclosure Vulnerability". This CVE is unique from CVE-2018-0830 and CVE-2018-0832. *************************************************************** Title: Windows Kernel Information Disclosure Vulnerability - CVE-2018-0830 Severity: Low Fixlet ID: 413501 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4135 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0830 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: The Windows kernel in Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2008 SP2 and R2 SP1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703 and 1709, Windows Server 2016 and Windows Server, version 1709 allows an information disclosure vulnerability due to how objects in memory are handled, aka "Windows Information Disclosure Vulnerability". This CVE is unique from CVE-2018-0829 and CVE-2018-0832. *************************************************************** Title: Windows Kernel Information Disclosure Vulnerability - CVE-2018-0843 Severity: Low Fixlet ID: 413701 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4137 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0843 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: The Windows kernel in Windows 10 version 1709 and Windows Server, version 1709 allows an information disclosure vulnerability due to how objects in memory are handled, aka "Windows Kernel Information Disclosure Vulnerability". This CVE is unique from CVE-2018-0742, CVE-2018-0756, CVE-2018-0809 and CVE-2018-0820. *************************************************************** Title: Scripting Engine Memory Corruption Vulnerability - CVE-2018-0866 Severity: High Fixlet ID: 414101 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4141 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0866 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allows remote code execution, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique from CVE-2018-0834, CVE-2018-0835, CVE-2018-0836, CVE-2018-0837, CVE-2018-0838, CVE-2018-0840, CVE-2018-0856, CVE-2018-0857, CVE-2018-0858, CVE-2018-0859, CVE-2018-0860, and CVE-2018-0861. *************************************************************** Title: Windows EOT Font Engine Information Disclosure Vulnerability - CVE-2018-0855 Severity: Medium Fixlet ID: 414201 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4142 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0855 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: The Microsoft Windows Embedded OpenType (EOT) font engine in Microsoft Windows 7 SP1 and Windows Server 2008 R2 allows information disclosure, due to how the Windows EOT font engine handles embedded fonts, aka "Windows EOT Font Engine Information Disclosure Vulnerability". *************************************************************** Title: Windows EOT Font Engine Information Disclosure Vulnerability - CVE-2018-0760 Severity: Low Fixlet ID: 414401 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4144 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0760 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: The Microsoft Windows Embedded OpenType (EOT) font engine in Microsoft Windows 7 SP1, Windows Server 2008 R2, and Windows Server 2012 allows information disclosure, due to how the Windows EOT font engine handles embedded fonts, aka "Windows EOT Font Engine Information Disclosure Vulnerability". *************************************************************** Title: Integer overflow in Skia library during edge builder allocation - CVE-2018-5095 Severity: Fixlet ID: 415801 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4158 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-5095 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: An integer overflow vulnerability in the Skia library when allocating memory for edge builders on some systems with at least 8 GB of RAM. This results in the use of uninitialized memory, resulting in a potentially exploitable crash. *************************************************************** Title: Use-after-free with DTMF timers - CVE-2018-5091 Severity: Fixlet ID: 415901 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4159 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-5091 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: A use-after-free vulnerability can occur during WebRTC connections when interacting with the DTMF timers. This results in a potentially exploitable crash. *************************************************************** Title: Windows Common Log File System Driver Elevation of Privilege Vulnerability - CVE-2018-0846 Severity: Medium Fixlet ID: 416101 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4161 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0846 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: The Windows Common Log File System (CLFS) driver in Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2008 SP2 and R2 SP1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703 and 1709, Windows Server 2016 and Windows Server, version 1709 allows an elevation of privilege vulnerability due to how objects in memory are handled, aka "Windows Common Log File System Driver Elevation Of Privilege Vulnerability". *************************************************************** Title: Windows Elevation of Privilege Vulnerability - CVE-2018-0828 Severity: Medium Fixlet ID: 416601 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4166 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0828 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Windows 10 version 1607 and Windows Server 2016 allow an elevation of privilege vulnerability due to how the MultiPoint management account password is stored, aka "Windows Elevation of Privilege Vulnerability". *************************************************************** Title: StructuredQuery Remote Code Execution Vulnerability - CVE-2018-0825 Severity: High Fixlet ID: 416801 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4168 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0825 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: StructuredQuery in Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2008 SP2 and R2 SP1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703 and 1709, Windows Server 2016 and Windows Server, version 1709 allows a remote code execution vulnerability due to how objects are handled in memory, aka "StructuredQuery Remote Code Execution Vulnerability". *************************************************************** Title: Windows Security Feature Bypass Vulnerability - CVE-2018-0827 Severity: Medium Fixlet ID: 417001 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4170 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0827 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Windows Scripting Host (WSH) in Windows 10 versions 1703 and 1709 and Windows Server, version 1709 allows a Device Guard security feature bypass vulnerability due to the way objects are handled in memory, aka "Windows Security Feature Bypass Vulnerability". *************************************************************** Title: Windows Kernel Elevation of Privilege Vulnerability - CVE-2018-0756 Severity: Medium Fixlet ID: 417201 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4172 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0756 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: The Windows kernel in Windows 10 Gold, 1511, 1607, 1703 and 1709, Windows Server 2016 and Windows Server, version 1709 allows an elevation of privilege vulnerability due to the way objects are handled in memory, aka "Windows Kernel Elevation of Privilege Vulnerability". This CVE is unique from CVE-2018-0742, CVE-2018-0809, CVE-2018-0820 and CVE-2018-0843. *************************************************************** Title: Windows Kernel Elevation of Privilege Vulnerability - CVE-2018-0742 Severity: Medium Fixlet ID: 417401 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4174 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0742 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: The Windows kernel in Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2008 SP2 and R2 SP1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703 and 1709, Windows Server 2016 and Windows Server, version 1709 allows an elevation of privilege vulnerability due to the way objects are handled in memory, aka "Windows Kernel Elevation of Privilege Vulnerability". This CVE is unique from CVE-2018-0756. CVE-2018-0809, CVE-2018-0820 and CVE-2018-0843. *************************************************************** Title: Out-of-bounds read vulnerability in Adobe Acrobat Reader 2018.009.20050 and earlier, 2017.011.30070 and earlier, 2015.006.30394 and earlier - CVE-2018-4896 Severity: Medium Fixlet ID: 459001 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4590 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-4896 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. This vulnerability occurs as a result of computation that reads data that is past the end of the target buffer; the computation is part of the image conversion module that handles Enhanced Metafile Format Plus (EMF+) data. A successful attack can lead to sensitive data exposure. *************************************************************** Title: Out-of-bounds read vulnerability in Adobe Acrobat Reader 2018.009.20050 and earlier, 2017.011.30070 and earlier, 2015.006.30394 and earlier - CVE-2018-4905 Severity: Medium Fixlet ID: 459101 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4591 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-4905 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. This vulnerability occurs as a result of computation that reads data that is past the end of the target buffer; the computation is part of TIFF processing within the XPS module. A successful attack can lead to sensitive data exposure. *************************************************************** Title: Out-of-bounds read vulnerability in Adobe Acrobat Reader 2018.009.20050 and earlier, 2017.011.30070 and earlier, 2015.006.30394 and earlier - CVE-2018-4907 Severity: Medium Fixlet ID: 459202 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4592 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-4907 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. This vulnerability occurs as a result of computation that reads data that is past the end of the target buffer; the computation is part of the TIFF processing in the XPS module. A successful attack can lead to sensitive data exposure. *************************************************************** Title: Vulnerability in Adobe Acrobat/Reader 2018.009.20050 and earlier, 2017.011.30070 and earlier, 2015.006.30394 and