Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
kasperskyKaspersky LabKLA10978
HistoryMar 14, 2017 - 12:00 a.m.

KLA10978 Multiple vulnerabilities in Windows Uniscribe

2017-03-1400:00:00
Kaspersky Lab
threats.kaspersky.com
45

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

7.2 High

AI Score

Confidence

High

0.212 Low

EPSS

Percentile

96.4%

JSON

Multiple serious vulnerabilities have been found in Windows Uniscribe. Malicious users can exploit these vulnerabilities to execute arbitrary code or obtain sensitive information.

Below is a complete list of vulnerabilities:

  1. An improper handling of objects in memory can be exploted remotely via a specially designed website or a specially designed document file to execute arbitrary code;
  2. An improper disclosure of the contents of Windows Uniscribe memory can be exploited remotely via a specially designed document or by convincing a user to visit an untrusted webpage to obtain sensitive information.

Original advisories

MS17-011

CVE-2017-0072

CVE-2017-0083

CVE-2017-0084

CVE-2017-0085

CVE-2017-0086

CVE-2017-0087

CVE-2017-0088

CVE-2017-0089

CVE-2017-0090

CVE-2017-0091

CVE-2017-0092

CVE-2017-0111

CVE-2017-0112

CVE-2017-0113

CVE-2017-0114

CVE-2017-0115

CVE-2017-0116

CVE-2017-0117

CVE-2017-0118

CVE-2017-0119

CVE-2017-0120

CVE-2017-0121

CVE-2017-0122

CVE-2017-0123

CVE-2017-0124

CVE-2017-0125

CVE-2017-0126

CVE-2017-0127

CVE-2017-0128

Exploitation

Public exploits exist for this vulnerability.

Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.

Related products

Microsoft-Windows-Vista-4

Microsoft-Windows-Server-2012

Microsoft-Windows-7

Microsoft-Windows-Server-2008

Windows-RT

Microsoft-Windows-10

CVE list

CVE-2017-0072 critical

CVE-2017-0083 critical

CVE-2017-0084 critical

CVE-2017-0085 warning

CVE-2017-0086 critical

CVE-2017-0087 critical

CVE-2017-0088 critical

CVE-2017-0089 critical

CVE-2017-0090 critical

CVE-2017-0091 warning

CVE-2017-0092 warning

CVE-2017-0111 warning

CVE-2017-0112 warning

CVE-2017-0113 warning

CVE-2017-0114 warning

CVE-2017-0115 warning

CVE-2017-0116 warning

CVE-2017-0117 warning

CVE-2017-0118 warning

CVE-2017-0119 warning

CVE-2017-0120 warning

CVE-2017-0121 warning

CVE-2017-0122 warning

CVE-2017-0123 warning

CVE-2017-0124 warning

CVE-2017-0125 warning

CVE-2017-0126 warning

CVE-2017-0127 warning

CVE-2017-0128 warning

KB list

4012217

4012215

4012216

4012606

4013198

4013429

4012212

4012214

4012213

4013076

4012583

Solution

Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)

Impacts

  • ACE

Arbitrary code execution. Exploitation of vulnerabilities with this impact can lead to executing by abuser any code or commands at vulnerable machine or process.

  • OSI

Obtain sensitive information. Exploitation of vulnerabilities with this impact can lead to capturing by abuser information, critical for user or system.

Affected Products

  • Microsoft Windows Vista Service Pack 2Microsoft Windows 7 Service Pack 1Microsoft Windows 8.1Microsoft Windows RT 8.1Microsoft Windows 10Microsoft Windows Server 2008 Service Pack 2Microsoft Windows Server 2008 R2 Service Pack 1Microsoft Windows Server 2012Microsoft Windows Server 2012 R2

