January 2018 Security Updates Security Update secure@microsoft.com The Microsoft Security Response Center (MSRC) identifies, monitors, resolves, and responds to security incidents and Microsoft software security vulnerabilities. For more information, see http://www.microsoft.com/security/msrc. 2018-Jan 2018-Jan Final 1.0 113 2026-02-18T03:07:24 January 2018 Security Updates 2018-01-09T08:00:00Z 2026-02-18T03:07:24 <p>The January security release consists of security updates for the following software:</p> <ul> <li>Internet Explorer</li> <li>Microsoft Edge</li> <li>Microsoft Windows</li> <li>Microsoft Office and Microsoft Office Services and Web Apps</li> <li>SQL Server</li> <li>ChakraCore</li> <li>.NET Framework</li> <li>.NET Core</li> <li>ASP.NET Core</li> <li>Adobe Flash</li> </ul> <p>Please note the following information regarding the security updates:</p> <ul> <li>Windows 10 updates are cumulative. The monthly security release includes all security fixes for vulnerabilities that affect Windows 10, in addition to non-security updates. The updates are available via the <a href="http://catalog.update.microsoft.com/v7/site/Home.aspx">Microsoft Update Catalog</a>.</li> <li>Starting in March 2017, a delta package will be available on the Microsoft Update Catalog for Windows 10 version 1607 and newer. This delta package contains just the delta changes between the previous month and the current release.</li> <li>Updates for Windows RT 8.1 and Microsoft Office RT software are only available via <a href="http://go.microsoft.com/fwlink/?LinkId=21130">Windows Update</a>.</li> <li>In addition to security changes for the vulnerabilities, updates include defense-in-depth updates to help improve security-related features.</li> <li>For information on lifecycle and support dates for Windows 10 operating systems, please see <a href="https://support.microsoft.com/en-us/help/13853/windows-lifecycle-fact-sheet">Windows Lifecycle Facts Sheet</a>.</li> </ul> <p><strong>Known Issues</strong></p> <ul> <li><a href="https://support.microsoft.com/help/4011021">4011021</a></li> <li><a href="https://support.microsoft.com/help/4011626">4011626</a></li> <li><a href="https://support.microsoft.com/help/4055002">4055002</a></li> <li><a href="https://support.microsoft.com/help/4055532">4055532</a></li> <li><a href="https://support.microsoft.com/help/4056888">4056888</a></li> <li><a href="https://support.microsoft.com/help/4056890">4056890</a></li> <li><a href="https://support.microsoft.com/help/4056891">4056891</a></li> <li><a href="https://support.microsoft.com/help/4056892">4056892</a></li> <li><a href="https://support.microsoft.com/help/4056893">4056893</a></li> <li><a href="https://support.microsoft.com/help/4056894">4056894</a></li> <li><a href="https://support.microsoft.com/help/4056895">4056895</a></li> <li><a href="https://support.microsoft.com/help/4056896">4056896</a></li> <li><a href="https://support.microsoft.com/help/4056897">4056897</a></li> <li><a href="https://support.microsoft.com/help/4056898">4056898</a></li> <li><a href="https://support.microsoft.com/help/4056899">4056899</a></li> <li><a href="https://support.microsoft.com/help/4057116">4057116</a></li> </ul> The information provided in the Microsoft Knowledge Base is provided "as is" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply. Microsoft Office 2016 (32-bit edition) Microsoft Office 2016 (64-bit edition) Microsoft Office 2016 Click-to-Run (C2R) for 32-bit