earlier - CVE-2018-4883 Severity: Medium Fixlet ID: 459901 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4599 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-4883 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. This vulnerability occurs because of computation that reads data that is past the end of the target buffer; the computation is part of the image conversion engine that handles Enhanced Metafile Format (EMF). A successful attack can lead to sensitive data exposure. *************************************************************** Title: Vulnerability in Adobe Acrobat/Reader 2018.009.20050 and earlier, 2017.011.30070 and earlier, 2015.006.30394 and earlier - CVE-2018-4882 Severity: Medium Fixlet ID: 460201 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4602 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-4882 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. This vulnerability occurs as a result of computation that reads data that is past the end of the target buffer; the computation is part of the string literal parser. A successful attack can lead to sensitive data exposure. *************************************************************** Title: Vulnerability in Adobe Acrobat/Reader 2018.009.20050 and earlier, 2017.011.30070 and earlier, 2015.006.30394 and earlier - CVE-2018-4881 Severity: Medium Fixlet ID: 460401 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4604 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-4881 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. This vulnerability occurs as a result of computation that reads data that is past the end of the target buffer; the computation is part of the image conversion module that reads bitmap image file (BMP) data. A successful attack can lead to sensitive data exposure. *************************************************************** Title: Vulnerability in Adobe Acrobat/Reader 2018.009.20050 and earlier, 2017.011.30070 and earlier, 2015.006.30394 and earlier - CVE-2018-4886 Severity: Medium Fixlet ID: 461601 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4616 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-4886 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. This vulnerability occurs as a result of computation that reads data that is past the end of the target buffer; the computation occurs in the image conversion engine when processing Enhanced Metafile Format (EMF) data related to handling of bitmap rectangles. A successful attack can lead to sensitive data exposure. *************************************************************** Title: Vulnerability in Adobe Acrobat/Reader 2018.009.20050 and earlier, 2017.011.30070 and earlier, 2015.006.30394 and earlier - CVE-2018-4884 Severity: Medium Fixlet ID: 461901 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4619 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-4884 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. This vulnerability occurs as a result of computation that reads data that is past the end of the target buffer; the computation is part of the image conversion engine when processing Enhanced Metafile Format (EMF) data that embeds an image in the bitmap (BMP) file format. A successful attack can lead to sensitive data exposure. *************************************************************** Title: Vulnerability in Adobe Acrobat/Reader 2018.009.20050 and earlier, 2017.011.30070 and earlier, 2015.006.30394 and earlier - CVE-2018-4887 Severity: Medium Fixlet ID: 462001 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4620 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-4887 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. This vulnerability occurs as a result of computation that reads data that is past the end of the target buffer; the computation is part of the Unicode mapping module that is invoked when processing Enhanced Metafile Format (EMF) data (during image conversion). A successful attack can lead to sensitive data exposure. *************************************************************** Title: Vulnerability in Adobe Acrobat/Reader 2018.009.20050 and earlier, 2017.011.30070 and earlier, 2015.006.30394 and earlier - CVE-2018-4893 Severity: Medium Fixlet ID: 462201 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4622 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-4893 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. This vulnerability occurs as a result of computation that reads data that is past the end of the target buffer; the computation is part of XPS font processing. A successful attack can lead to sensitive data exposure. *************************************************************** Title: Windows GDI Elevation of Privilege Vulnerability - CVE-2018-0817 Severity: Medium Fixlet ID: 464001 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4640 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0817 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: The Windows Graphics Device Interface (GDI) in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and 1709, Windows Server 2016 and Windows Server, version 1709 allows an elevation of privilege vulnerability due to the way objects are handled in memory, aka "Windows GDI Elevation of Privilege Vulnerability". This CVE is unique from CVE-2018-0815 and CVE-2018-0816. *************************************************************** Title: Windows GDI Elevation of Privilege Vulnerability - CVE-2018-0816 Severity: Medium Fixlet ID: 464601 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4646 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0816 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: The Windows Graphics Device Interface (GDI) in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and 1709, Windows Server 2016 and Windows Server, version 1709 allows an elevation of privilege vulnerability due to the way objects are handled in memory, aka "Windows GDI Elevation of Privilege Vulnerability". This CVE is unique from CVE-2018-0815 and CVE-2018-0817. *************************************************************** Title: Windows Kernel Information Disclosure Vulnerability - CVE-2018-0899 Severity: Low Fixlet ID: 464801 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4648 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0899 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: The Windows kernel in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and 1709, Windows Server 2016 and Windows Server, version 1709 allows an information disclosure vulnerability due to the way memory addresses are handled, aka "Windows Kernel Information Disclosure Vulnerability". This CVE is unique from CVE-2018-0811, CVE-2018-0813, CVE-2018-0814, CVE-2018-0894, CVE-2018-0895, CVE-2018-0896, CVE-2018-0897, CVE-2018-0898, CVE-2018-0900, CVE-2018-0901 and CVE-2018-0926. *************************************************************** Title: Windows Kernel Information Disclosure Vulnerability - CVE-2018-0811 Severity: Low Fixlet ID: 465001 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4650 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0811 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: The Windows kernel in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and 1709, Windows Server 2016 and Windows Server, version 1709 allows an information disclosure vulnerability due to the way objects are initialized in memory, aka "Windows Kernel Information Disclosure Vulnerability". This CVE is unique from CVE-2018-0813, CVE-2018-0814, CVE-2018-0894, CVE-2018-0895, CVE-2018-0896, CVE-2018-0897, CVE-2018-0898, CVE-2018-0899, CVE-2018-0900, CVE-2018-0901 and CVE-2018-0926. *************************************************************** Title: Windows Kernel Information Disclosure Vulnerability - CVE-2018-0901 Severity: Low Fixlet ID: 465101 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4651 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0901 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: The Windows kernel in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and 1709, Windows Server 2016 and Windows Server, version 1709 allows an information disclosure vulnerability due to the way memory addresses are handled, aka "Windows Kernel Information Disclosure Vulnerability". This CVE is unique from CVE-2018-0811, CVE-2018-0813, CVE-2018-0814, CVE-2018-0894, CVE-2018-0895, CVE-2018-0896, CVE-2018-0897, CVE-2018-0898, CVE-2018-0899, CVE-2018-0900, and CVE-2018-0926. *************************************************************** Title: Microsoft SharePoint Elevation of Privilege Vulnerability - CVE-2018-0923 Severity: Medium Fixlet ID: 466101 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4661 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0923 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Microsoft SharePoint Enterprise Server 2016 allows an elevation of privilege vulnerability to due how specially crafted web requests are sanitized, aka "Microsoft SharePoint Elevation of Privilege Vulnerability". This CVE is unique from CVE-2018-0909, CVE-2018-0910. CVE-2018-0911, CVE-2018-0912, CVE-2018-0913 CVE-2018-0914, CVE-2018-0915, CVE-2018-0916, CVE-2018-0917, CVE-2018-0921, CVE-2018-0944 and CVE-2018-0947. *************************************************************** Title: Use-after-free vulnerability in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions - CVE-2018-4913 Severity: Medium Fixlet ID: 466201 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4662 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-4913 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. This vulnerability is an instance of a use after free vulnerability in the XFA engine, related to DOM manipulation. The vulnerability is triggered by crafted XFA script definitions in a PDF file. Successful exploitation could lead to arbitrary code execution. *************************************************************** Title: Type Confusion (RCE) vulnerability in Adobe Flash Player before 29.0.0.113 - CVE-2018-4920 Severity: Fixlet ID: 466601 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4666 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-4920 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Type Confusion (RCE) vulnerability in Adobe Flash Player before 29.0.0.113 *************************************************************** Title: Microsoft SharePoint Elevation of Privilege Vulnerability - CVE-2018-0917 Severity: Medium Fixlet ID: 466801 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4668 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0917 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Microsoft SharePoint Enterprise Server 2016 allows