References

Related

openvas 1
nessus 1
cve 29
prion 29
cvelist 29
nvd 29
zdt 8
mskb 4
googleprojectzero 1
kaspersky 2
mscve 29
symantec 27
checkpoint_advisories 9
exploitpack 1
openvas
openvas
Microsoft Uniscribe Multiple Vulnerabilities (4013076)
2017-03-15 00:00:00
nessus
nessus
MS17-011: Security Update for Microsoft Uniscribe (4013076)
2017-03-14 00:00:00
cve
cve
CVE-2017-0121
2017-03-17 00:59:03
CVE-2017-0122
2017-03-17 00:59:03
CVE-2017-0085
2017-03-17 00:59:02
prion
prion
Information disclosure
2017-03-17 00:59:00
Information disclosure
2017-03-17 00:59:00
Information disclosure
2017-03-17 00:59:00
cvelist
cvelist
CVE-2017-0091
2017-03-17 00:00:00
CVE-2017-0111
2017-03-17 00:00:00
CVE-2017-0115
2017-03-17 00:00:00
nvd
nvd
CVE-2017-0085
2017-03-17 00:59:02
CVE-2017-0092
2017-03-17 00:59:02
CVE-2017-0113
2017-03-17 00:59:03
zdt
zdt
Microsoft Windows - Uniscribe Font Processing Multiple Heap-Based Out-of-Bounds and Wild Reads (MS17
2017-03-20 00:00:00
Microsoft Windows - Uniscribe Font Processing Heap-Based Memory Corruption in USP10!otlCacheManager:
2017-03-20 00:00:00
Microsoft Windows - Uniscribe Font Processing Heap-Based Memory Corruption in USP10!MergeLigRecords
2017-03-20 00:00:00
mskb
mskb
MS17-011: Security update for Microsoft Uniscribe: March 14, 2017
2017-03-14 00:00:00
MS17-011 and MS17-013: Description of the security update for Microsoft Graphics Component: March 14, 2017
2017-03-14 07:00:00
March 2017 Security Only Quality Update for Windows 7 SP1 and Windows Server 2008 R2 SP1
2017-03-14 07:00:00
googleprojectzero
googleprojectzero
Notes on Windows Uniscribe Fuzzing
2017-04-10 00:00:00
kaspersky
kaspersky
KLA11902 Multiple vulnerabilities in Microsoft Products (ESU)
2017-03-14 00:00:00
KLA10979 Multiple vulnerabilities in Microsoft Windows
2017-03-14 00:00:00
mscve
mscve
Windows Uniscribe Information Disclosure Vulnerability
2017-03-14 07:00:00
Windows Uniscribe Information Disclosure Vulnerability
2017-03-14 07:00:00
Windows Uniscribe Remote Code Execution Vulnerability
2017-03-14 07:00:00
symantec
symantec
Microsoft Windows Uniscribe CVE-2017-0087 Remote Code Execution Vulnerability
2017-03-14 00:00:00
Microsoft Windows Uniscribe CVE-2017-0090 Remote Code Execution Vulnerability
2017-03-14 00:00:00
Microsoft Windows Uniscribe CVE-2017-0121 Information Disclosure Vulnerability
2017-03-14 00:00:00
checkpoint_advisories
checkpoint_advisories
Microsoft Windows Uniscribe Information Disclosure (MS17-011: CVE-2017-0121)
2017-03-14 00:00:00
Microsoft Windows Uniscribe Remote Code Execution (MS17-011: CVE-2017-0086)
2017-03-14 00:00:00
Microsoft Windows Uniscribe Remote Code Execution (MS17-011: CVE-2017-0088)
2017-03-14 00:00:00
exploitpack
exploitpack
Microsoft Windows - USP10!MergeLigRecords Uniscribe Font Processing Heap Memory Corruption
2017-06-23 00:00:00

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

7.2 High

AI Score

Confidence

High

0.212 Low

EPSS

Percentile

96.4%

JSON
Related for KLA10978
openvas1nessus1cve29prion29cvelist29nvd29zdt8mskb4googleprojectzero1kaspersky2mscve29symantec27checkpoint_advisories9exploitpack1