editions Microsoft Office 2016 Click-to-Run (C2R) for 64-bit editions Microsoft Office 2007 Service Pack 3 Microsoft Office 2010 Service Pack 2 (32-bit editions) Microsoft Office 2010 Service Pack 2 (64-bit editions) Microsoft Office 2013 RT Service Pack 1 Microsoft Office 2013 Service Pack 1 (32-bit editions) Microsoft Office 2013 Service Pack 1 (64-bit editions) Microsoft Word 2016 (32-bit edition) Microsoft Word 2016 (64-bit edition) Microsoft Office Compatibility Pack Service Pack 3 Microsoft Word 2007 Service Pack 3 Microsoft Word 2010 Service Pack 2 (32-bit editions) Microsoft Word 2010 Service Pack 2 (64-bit editions) Microsoft Word 2013 RT Service Pack 1 Microsoft Word 2013 Service Pack 1 (32-bit editions) Microsoft Word 2013 Service Pack 1 (64-bit editions) Microsoft Office 2016 for Mac Microsoft SharePoint Enterprise Server 2016 Microsoft Office Online Server 2016 Microsoft Office Web Apps 2010 Service Pack 2 Microsoft Office Web Apps Server 2013 Service Pack 1 Microsoft Office Word Viewer Microsoft SharePoint Enterprise Server 2013 Service Pack 1 Microsoft SharePoint Server 2010 Service Pack 2 Microsoft SharePoint Server 2010 Service Pack 2 Microsoft SharePoint Foundation 2010 Service Pack 2 Microsoft Outlook 2016 (32-bit edition) Microsoft Outlook 2016 (64-bit edition) Microsoft Outlook 2013 Service Pack 1 (32-bit editions) Microsoft Outlook 2013 Service Pack 1 (64-bit editions) Microsoft Outlook 2007 Service Pack 3 Microsoft Outlook 2010 Service Pack 2 (32-bit editions) Microsoft Outlook 2010 Service Pack 2 (64-bit editions) Microsoft Outlook 2013 RT Service Pack 1 Microsoft Excel 2016 (32-bit edition) Microsoft Excel 2016 (64-bit edition) Microsoft Excel 2016 Click-to-Run (C2R) for 32-bit editions Microsoft Excel 2016 Click-to-Run (C2R) for 64-bit editions Microsoft Excel 2007 Service Pack 3 Microsoft Excel 2010 Service Pack 2 (32-bit editions) Microsoft Excel 2010 Service Pack 2 (64-bit editions) Microsoft Excel 2013 RT Service Pack 1 Microsoft Excel 2013 Service Pack 1 (32-bit editions) Microsoft Excel 2013 Service Pack 1 (64-bit editions) Microsoft Excel Viewer 2007 Service Pack 3 ChakraCore Microsoft Edge (EdgeHTML-based) on Windows 10 Version 1709 for 32-bit Systems Microsoft Edge (EdgeHTML-based) on Windows 10 Version 1709 for x64-based Systems Microsoft Edge (EdgeHTML-based) on Windows 10 Version 1703 for 32-bit Systems Microsoft Edge (EdgeHTML-based) on Windows 10 Version 1703 for x64-based Systems Microsoft Edge (EdgeHTML-based) on Windows 10 Version 1511 for 32-bit Systems Microsoft Edge (EdgeHTML-based) on Windows 10 Version 1511 for x64-based Systems Microsoft Edge (EdgeHTML-based) on Windows 10 Version 1607 for 32-bit Systems Microsoft Edge (EdgeHTML-based) on Windows 10 Version 1607 for x64-based Systems Microsoft Edge (EdgeHTML-based) on Windows Server 2016 Microsoft Edge (EdgeHTML-based) on Windows 10 for 32-bit Systems Microsoft Edge (EdgeHTML-based) on Windows 10 for x64-based Systems Internet Explorer 10 on Windows Server 2012 Internet Explorer 11 on Windows 10 Version 1703 for 32-bit Systems Internet Explorer 11 on Windows 10 Version 1703 for x64-based Systems Internet Explorer 11 on Windows 10 Version 1709 for 32-bit Systems Internet Explorer 11 on Windows 10 Version 1709 for x64-based Systems Internet Explorer 11 on Windows 10 for 32-bit Systems Internet Explorer 11 on Windows 10 for x64-based Systems Internet Explorer 11 on Windows 10 Version 1511 for 32-bit Systems