an elevation of privilege vulnerability to due how specially crafted web requests are sanitized, aka "Microsoft SharePoint Elevation of Privilege Vulnerability". This CVE is unique from CVE-2018-0909, CVE-2018-0910. CVE-2018-0911, CVE-2018-0912, CVE-2018-0913 CVE-2018-0914, CVE-2018-0915, CVE-2018-0916, CVE-2018-0921, CVE-2018-0923, CVE-2018-0944 and CVE-2018-0947. *************************************************************** Title: Out-of-bounds write vulnerability in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions - CVE-2018-4879 Severity: High Fixlet ID: 467601 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4676 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-4879 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. The vulnerability is caused by the computation that writes data past the end of the intended buffer; the computation is part of the image conversion module that processes Enhanced Metafile Format Plus (EMF+) data. An attacker can potentially leverage the vulnerability to corrupt sensitive data or execute arbitrary code. *************************************************************** Title: Out-of-bounds write vulnerability in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions - CVE-2018-4901 Severity: Medium Fixlet ID: 467701 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4677 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-4901 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. The vulnerability is caused by the computation that writes data past the end of the intended buffer; the computation is part of the document identity representation. An attacker can potentially leverage the vulnerability to corrupt sensitive data or execute arbitrary code. *************************************************************** Title: Heap Overflow vulnerability in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions - CVE-2018-4890 Severity: Medium Fixlet ID: 467901 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4679 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-4890 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. This vulnerability is an instance of a heap overflow vulnerability in the image conversion engine, when handling JPEG data embedded within an XPS file. A successful attack can lead to code corruption, control-flow hijack, or an information leak attack. *************************************************************** Title: Heap Overflow vulnerability in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions - CVE-2018-4910 Severity: Medium Fixlet ID: 468101 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4681 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-4910 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. This vulnerability is an instance of a heap overflow vulnerability in the JavaScript engine. The vulnerability is triggered by a PDF file with crafted JavaScript code that manipulates the optional content group (OCG). A successful attack can lead to code corruption, control-flow hijack, or a code re-use attack. *************************************************************** Title: Use-after-free vulnerability in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions - CVE-2018-4888 Severity: Medium Fixlet ID: 468601 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4686 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-4888 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. This vulnerability is an instance of a use after free vulnerability. The vulnerability is triggered by a crafted PDF file that can cause a memory access violation exception in the XFA engine because of a dangling reference left as a consequence of freeing an object in the computation that manipulates internal nodes in a graph representation of a document object model used in XFA. Successful exploitation could lead to arbitrary code execution. *************************************************************** Title: Windows Desktop Bridge VFS Elevation of Privilege Vulnerability - CVE-2018-0877 Severity: High Fixlet ID: 468801 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4688 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0877 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: The Desktop Bridge Virtual File System (VFS) in Windows 10 1607, 1703, and 1709, Windows Server 2016 and Windows Server, version 1709 allows an elevation of privilege vulnerability due to how file paths are managed, aka "Windows Desktop Bridge VFS Elevation of Privilege Vulnerability". *************************************************************** Title: Chakra Scripting Engine Memory Corruption Vulnerability - CVE-2018-0872 Severity: High Fixlet ID: 469201 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4692 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0872 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: ChakraCore and Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allows remote code execution, due to how the Chakra scripting engine handles objects in memory, aka "Chakra Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique from CVE-2018-0873, CVE-2018-0874, CVE-2018-0930, CVE-2018-0931, CVE-2018-0933, CVE-2018-0934, CVE-2018-0936, and CVE-2018-0937. *************************************************************** Title: Scripting Engine Memory Corruption Vulnerability - CVE-2018-0925 Severity: High Fixlet ID: 469401 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4694 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0925 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: ChakraCore allows remote code execution, due to how the ChakraCore scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique from CVE-2018-0876, CVE-2018-0889, CVE-2018-0893, and CVE-2018-0935. *************************************************************** Title: Chakra Scripting Engine Memory Corruption Vulnerability - CVE-2018-0930 Severity: High Fixlet ID: 469701 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4697 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0930 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: ChakraCore and Microsoft Edge in Microsoft Windows 10 1709 allows remote code execution, due to how the Chakra scripting engine handles objects in memory, aka "Chakra Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique from CVE-2018-0872, CVE-2018-0873, CVE-2018-0874, CVE-2018-0931, CVE-2018-0933, CVE-2018-0934, CVE-2018-0936, and CVE-2018-0937. *************************************************************** Title: Chakra Scripting Engine Memory Corruption Vulnerability - CVE-2018-0873 Severity: High Fixlet ID: 470101 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4701 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0873 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: ChakraCore and Microsoft Edge in Microsoft Windows 10 1511, 1607, 1703, 1709, and Windows Server 2016 allows remote code execution, due to how the Chakra scripting engine handles objects in memory, aka "Chakra Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique from CVE-2018-0872, CVE-2018-0874, CVE-2018-0930, CVE-2018-0931, CVE-2018-0933, CVE-2018-0934, CVE-2018-0936, and CVE-2018-0937. *************************************************************** Title: Scripting Engine Information Disclosure Vulnerability - CVE-2018-0939 Severity: Medium Fixlet ID: 470202 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4702 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0939 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: ChakraCore and Microsoft Edge in Windows 10 1703 and 1709 allow information disclosure, due to how the scripting engine handles objects in memory, aka "Scripting Engine Information Disclosure Vulnerability". This CVE ID is unique from CVE-2018-0891. *************************************************************** Title: Hyper-V Information Disclosure Vulnerability - CVE-2018-0888 Severity: Medium Fixlet ID: 470401 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4704 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0888 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: The Microsoft Hyper-V Network Switch in 64-bit versions of Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and 1709, Windows Server 2016 and Windows Server, version 1709 allows an information disclosure vulnerability due to how guest operating system input is validated, aka "Hyper-V Information Disclosure Vulnerability". *************************************************************** Title: Windows Remote Assistance Information Disclosure Vulnerability - CVE-2018-0878 Severity: Low Fixlet ID: 470602 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4706 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0878 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Windows Remote Assistance in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and 1709, Windows Server 2016 and Windows Server, version 1709 allows an information disclosure vulnerability due to how XML External Entities (XXE) are processed, aka "Windows Remote Assistance Information Disclosure Vulnerability". *************************************************************** Title: Scripting Engine Memory Corruption Vulnerability - CVE-2018-0935 Severity: High Fixlet ID: 471901 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4719 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0935 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allows remote code execution, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique from CVE-2018-0876, CVE-2018-0889, CVE-2018-0893, and CVE-2018-0925. *************************************************************** Title: Scripting Engine Memory Corruption Vulnerability - CVE-2018-0889 Severity: High Fixlet ID: 472001 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4720 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0889 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Microsoft Edge in Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allows remote code execution, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique from CVE-2018-0876, CVE-2018-0893, CVE-2018-0925, and CVE-2018-0935. *************************************************************** Title: Scripting Engine Information Disclosure Vulnerability - CVE-2018-0891 Severity: Medium Fixlet ID: 472101 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4721 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0891 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: ChakraCore, and Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, and Internet Explorer and Microsoft Edge in Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allow information disclosure, due to how the scripting engine handles