CVE-2018-0824

Sažetak

A remote code execution vulnerability exists in "Microsoft COM for Windows" when it fails to properly handle serialized objects, aka "Microsoft COM for Windows Remote Code Execution Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Server 2008 R2, Windows 10, Windows 10 Servers.

Reference

http://www.securityfocus.com/bid/104030
http://www.securitytracker.com/id/1040848
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-0824
https://www.exploit-db.com/exploits/44906/
http://www.securityfocus.com/bid/104030
http://www.securitytracker.com/id/1040848
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-0824
https://www.exploit-db.com/exploits/44906/

CVSS

Base:	5.1
Impact:	6.4
Exploitability:	4.9

Pristup

Vektor	Složenost	Autentikacija
NETWORK	HIGH	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	PARTIAL	PARTIAL

CVSS vektor

AV:N/AC:H/Au:N/C:P/I:P/A:P

Zadnje važnije ažuriranje

31-03-2025 - 21:03

Objavljeno

09-05-2018 - 19:29