Internet Explorer 11 on Windows 10 Version 1511 for x64-based Systems Internet Explorer 11 on Windows 10 Version 1607 for 32-bit Systems Internet Explorer 11 on Windows 10 Version 1607 for x64-based Systems Internet Explorer 11 on Windows Server 2016 Internet Explorer 11 on Windows 7 for 32-bit Systems Service Pack 1 Internet Explorer 11 on Windows 7 for x64-based Systems Service Pack 1 Internet Explorer 11 on Windows 8.1 for 32-bit systems Internet Explorer 11 on Windows 8.1 for x64-based systems Internet Explorer 11 on Windows RT 8.1 Internet Explorer 11 on Windows Server 2008 R2 for x64-based Systems Service Pack 1 Internet Explorer 11 on Windows Server 2012 R2 Windows 10 Version 1703 for 32-bit Systems Windows 10 Version 1703 for x64-based Systems Windows 10 Version 1709 for 32-bit Systems Windows 10 Version 1709 for x64-based Systems Windows 10 for 32-bit Systems Windows 10 for x64-based Systems Windows 10 Version 1511 for 32-bit Systems Windows 10 Version 1511 for x64-based Systems Windows 10 Version 1607 for 32-bit Systems Windows 10 Version 1607 for x64-based Systems Windows Server 2016 Windows Server 2016 (Server Core installation) Windows 8.1 for 32-bit systems Windows 8.1 for x64-based systems Windows Server 2012 Windows Server 2012 (Server Core installation) Windows Server 2012 R2 Windows Server 2012 R2 (Server Core installation) Windows Server, version 1709 (Server Core Installation) Windows 10 Version 1803 for ARM64-based Systems Windows 10 Version 1809 for ARM64-based Systems Windows 10 Version 1809 for x64-based Systems Windows 10 Version 1809 for 32-bit Systems Windows 10 Version 1607 for HoloLens Windows 10 Version 1803 for 32-bit Systems Windows 10 Version 1803 for x64-based Systems Windows Server, version 1803 (Server Core Installation) Windows 7 for 32-bit Systems Service Pack 1 Windows 7 for x64-based Systems Service Pack 1 Windows Server 2008 for 32-bit Systems Service Pack 2 Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core installation) Windows Server 2008 for Itanium-Based Systems Service Pack 2 Windows Server 2008 for x64-based Systems Service Pack 2 Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation) Windows Server 2008 R2 for Itanium-Based Systems Service Pack 1 Windows Server 2008 R2 for x64-based Systems Service Pack 1 Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation) Internet Explorer 9 on Windows Server 2008 for 32-bit Systems Service Pack 2 Internet Explorer 9 on Windows Server 2008 for x64-based Systems Service Pack 2 ASP.NET Core 2.0 .NET Core 1.0 .NET Core 2.0 PowerShell Core 6.0.0 Microsoft .NET Framework 4.6/4.6.1/4.6.2/4.7 on Windows 7 for 32-bit Systems Service Pack 1 Microsoft .NET Framework 4.6/4.6.1/4.6.2/4.7 on Windows 7 for x64-based Systems Service Pack 1 Microsoft .NET Framework 4.6/4.6.1/4.6.2/4.7 on Windows 8.1 for 32-bit systems Microsoft .NET Framework 4.6/4.6.1/4.6.2/4.7 on Windows 8.1 for x64-based systems Microsoft .NET Framework 4.6/4.6.1/4.6.2/4.7 on Windows RT 8.1 Microsoft .NET Framework 4.6/4.6.1/4.6.2/4.7 on Windows Server 2008 R2 for x64-based Systems Service Pack 1 Microsoft .NET Framework 4.6/4.6.1/4.6.2/4.7 on Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation) Microsoft .NET Framework 4.6/4.6.1/4.6.2/4.7 on Windows Server 2012 Microsoft .NET Framework 4.6/4.6.1/4.6.2/4.7 on Windows Server 2012 (Server Core installation) Microsoft .NET Framework 4.6/4.6.1/4.6.2/4.7 on Windows Server 2012 R2 Microsoft .NET