objects in memory, aka "Scripting Engine Information Disclosure Vulnerability". This CVE ID is unique from CVE-2018-0939. *************************************************************** Title: Internet Explorer Elevation of Privilege Vulnerability - CVE-2018-0942 Severity: Low Fixlet ID: 472201 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4722 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0942 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 SP2 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allow elevation of privilege, due to how Internet Explorer handles zone and integrity settings, aka "Internet Explorer Elevation of Privilege Vulnerability". *************************************************************** Title: Microsoft Edge Information Disclosure Vulnerability - CVE-2018-0879 Severity: Medium Fixlet ID: 472301 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4723 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0879 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Microsoft Edge in Windows 10 1709 allows information disclosure, due to how Edge handles objects in memory, aka "Microsoft Edge Information Disclosure Vulnerability". *************************************************************** Title: Microsoft Browser Information Disclosure Vulnerability - CVE-2018-0932 Severity: Medium Fixlet ID: 472602 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4726 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0932 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, and Microsoft Edge and Internet Explorer in Windows 10 Gold, 1511, 1607, 1703, 1709, Windows Server 2016 and Windows Server, version 1709 allows information disclosure, due to how Microsoft browsers handle objects in memory, aka "Microsoft Browser Information Disclosure Vulnerability". *************************************************************** Title: Windows Kernel Information Disclosure Vulnerability - CVE-2018-0926 Severity: Low Fixlet ID: 472701 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4727 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0926 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: The Windows kernel in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and 1709, Windows Server 2016 and Windows Server, version 1709 allows an information disclosure vulnerability due to the way memory addresses are handled, aka "Windows Kernel Information Disclosure Vulnerability". This CVE is unique from CVE-2018-0811, CVE-2018-0813, CVE-2018-0814, CVE-2018-0894, CVE-2018-0895, CVE-2018-0896, CVE-2018-0897, CVE-2018-0898, CVE-2018-0899, CVE-2018-0900, and CVE-2018-0901. *************************************************************** Title: Use after free in Blink - CVE-2018-6060 Severity: Fixlet ID: 472901 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4729 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-6060 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Use after free in Blink. *************************************************************** Title: Incorrect permissions on shared memory - CVE-2018-6063 Severity: Fixlet ID: 473002 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4730 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-6063 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Incorrect permissions on shared memory. *************************************************************** Title: Incorrect permissions on shared memory - CVE-2018-6057 Severity: Fixlet ID: 473301 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4733 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-6057 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Incorrect permissions on shared memory. *************************************************************** Title: Integer overflow in V8 - CVE-2018-6065 Severity: Fixlet ID: 473501 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4735 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-6065 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Integer overflow in V8. *************************************************************** Title: Heap buffer overflow in Skia - CVE-2018-6062 Severity: Fixlet ID: 473601 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4736 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-6062 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Heap buffer overflow in Skia. *************************************************************** Title: Microsoft Exchange Elevation of Privilege Vulnerability - CVE-2018-0941 Severity: Medium Fixlet ID: 475701 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4757 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0941 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Microsoft Exchange Server 2016 Cumulative Update 7 and Microsoft Exchange Server 2016 Cumulative Update 8 allow an information disclosure vulnerability due to how data is imported, aka "Microsoft Exchange Information Disclosure Vulnerability". This CVE is unique from CVE-2018-0924. *************************************************************** Title: Incorrect processing of AppManifests - CVE-2018-6083 Severity: Fixlet ID: 485001 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4850 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-6083 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Incorrect processing of AppManifests. *************************************************************** Title: Circumvention of port blocking - CVE-2018-6082 Severity: Fixlet ID: 485101 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4851 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-6082 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Circumvention of port blocking. *************************************************************** Title: Use after free in Flash - CVE-2017-11225 Severity: High Fixlet ID: 485201 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4852 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-11225 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Use after free in Flash. *************************************************************** Title: Information disclosure in IPC call - CVE-2018-6080 Severity: Fixlet ID: 485701 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4857 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-6080 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Information disclosure in IPC call. *************************************************************** Title: XSS in interstitials - CVE-2018-6081 Severity: Fixlet ID: 485801 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4858 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-6081 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: XSS in interstitials. From winvulns-announcements at bigmail.bigfix.com Tue Apr 24 05:21:31 2018 From: winvulns-announcements at bigmail.bigfix.com (Notification of New Vulnerabilties to Windows Systems Fixlet Messages) Date: Tue, 24 Apr 2018 05:21:31 -0700 Subject: [Winvulns-announcements] BES Auto Notification: New Fixlets Published in Fixlet Site: 'Vulnerabilities to Windows Systems' Message-ID: Fixlet Site - 'Vulnerabilities to Windows Systems' Current Version: 584 Published: Mon, 23 Apr 2018 19:43:31 GMT New Fixlets: ============ *************************************************************** Title: Universal XSS in Blink - CVE-2016-5208 Severity: Medium Fixlet ID: 155401 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1554 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-5208 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Blink in Google Chrome prior to 55.0.2883.75 for Linux and Windows, and 55.0.2883.84 for Android allowed possible corruption of the DOM tree during synchronous event handling, which allowed a remote attacker to inject arbitrary scripts or HTML (UXSS) via a crafted HTML page. *************************************************************** Title: Use after free in PDFium - CVE-2016-5203 Severity: Medium Fixlet ID: 155502 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1555 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-5203 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: A use after free in PDFium in Google Chrome prior to 55.0.2883.75 for Mac, Windows and Linux, and 55.0.2883.84 for Android allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file. *************************************************************** Title: Local file disclosure in DevTools - CVE-2016-5212 Severity: Medium Fixlet ID: 155602 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1556 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-5212 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Google Chrome prior to 55.0.2883.75 for Mac, Windows and Linux, and 55.0.2883.84 for Android insufficiently sanitized DevTools URLs, which allowed a remote attacker to read local files via a crafted HTML page. *************************************************************** Title: Universal XSS in Blink - CVE-2016-5205 Severity: Medium Fixlet ID: 155702 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1557 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-5205 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Blink in Google Chrome prior to 55.0.2883.75 for Linux, Windows and Mac, incorrectly handles deferred page loads, which allowed a remote attacker to inject arbitrary scripts or HTML (UXSS) via a crafted HTML page. *************************************************************** Title: CSP Referrer disclosure - CVE-2016-9650 Severity: Medium Fixlet ID: 155902 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1559 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-9650 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Blink in Google Chrome prior to 55.0.2883.75 for Mac, Windows and Linux, and 55.0.2883.84 for Android incorrectly handled iframes, which allowed a remote attacker to bypass a no-referrer policy via a crafted HTML page. *************************************************************** Title: Same-origin bypass in PDFium - CVE-2016-5206 Severity: Medium Fixlet ID: 156001 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1560 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-5206 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: The PDF plugin in Google Chrome prior to 55.0.2883.75 for Mac, Windows and Linux, and 55.0.2883.84 for Android incorrectly followed redirects, which allowed a remote attacker to bypass the Same Origin Policy via a crafted HTML page. *************************************************************** Title: Universal XSS in Blink - CVE-2016-5204 Severity: Medium Fixlet ID: 156102 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1561 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-5204 