CVE-2017-11852

Sažetak

Microsoft GDI Component in Windows 7 SP1 and Windows Server 2008 SP2 and R2 SP1 allows an attacker to log on to an affected system and run a specially crafted application to compromise the user's system, due improperly disclosing kernel memory addresses, aka "Windows GDI Information Disclosure Vulnerability".

Reference

http://www.securityfocus.com/bid/101739
http://www.securitytracker.com/id/1039782
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-11852

CVSS

Base:	1.9
Impact:	2.9
Exploitability:	3.4

Pristup

Vektor	Složenost	Autentikacija
LOCAL	MEDIUM	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	NONE	NONE

CVSS vektor

AV:L/AC:M/Au:N/C:P/I:N/A:N

Zadnje važnije ažuriranje

01-12-2017 - 16:06

Objavljeno

15-11-2017 - 03:29