Framework 4.6/4.6.1/4.6.2/4.7 on Windows Server 2012 R2 (Server Core installation) Microsoft .NET Framework 4.7.1 on Windows 10 Version 1709 for 32-bit Systems Microsoft .NET Framework 4.7.1 on Windows 10 Version 1709 for x64-based Systems Microsoft .NET Framework 4.7.1 on Windows Server, version 1709 (Server Core Installation) Microsoft .NET Framework 3.5 on Windows 10 Version 1709 for 32-bit Systems Microsoft .NET Framework 3.5 on Windows 10 Version 1709 for x64-based Systems Microsoft .NET Framework 3.5 on Windows Server, version 1709 (Server Core Installation) Microsoft .NET Framework 4.7 on Windows 10 Version 1703 for 32-bit Systems Microsoft .NET Framework 4.7 on Windows 10 Version 1703 for x64-based Systems Microsoft .NET Framework 4.6 on Windows 10 for 32-bit Systems Microsoft .NET Framework 4.6 on Windows 10 for x64-based Systems Microsoft .NET Framework 4.6 on Windows Server 2008 for 32-bit Systems Service Pack 2 Microsoft .NET Framework 4.6 on Windows Server 2008 for x64-based Systems Service Pack 2 Microsoft .NET Framework 4.6.1 on Windows 10 Version 1511 for 32-bit Systems Microsoft .NET Framework 4.6.1 on Windows 10 Version 1511 for x64-based Systems Microsoft .NET Framework 2.0 Service Pack 2 on Windows Server 2008 for 32-bit Systems Service Pack 2 Microsoft .NET Framework 2.0 Service Pack 2 on Windows Server 2008 for Itanium-Based Systems Service Pack 2 Microsoft .NET Framework 2.0 Service Pack 2 on Windows Server 2008 for x64-based Systems Service Pack 2 Microsoft .NET Framework 3.0 Service Pack 2 on Windows Server 2008 for 32-bit Systems Service Pack 2 Microsoft .NET Framework 3.0 Service Pack 2 on Windows Server 2008 for Itanium-Based Systems Service Pack 2 Microsoft .NET Framework 3.0 Service Pack 2 on Windows Server 2008 for x64-based Systems Service Pack 2 Microsoft .NET Framework 3.5 on Windows 10 Version 1703 for 32-bit Systems Microsoft .NET Framework 3.5 on Windows 10 Version 1703 for x64-based Systems Microsoft .NET Framework 3.5 on Windows 10 for 32-bit Systems Microsoft .NET Framework 3.5 on Windows 10 for x64-based Systems Microsoft .NET Framework 3.5 on Windows 10 Version 1511 for 32-bit Systems Microsoft .NET Framework 3.5 on Windows 10 Version 1511 for x64-based Systems Microsoft .NET Framework 3.5 on Windows 10 Version 1607 for 32-bit Systems Microsoft .NET Framework 3.5 on Windows 10 Version 1607 for x64-based Systems Microsoft .NET Framework 3.5 on Windows Server 2016 Microsoft .NET Framework 3.5 on Windows Server 2016 (Server Core installation) Microsoft .NET Framework 3.5 on Windows 8.1 for 32-bit systems Microsoft .NET Framework 3.5 on Windows 8.1 for x64-based systems Microsoft .NET Framework 3.5 on Windows Server 2012 Microsoft .NET Framework 3.5 on Windows Server 2012 (Server Core installation) Microsoft .NET Framework 3.5 on Windows Server 2012 R2 Microsoft .NET Framework 3.5 on Windows Server 2012 R2 (Server Core installation) Microsoft .NET Framework 3.5.1 on Windows 7 for 32-bit Systems Service Pack 1 Microsoft .NET Framework 3.5.1 on Windows 7 for x64-based Systems Service Pack 1 Microsoft .NET Framework 3.5.1 on Windows Server 2008 R2 for Itanium-Based Systems Service Pack 1 Microsoft .NET Framework 3.5.1 on Windows Server 2008 R2 for x64-based Systems Service Pack 1 Microsoft .NET Framework 3.5.1 on Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation) Microsoft .NET Framework 4.5.2 on Windows 7 for 32-bit Systems Service Pack 1 Microsoft .NET Framework 