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Leaking of an SVG shadow tree leading to corruption of the DOM tree in Blink in Google Chrome prior to 55.0.2883.75 for Mac, Windows and Linux, and 55.0.2883.84 for Android allowed a remote attacker to inject arbitrary scripts or HTML (UXSS) via a crafted HTML page. *************************************************************** Title: Universal XSS in Blink - CVE-2016-5207 Severity: Medium Fixlet ID: 156302 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1563 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-5207 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: In Blink in Google Chrome prior to 55.0.2883.75 for Mac, Windows and Linux, and 55.0.2883.84 for Android, corruption of the DOM tree could occur during the removal of a full screen element, which allowed a remote attacker to achieve arbitrary code execution via a crafted HTML page. *************************************************************** Title: Use after free in V8 - CVE-2016-5213 Severity: Medium Fixlet ID: 156402 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1564 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-5213 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: A use after free in V8 in Google Chrome prior to 55.0.2883.75 for Mac, Windows and Linux, and 55.0.2883.84 for Android allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. *************************************************************** Title: Out of bounds write in PDFium - CVE-2016-5210 Severity: Medium Fixlet ID: 156501 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1565 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-5210 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Heap buffer overflow during TIFF image parsing in PDFium in Google Chrome prior to 55.0.2883.75 for Mac, Windows and Linux, and 55.0.2883.84 for Android allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file. *************************************************************** Title: Use after free in PDFium - CVE-2016-5211 Severity: Medium Fixlet ID: 156601 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1566 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-5211 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: A use after free in PDFium in Google Chrome prior to 55.0.2883.75 for Mac, Windows and Linux, and 55.0.2883.84 for Android allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file. *************************************************************** Title: Out of bounds write in Blink - CVE-2016-5209 Severity: Medium Fixlet ID: 156702 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1567 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-5209 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Bad casting in bitmap manipulation in Blink in Google Chrome prior to 55.0.2883.75 for Mac, Windows and Linux, and 55.0.2883.84 for Android allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. *************************************************************** Title: Integer overflow in PDFium in Google Chrome prior to 55.0.2883.75 for Mac, Windows - CVE-2016-5223 Severity: Medium Fixlet ID: 156802 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1568 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-5223 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Integer overflow in PDFium in Google Chrome prior to 55.0.2883.75 for Mac, Windows and Linux, and 55.0.2883.84 for Android allowed a remote attacker to potentially exploit heap corruption or DoS via a crafted PDF file. *************************************************************** Title: Blink in Google Chrome prior to 55.0.2883.75 for Mac, Windows - CVE-2016-5225 Severity: Medium Fixlet ID: 156902 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1569 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-5225 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Blink in Google Chrome prior to 55.0.2883.75 for Mac, Windows and Linux, and 55.0.2883.84 for Android incorrectly handled form actions, which allowed a remote attacker to bypass Content Security Policy via a crafted HTML page. *************************************************************** Title: The extensions API in Google Chrome prior to 55.0.2883.75 for Mac, Windows - CVE-2016-5217 Severity: Medium Fixlet ID: 157002 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1570 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-5217 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: The extensions API in Google Chrome prior to 55.0.2883.75 for Mac, Windows and Linux, and 55.0.2883.84 for Android incorrectly permitted access to privileged plugins, which allowed a remote attacker to bypass site isolation via a crafted HTML page. *************************************************************** Title: Blink in Google Chrome prior to 55.0.2883.75 for Linux, Windows - CVE-2016-5226 Severity: Medium Fixlet ID: 157102 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1571 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-5226 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Blink in Google Chrome prior to 55.0.2883.75 for Linux, Windows and Mac executed javascript: URLs entered in the URL bar in the context of the current tab, which allowed a socially engineered user to XSS themselves by dragging and dropping a javascript: URL into the URL bar. *************************************************************** Title: A heap use after free in V8 in Google Chrome prior to 55.0.2883.75 for Mac, Windows - CVE-2016-5219 Severity: Medium Fixlet ID: 157201 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1572 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-5219 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: A heap use after free in V8 in Google Chrome prior to 55.0.2883.75 for Mac, Windows and Linux, and 55.0.2883.84 for Android allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. *************************************************************** Title: Google Chrome prior to 55.0.2883.75 for Windows mishandled downloaded files - CVE-2016-5214 Severity: Medium Fixlet ID: 157301 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1573 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-5214 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Google Chrome prior to 55.0.2883.75 for Windows mishandled downloaded files, which allowed a remote attacker to prevent the downloaded file from receiving the Mark of the Web via a crafted HTML page. *************************************************************** Title: The extensions API in Google Chrome prior to 55.0.2883.75 for Mac, Windows - CVE-2016-5218 Severity: Medium Fixlet ID: 157402 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1574 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-5218 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: The extensions API in Google Chrome prior to 55.0.2883.75 for Mac, Windows and Linux, and 55.0.2883.84 for Android incorrectly handled navigation within PDFs, which allowed a remote attacker to temporarily spoof the contents of the Omnibox (URL bar) via a crafted HTML page containing PDF data. *************************************************************** Title: PDFium in Google Chrome prior to 55.0.2883.75 for Mac, Windows - CVE-2016-5220 Severity: Medium Fixlet ID: 157502 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1575 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-5220 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: PDFium in Google Chrome prior to 55.0.2883.75 for Mac, Windows and Linux, and 55.0.2883.84 for Android incorrectly handled navigation within PDFs, which allowed a remote attacker to read local files via a crafted PDF file. *************************************************************** Title: A timing attack on denormalized floating point arithmetic in SVG filters in Blink in Google Chrome prior to 55.0.2883.75 for Mac, Windows - CVE-2016-5224 Severity: Medium Fixlet ID: 157601 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1576 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-5224 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: A timing attack on denormalized floating point arithmetic in SVG filters in Blink in Google Chrome prior to 55.0.2883.75 for Mac, Windows and Linux, and 55.0.2883.84 for Android allowed a remote attacker to bypass the Same Origin Policy via a crafted HTML page. *************************************************************** Title: Incorrect handling of invalid URLs in Google Chrome prior to 55.0.2883.75 for Mac, Windows - CVE-2016-5222 Severity: Medium Fixlet ID: 157701 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1577 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-5222 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Incorrect handling of invalid URLs in Google Chrome prior to 55.0.2883.75 for Mac, Windows and Linux, and 55.0.2883.84 for Android allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted HTML page. *************************************************************** Title: A use after free in PDFium in Google Chrome prior to 55.0.2883.75 for Mac, Windows - CVE-2016-5216 Severity: Medium Fixlet ID: 157802 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1578 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-5216 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: A use after free in PDFium in Google Chrome prior to 55.0.2883.75 for Mac, Windows and Linux, and 55.0.2883.84 for Android allowed a remote attacker to perform an out of bounds memory read via a crafted PDF file. *************************************************************** Title: A use after free in webaudio in Google Chrome prior to 55.0.2883.75 for Mac, Windows and Linux - CVE-2016-5215 Severity: Medium Fixlet ID: 157902 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1579 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-5215 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: A use after free in webaudio in Google Chrome prior to 55.0.2883.75 for Mac, Windows and Linux, and 55.0.2883.84 for Android allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. *************************************************************** Title: Type confusion in libGLESv2 in ANGLE in Google Chrome prior to 55.0.2883.75 for Mac, Windows - CVE-2016-5221 Severity: Medium Fixlet ID: 158001 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1580 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-5221 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Type confusion in libGLESv2 in ANGLE in Google Chrome prior to 55.0.2883.75 for Mac, Windows and Linux, and 55.0.2883.84 for Android possibly allowed a remote attacker to bypass buffer validation via a crafted HTML page. *************************************************************** Title: Vulnerability in Adobe Flash Player versions 24.0.0.186 and earlier - CVE-2017-2931 Severity: High Fixlet ID: 171102 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1711 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-2931 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Adobe Flash Player versions 24.0.0.186 and earlier have an exploitable memory corruption vulnerability related to the parsing of SWF metadata. Successful exploitation could lead to arbitrary code execution. *************************************************************** Title: Vulnerability in Adobe Flash Player versions 24.0.0.186 and earlier - CVE-2017-2934 Severity: High Fixlet ID: 172202 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1722 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-2934 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Adobe Flash Player versions 24.0.0.186 and earlier have an exploitable heap overflow vulnerability related to texture compression. Successful exploitation could lead to arbitrary code execution. *************************************************************** Title: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Packaging) - CVE-2017-3312 Severity: Low Fixlet ID: 177201 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1772 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-3312 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Packaging). Supported versions that are affected are 5.5.53 and earlier, 5.6.34 and earlier and 5.7.16 and earlier. *************************************************************** Title: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DDL) - CVE-2017-3258 Severity: Medium Fixlet ID: 177302 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1773 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-3258 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DDL). Supported versions that are affected are 5.5.53 and earlier, 5.6.34 and earlier and 5.7.16 and earlier. *************************************************************** Title: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Security: Encryption) - CVE-2016-8318 Severity: Low Fixlet ID: 177402 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1774 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-8318 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Security: Encryption). Supported versions that are affected are 5.6.34 and earlier and 5.7.16 and earlier. *************************************************************** Title: Vulnerability in IBM WebSphere MQ 7.5 before 7.5.0.7 and 8.0 before 8.0.0.5 - CVE-2016-0379 Severity: Low Fixlet ID: 178002 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1780 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-0379 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: IBM WebSphere MQ 7.5 before 7.5.0.7 and 8.0 before 8.0.0.5 mishandles protocol flows, which allows remote authenticated users to cause a denial of service (channel outage) by leveraging queue-manager rights. *************************************************************** Title: Vulnerability in IBM WebSphere MQ 8.0 before 8.0.0.5 - CVE-2015-7473 Severity: Low Fixlet ID: 179801 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1798 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-7473 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: runmqsc in IBM WebSphere MQ 8.x before 8.0.0.5 allows local users to bypass intended queue-manager command access restrictions by leveraging authority for +connect and +dsp. *************************************************************** Title: Vulnerability in IBM WebSphere MQ 8.0 before 8.0.0.5 - CVE-2016-0259 Severity: Low Fixlet ID: 179901 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1799 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-0259 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: runmqsc in IBM WebSphere MQ 8.x before 8.0.0.5 allows local users to bypass an intended +dsp authority requirement and obtain sensitive information via unspecified display commands. *************************************************************** Title: Vulnerability in MySQL Server 5.6.34 and earlier. and 5.7.16 and earlier - CVE-2016-8327 Severity: Low Fixlet ID: 181302 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1813 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-8327 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Replication). Supported versions that are affected are 5.6.34 and earlier and 5.7.16 and earlier. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS v3.0 Base Score 4.4 (Availability impacts). *************************************************************** Title: Vulnerability in MySQL Server 5.5.53 and earlier, 5.6.34 and earlier, and 5.7.16 and earlier - CVE-2017-3313 Severity: Low Fixlet ID: 181802 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1818 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-3313 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: MyISAM). Supported versions that are affected are 5.5.53 and earlier, 5.6.34 and earlier and 5.7.16 and earlier. Difficult to exploit vulnerability allows low privileged attacker with logon to the infrastructure where MySQL Server executes to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all MySQL Server accessible data. CVSS v3.0 Base Score 4.7 (Confidentiality impacts). *************************************************************** Title: Vulnerability in IBM WebSphere MQ 8.0 before 8.0.0.5 - CVE-2015-7462 Severity: Low Fixlet ID: 183401 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1834 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-7462 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: IBM WebSphere MQ 8.0.0.4 on IBM i platforms allows local users to discover cleartext certificate-keystore passwords within MQ trace output by leveraging administrator privileges to execute the mqcertck program. *************************************************************** Title: Vulnerability in IBM WebSphere MQ 7.0.1 before 7.0.1.13 - CVE-2015-2013 Severity: Medium Fixlet ID: 183501 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A1835 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-2013 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: IBM WebSphere MQ 7.0.1 before 7.0.1.13 allows remote attackers to cause a denial of service (channel-agent abend and process outage) via a crafted selection string in an MQI call. *************************************************************** Title: Microsoft PowerPoint Remote Code Execution Vulnerability-CVE-2017-8513 Severity: High Fixlet ID: 267302 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A2673 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-8513 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: A remote code execution vulnerability exists in Microsoft PowerPoint when the software fails to properly handle objects in memory, aka "Microsoft PowerPoint Remote Code Execution Vulnerability". *************************************************************** Title: Microsoft SQL Server Analysis Services Information Disclosure Vulnerability - CVE-2017-8516 Severity: Medium Fixlet ID: 301801 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A3018 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-8516 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Microsoft SQL Server Analysis Services in Microsoft SQL Server 2012, Microsoft SQL Server 2014, and Microsoft SQL Server 2016 allows an information disclosure vulnerability when it improperly enforces permissions, aka "Microsoft SQL Server Analysis Services Information Disclosure Vulnerability". *************************************************************** Title: Heap buffer overflow vulnerability in Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earlier, and 11.0.20 and earlier - CVE-2017-11241 Severity: High Fixlet ID: 315501 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A3155 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-11241 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earlier, and 11.0.20 and earlier has an exploitable heap overflow vulnerability in the image conversion engine when processing Enhanced Metafile Format (EMF) data related to polygons. Successful exploitation could lead to arbitrary code execution. *************************************************************** Title: Memory Corruption vulnerability in Adobe Flash Player versions 26.0.0.151 and earlier - CVE-2017-11281 Severity: High Fixlet ID: 321701 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A3217 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-11281 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Memory Corruption vulnerability in Adobe Flash Player versions 26.0.0.151 and earlier. *************************************************************** Title: Microsoft Office Memory Corruption Vulnerability - CVE-2017-8631 Severity: High Fixlet ID: 323401 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A3234 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-8631 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: A remote code execution vulnerability exists in Excel Services, Microsoft Excel 2007 Service Pack 3, Microsoft Excel 2010 Service Pack 2, Microsoft Excel 2013 Service Pack 1, Microsoft Excel 2013 RT Service Pack 1, Microsoft Excel 2016, Microsoft Office Web Apps 2013, Microsoft Office Compatibility Pack Service Pack 3, Microsoft Excel Web App 2013 Service Pack 1, Microsoft Excel Viewer 2007 Service Pack 3, and Office Online Server when they fail to properly handle objects in memory, aka "Microsoft Office Memory Corruption Vulnerability". This CVE ID is unique from CVE-2017-8630, CVE-2017-8632, and CVE-2017-8744. *************************************************************** Title: Microsoft Office Memory Corruption Vulnerability - CVE-2017-8630 Severity: High Fixlet ID: 323501 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A3235 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-8630 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Microsoft Office 2016 allows a remote code execution vulnerability when it fails to properly handle objects in memory, aka "Microsoft Office Memory Corruption Vulnerability". This CVE ID is unique from CVE-2017-8631, CVE-2017-8632, and CVE-2017-8744. *************************************************************** Title: Use-after-free with image observers - CVE-2017-7784 Severity: Fixlet ID: 336901 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A3369 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-7784 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: A use-after-free