4.5.2 on Windows 7 for x64-based Systems Service Pack 1 Microsoft .NET Framework 4.5.2 on Windows 8.1 for 32-bit systems Microsoft .NET Framework 4.5.2 on Windows 8.1 for x64-based systems Microsoft .NET Framework 4.5.2 on Windows RT 8.1 Microsoft .NET Framework 4.5.2 on Windows Server 2008 for 32-bit Systems Service Pack 2 Microsoft .NET Framework 4.5.2 on Windows Server 2008 for x64-based Systems Service Pack 2 Microsoft .NET Framework 4.5.2 on Windows Server 2008 R2 for x64-based Systems Service Pack 1 Microsoft .NET Framework 4.5.2 on Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation) Microsoft .NET Framework 4.5.2 on Windows Server 2012 Microsoft .NET Framework 4.5.2 on Windows Server 2012 (Server Core installation) Microsoft .NET Framework 4.5.2 on Windows Server 2012 R2 Microsoft .NET Framework 4.5.2 on Windows Server 2012 R2 (Server Core installation) Microsoft .NET Framework 4.6.2/4.7 on Windows 10 Version 1607 for 32-bit Systems Microsoft .NET Framework 4.6.2/4.7 on Windows 10 Version 1607 for x64-based Systems Microsoft .NET Framework 4.6.2/4.7 on Windows Server 2016 Microsoft .NET Framework 4.6.2/4.7 on Windows Server 2016 (Server Core installation) .NET Core 1.1 Microsoft SQL Server 2016 for x64-based Systems Service Pack 1 (CU) Microsoft SQL Server 2008 R2 for 32-Bit Systems Service Pack 3 (QFE) Microsoft SQL Server 2008 R2 for x64-Based Systems Service Pack 3 (QFE) Microsoft SQL Server 2008 for x64-Based Systems Service Pack 4 (QFE) Microsoft SQL Server 2016 for x64-based Systems Service Pack 1 (GDR) Microsoft SQL Server 2012 for 32-bit Systems Service Pack 3 (GDR) Microsoft SQL Server 2012 for 32-bit Systems Service Pack 3 (CU) Microsoft SQL Server 2012 for x64-based Systems Service Pack 3 (GDR) Microsoft SQL Server 2012 for x64-based Systems Service Pack 3 (CU) Microsoft SQL Server 2014 Service Pack 2 for 32-bit Systems (GDR) Microsoft SQL Server 2014 Service Pack 2 for 32-bit Systems (CU) Microsoft SQL Server 2014 Service Pack 2 for x64-based Systems (CU) Microsoft SQL Server 2014 Service Pack 2 for x64-based Systems (GDR) Microsoft SQL Server 2016 for x64-based Systems (GDR) Microsoft SQL Server 2016 for x64-based Systems (CU) Microsoft SQL Server 2012 for 32-bit Systems Service Pack 4 (QFE) Microsoft SQL Server 2012 for x64-based Systems Service Pack 4 (QFE) Microsoft SQL Server 2017 for x64-based Systems (GDR) Microsoft SQL Server 2017 for x64-based Systems (CU) Microsoft SQL Server 2008 for 32-bit Systems Service Pack 4 (QFE) Adobe Flash Player on Windows 10 Version 1703 for 32-bit Systems Adobe Flash Player on Windows 10 Version 1703 for x64-based Systems Adobe Flash Player on Windows 10 Version 1709 for 32-bit Systems Adobe Flash Player on Windows 10 Version 1709 for x64-based Systems Adobe Flash Player on Windows 10 for 32-bit Systems Adobe Flash Player on Windows 10 for x64-based Systems Adobe Flash Player on Windows 10 Version 1511 for 32-bit Systems Adobe Flash Player on Windows 10 Version 1511 for x64-based Systems Adobe Flash Player on Windows 10 Version 1607 for 32-bit Systems Adobe Flash Player on Windows 10 Version 1607 for x64-based Systems Adobe Flash Player on Windows Server 2016 Adobe Flash Player on Windows 8.1 for 32-bit systems Adobe Flash Player on Windows 8.1 for x64-based systems Adobe Flash Player on Windows RT 8.1 Adobe Flash Player on Windows Server 2012 Adobe Flash Player on Windows Server 2012 R2 Windows 7 for 32-bit Systems Service Pack 1 Windows 7 for