vulnerability can occur when reading an image observer during frame reconstruction after the observer has been freed. This results in a potentially exploitable crash. *************************************************************** Title: WindowsDllDetourPatcher allocates memory without DEP protections - CVE-2017-7782 Severity: Fixlet ID: 337001 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A3370 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-7782 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: An error in the WindowsDllDetourPatcher where a RWX ("Read/Write/Execute") 4k block is allocated but never protected, violating DEP protections. *************************************************************** Title: Out-of-bounds read with cached style data and pseudo-elements - CVE-2017-7753 Severity: Fixlet ID: 337202 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A3372 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-7753 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: An out-of-bounds read occurs when applying style rules to pseudo-elements, such as ::first-line, using cached style data. *************************************************************** Title: Memory safety bugs fixed in Firefox 55 and Firefox ESR 52.3 - CVE-2017-7779 Severity: Fixlet ID: 337501 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A3375 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-7779 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code. *************************************************************** Title: Extension verification bypass - CVE-2017-5081 Severity: Low Fixlet ID: 343501 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A3435 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-5081 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Extension verification bypass *************************************************************** Title: Type Confusion Vulnerability in Adobe Flash Player 27.0.0.159 and earlier versions - CVE-2017-11292 Severity: Medium Fixlet ID: 345802 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A3458 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-11292 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Type Confusion Vulnerability in Adobe Flash Player 27.0.0.159 and earlier versions - CVE-2017-11292 *************************************************************** Title: Microsoft Outlook Security Feature Bypass Vulnerability - CVE-2017-11774 Severity: Medium Fixlet ID: 346402 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A3464 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-11774 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Microsoft Outlook 2010 SP2, Outlook 2013 SP1 and RT SP1, and Outlook 2016 allow an attacker to execute arbitrary commands, due to how Microsoft Office handles objects in memory, aka "Microsoft Outlook Security Feature Bypass Vulnerability." *************************************************************** Title: Buffer overflow viewing certificates with an extremely long OID - CVE-2017-7792 Severity: Fixlet ID: 347501 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A3475 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-7792 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: A buffer overflow will occur when viewing a certificate in the certificate manager if the certificate has an extremely long object identifier (OID). This results in a potentially exploitable crash. *************************************************************** Title: Use-after-free in WebSockets during disconnection - CVE-2017-7800 Severity: Fixlet ID: 347601 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A3476 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-7800 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: A use-after-free vulnerability can occur in WebSockets when the object holding the connection is freed before the disconnection operation is finished. This results in an exploitable crash. *************************************************************** Title: Vulnerability in MySQL Server 5.6.35 and earlier, 5.7.18 and earlier - CVE-2017-3731 Severity: Medium Fixlet ID: 371101 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A3711 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-3731 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: If an SSL/TLS server or client is running on a 32-bit host, and a specific cipher is being used, then a truncated packet can cause that server or client to perform an out-of-bounds read, usually resulting in a crash. For OpenSSL 1.1.0, the crash can be triggered when using CHACHA20/POLY1305; users should upgrade to 1.1.0d. For Openssl 1.0.2, the crash can be triggered when using RC4-MD5; users who have not disabled that algorithm should update to 1.0.2k. *************************************************************** Title: Microsoft Office Memory Corruption Vulnerability - CVE-2017-11884 Severity: High Fixlet ID: 371401 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A3714 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-11884 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Microsoft Excel 2016 Click-to-Run (C2R) allows an attacker to run arbitrary code in the context of the current user by failing to properly handle objects in memory, aka "Microsoft Office Memory Corruption Vulnerability". This CVE ID is unique from CVE-2017-11882. *************************************************************** Title: Use After Free ulnerability in Adobe Flash Player 27.0.0.187 and earlier versions - CVE-2017-11225 Severity: High Fixlet ID: 373101 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A3731 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-11225 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Use after free vulnerability in Adobe Flash Player 27.0.0.187 and earlier versions. *************************************************************** Title: Microsoft Excel Remote Code Execution Vulnerability - CVE-2017-11935 Severity: High Fixlet ID: 380501 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A3805 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-11935 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Microsoft Office 2016 Click-to-Run (C2R) allows a remote code execution vulnerability due to the way files are handled in memory, aka "Microsoft Excel Remote Code Execution Vulnerability". *************************************************************** Title: Microsoft Office Information Disclosure Vulnerability - CVE-2017-11939 Severity: Medium Fixlet ID: 380601 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A3806 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-11939 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: Microsoft Office 2016 Click-to-Run (C2R) allows an information disclosure vulnerability due to the way Microsoft Office enforces DRM copy/paste permissions, aka "Microsoft Office Information Disclosure Vulnerability". *************************************************************** Title: Windows Kernel Information Disclosure Vulnerability - CVE-2018-0974 Severity: Fixlet ID: 485902 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4859 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0974 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: An information disclosure vulnerability exists in the Windows kernel that could allow an attacker to retrieve information that could lead to a Kernel Address Space Layout Randomization (ASLR) bypass, aka "Windows Kernel Information Disclosure Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Server 2008 R2, Windows 10, Windows 10 Servers. This CVE ID is unique from CVE-2018-0887, CVE-2018-0960, CVE-2018-0968, CVE-2018-0969, CVE-2018-0970, CVE-2018-0971, CVE-2018-0972, CVE-2018-0973, CVE-2018-0975. *************************************************************** Title: Windows Kernel Information Disclosure Vulnerability - CVE-2018-0971 Severity: Fixlet ID: 486001 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4860 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0971 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: An information disclosure vulnerability exists in the Windows kernel that could allow an attacker to retrieve information that could lead to a Kernel Address Space Layout Randomization (ASLR) bypass, aka "Windows Kernel Information Disclosure Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Server 2008 R2, Windows 10, Windows 10 Servers. This CVE ID is unique from CVE-2018-0887, CVE-2018-0960, CVE-2018-0968, CVE-2018-0969, CVE-2018-0971, CVE-2018-0972, CVE-2018-0973, CVE-2018-0974, CVE-2018-0975. *************************************************************** Title: Windows Kernel Information Disclosure Vulnerability - CVE-2018-0975 Severity: Fixlet ID: 486101 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4861 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0975 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: An information disclosure vulnerability exists in the Windows kernel that could allow an attacker to retrieve information that could lead to a Kernel Address Space Layout Randomization (ASLR) bypass, aka "Windows Kernel Information Disclosure Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Server 2008 R2, Windows 10, Windows 10 Servers. This CVE ID is unique from CVE-2018-0887, CVE-2018-0960, CVE-2018-0968, CVE-2018-0969, CVE-2018-0970, CVE-2018-0971, CVE-2018-0972, CVE-2018-0973, CVE-2018-0974. *************************************************************** Title: Windows Kernel Information Disclosure Vulnerability - CVE-2018-0969 Severity: Fixlet ID: 486201 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4862 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0969 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: An information disclosure vulnerability exists in the Windows kernel that could allow an attacker to retrieve information that could lead to a Kernel Address Space Layout Randomization (ASLR) bypass, aka "Windows Kernel Information Disclosure Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Server 2008 R2, Windows 10, Windows 10 Servers. This CVE ID is unique from CVE-2018-0887, CVE-2018-0960, CVE-2018-0968, CVE-2018-0970, CVE-2018-0971, CVE-2018-0972, CVE-2018-0973, CVE-2018-0974, CVE-2018-0975. *************************************************************** Title: Windows Kernel Information Disclosure Vulnerability - CVE-2018-0960 Severity: Fixlet ID: 486301 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4863 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0960 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory, aka "Windows Kernel Information Disclosure Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Server 2008 R2, Windows 10, Windows 10 Servers. This CVE ID is unique from CVE-2018-0887, CVE-2018-0968, CVE-2018-0969, CVE-2018-0970, CVE-2018-0971, CVE-2018-0972, CVE-2018-0973, CVE-2018-0974, CVE-2018-0975. *************************************************************** Title: Windows Kernel Information Disclosure Vulnerability - CVE-2018-0973 Severity: Fixlet ID: 486402 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4864 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0973 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: An information disclosure vulnerability exists in the Windows kernel that could allow an attacker to retrieve information that could lead to a Kernel Address Space Layout Randomization (ASLR) bypass, aka "Windows Kernel Information Disclosure Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Server 2008 R2, Windows 10, Windows 10 Servers. This CVE ID is unique from CVE-2018-0887, CVE-2018-0960, CVE-2018-0968, CVE-2018-0969, CVE-2018-0970, CVE-2018-0971, CVE-2018-0972, CVE-2018-0974, CVE-2018-0975. *************************************************************** Title: Windows Kernel Information Disclosure Vulnerability - CVE-2018-0970 Severity: Fixlet ID: 486501 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4865 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0970 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: An information disclosure vulnerability exists in the Windows kernel that could allow an attacker to retrieve information that could lead to a Kernel Address Space Layout Randomization (ASLR) bypass, aka "Windows Kernel Information Disclosure Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Server 2008 R2, Windows 10, Windows 10 Servers. This CVE ID is unique from CVE-2018-0887, CVE-2018-0960, CVE-2018-0968, CVE-2018-0969, CVE-2018-0971, CVE-2018-0972, CVE-2018-0973, CVE-2018-0974, CVE-2018-0975. *************************************************************** Title: Windows Kernel Elevation of Privilege Vulnerability - CVE-2018-0963 Severity: Fixlet ID: 486601 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4866 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0963 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: An elevation of privilege vulnerability exists in the way that the Windows Kernel handles objects in memory, aka "Windows Kernel Elevation of Privilege Vulnerability." This affects Windows Server 2016, Windows 10, Windows 10 Servers. *************************************************************** Title: Windows Kernel Information Disclosure Vulnerability - CVE-2018-0887 Severity: Fixlet ID: 486701 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4867 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0887 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: An information disclosure vulnerability exists when the Windows kernel fails to properly initialize a memory address, aka "Windows Kernel Information Disclosure Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Server 2008 R2, Windows 10, Windows 10 Servers. This CVE ID is unique from CVE-2018-0960, CVE-2018-0968, CVE-2018-0969, CVE-2018-0970, CVE-2018-0971, CVE-2018-0972, CVE-2018-0973, CVE-2018-0974, CVE-2018-0975. *************************************************************** Title: Windows Kernel Information Disclosure Vulnerability - CVE-2018-0972 Severity: Fixlet ID: 486801 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4868 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0972 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: An information disclosure vulnerability exists in the Windows kernel that could allow an attacker to retrieve information that could lead to a Kernel Address Space Layout Randomization (ASLR) bypass, aka "Windows Kernel Information Disclosure Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Server 2008 R2, Windows 10, Windows 10 Servers. This CVE ID is unique from CVE-2018-0887, CVE-2018-0960, CVE-2018-0968, CVE-2018-0969, CVE-2018-0970, CVE-2018-0971, CVE-2018-0973, CVE-2018-0974, CVE-2018-0975. *************************************************************** Title: Windows Kernel Information Disclosure Vulnerability - CVE-2018-0968 Severity: Fixlet ID: 486901 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4869 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0968 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: An information disclosure vulnerability exists in the Windows kernel that could allow an attacker to retrieve information that could lead to a Kernel Address Space Layout Randomization (ASLR) bypass, aka "Windows Kernel Information Disclosure Vulnerability." This affects Windows Server 2012 R2, Windows RT 8.1, Windows Server 2016, Windows 8.1, Windows 10, Windows 10 Servers. This CVE ID is unique from CVE-2018-0887, CVE-2018-0960, CVE-2018-0969, CVE-2018-0970, CVE-2018-0971, CVE-2018-0972, CVE-2018-0973, CVE-2018-0974, CVE-2018-0975. *************************************************************** Title: Windows Kernel Elevation of Privilege Vulnerability - CVE-2018-1038 Severity: Fixlet ID: 487001 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4870 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-1038 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: The Windows kernel in Windows 7 SP1 and Windows Server 2008 R2 SP1 allows an elevation of privilege vulnerability due to the way it handles objects in memory, aka "Windows Kernel Elevation of Privilege Vulnerability." *************************************************************** Title: Device Guard Security Feature Bypass Vulnerability - CVE-2018-0966 Severity: Fixlet ID: 489701 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4897 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0966 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: A security feature bypass exists when Device Guard incorrectly validates an untrusted file, aka "Device Guard Security Feature Bypass Vulnerability." This affects Windows Server 2016, Windows 10, Windows 10 Servers. *************************************************************** Title: HTTP.sys Denial of Service Vulnerability - CVE-2018-0956 Severity: Fixlet ID: 489801 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4898 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0956 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: A denial of service vulnerability exists in the HTTP 2.0 protocol stack (HTTP.sys) when HTTP.sys improperly parses specially crafted HTTP 2.0 requests, aka "HTTP.sys Denial of Service Vulnerability." This affects Windows Server 2016, Windows 10, Windows 10 Servers. *************************************************************** Title: Windows SNMP Service Denial of Service Vulnerability - CVE-2018-0967 Severity: Fixlet ID: 489901 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4899 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0967 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: A denial of service vulnerability exists in the way that Windows SNMP Service handles malformed SNMP traps, aka "Windows SNMP Service Denial of Service Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Server 2008 R2, Windows 10, Windows 10 Servers. *************************************************************** Title: Microsoft Graphics Remote Code Execution Vulnerability - CVE-2018-1010 Severity: Fixlet ID: 490001 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4900 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-1010 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: A remote code execution vulnerability exists when the Windows font library improperly handles specially crafted embedded fonts, aka "Microsoft Graphics Remote Code Execution Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Server 2008 R2, Windows 10, Windows 10 Servers. This CVE ID is unique from CVE-2018-1012, CVE-2018-1013, CVE-2018-1015, CVE-2018-1016. *************************************************************** Title: Microsoft Graphics Remote Code Execution Vulnerability - CVE-2018-1012 Severity: Fixlet ID: 490101 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4901 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-1012 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: A remote code execution vulnerability exists when the Windows font library improperly handles specially crafted embedded fonts, aka "Microsoft Graphics Remote Code Execution Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Server 2008 R2, Windows 10, Windows 10 Servers. This CVE ID is unique from CVE-2018-1010, CVE-2018-1013, CVE-2018-1015, CVE-2018-1016. *************************************************************** Title: Microsoft Graphics Remote Code Execution Vulnerability - CVE-2018-1016 Severity: Fixlet ID: 490201 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4902 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-1016 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: A remote code execution vulnerability exists when the Windows font library improperly handles specially crafted embedded fonts, aka "Microsoft Graphics Remote Code Execution Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Server 2008 R2, Windows 10, Windows 10 Servers. This CVE ID is unique from CVE-2018-1010, CVE-2018-1012, CVE-2018-1013, CVE-2018-1015. *************************************************************** Title: Microsoft Graphics Remote Code Execution Vulnerability - CVE-2018-1015 Severity: Fixlet ID: 490301 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4903 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-1015 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: A remote code execution vulnerability exists when the Windows font library improperly handles specially crafted embedded fonts, aka "Microsoft Graphics Remote Code Execution Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Server 2008 R2, Windows 10, Windows 10 Servers. This CVE ID is unique from CVE-2018-1010, CVE-2018-1012, CVE-2018-1013, CVE-2018-1016. *************************************************************** Title: Microsoft Graphics Remote Code Execution Vulnerability - CVE-2018-1013 Severity: Fixlet ID: 490402 Fixlet Link: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.cisecurity%3Adef%3A4904 Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-1013 Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo Fixlet Description: A remote code execution vulnerability exists when the Windows font library improperly handles specially crafted embedded fonts, aka "Microsoft Graphics Remote Code Execution Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Server 2008 R2, Windows 10, Windows 10 Servers. This CVE ID is unique from CVE-2018-1010, CVE-2018-1012, CVE-2018-1015, CVE-2018-1016.