x64-based Systems Service Pack 1 Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation) Windows Server 2008 R2 for Itanium-Based Systems Service Pack 1 Windows Server 2008 R2 for x64-based Systems Service Pack 1 Microsoft SharePoint Server 2010 Service Pack 2 Microsoft Office 2007 Service Pack 3 Microsoft Excel 2007 Service Pack 3 Microsoft Outlook 2007 Service Pack 3 Microsoft Word 2007 Service Pack 3 Microsoft Excel Viewer 2007 Service Pack 3 Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core installation) Internet Explorer 9 on Windows Server 2008 for 32-bit Systems Service Pack 2 Internet Explorer 9 on Windows Server 2008 for x64-based Systems Service Pack 2 Windows Server 2012 Windows Server 2012 (Server Core installation) Adobe Flash Player on Windows Server 2012 Adobe Flash Player on Windows 8.1 for 32-bit systems Adobe Flash Player on Windows 8.1 for x64-based systems Adobe Flash Player on Windows Server 2012 R2 Adobe Flash Player on Windows RT 8.1 Adobe Flash Player on Windows 10 for 32-bit Systems Adobe Flash Player on Windows 10 for x64-based Systems Adobe Flash Player on Windows 10 Version 1511 for x64-based Systems Adobe Flash Player on Windows 10 Version 1511 for 32-bit Systems Adobe Flash Player on Windows Server 2016 Adobe Flash Player on Windows 10 Version 1607 for 32-bit Systems Adobe Flash Player on Windows 10 Version 1607 for x64-based Systems Adobe Flash Player on Windows 10 Version 1703 for 32-bit Systems Adobe Flash Player on Windows 10 Version 1703 for x64-based Systems Adobe Flash Player on Windows 10 Version 1709 for 32-bit Systems Adobe Flash Player on Windows 10 Version 1709 for x64-based Systems Microsoft Outlook 2013 RT Service Pack 1 Windows 8.1 for 32-bit systems Windows 8.1 for x64-based systems Windows Server 2012 R2 Internet Explorer 11 on Windows 7 for 32-bit Systems Service Pack 1 Internet Explorer 11 on Windows 7 for x64-based Systems Service Pack 1 Internet Explorer 11 on Windows Server 2008 R2 for x64-based Systems Service Pack 1 Internet Explorer 11 on Windows 8.1 for 32-bit systems Internet Explorer 11 on Windows 8.1 for x64-based systems Internet Explorer 11 on Windows Server 2012 R2 Internet Explorer 11 on Windows RT 8.1 Internet Explorer 11 on Windows 10 for 32-bit Systems Internet Explorer 11 on Windows 10 for x64-based Systems Internet Explorer 11 on Windows 10 Version 1511 for x64-based Systems Internet Explorer 11 on Windows 10 Version 1511 for 32-bit Systems Internet Explorer 11 on Windows Server 2016 Internet Explorer 11 on Windows 10 Version 1607 for 32-bit Systems Internet Explorer 11 on Windows 10 Version 1607 for x64-based Systems Internet Explorer 11 on Windows 10 Version 1703 for 32-bit Systems Internet Explorer 11 on Windows 10 Version 1703 for x64-based Systems Internet Explorer 11 on Windows 10 Version 1709 for 32-bit Systems Internet Explorer 11 on Windows 10 Version 1709 for x64-based Systems Microsoft Excel 2010 Service Pack 2 (32-bit editions) Microsoft Excel 2010 Service Pack 2 (64-bit editions) Microsoft SharePoint Server 2010 Service Pack 2 Microsoft SharePoint Foundation 2010 Service Pack 2 Microsoft Word 2010 Service Pack 2 (32-bit editions) Microsoft Word 2010 Service Pack 2 (64-bit editions) Microsoft Office 2010 Service Pack 2 (32-bit editions) Microsoft Office 2010 Service Pack 2 (64-bit editions) Microsoft Office Web Apps 2010 Service Pack 2 Microsoft Outlook 2010 Service Pack 2 (32-bit editions) Microsoft Outlook 2010 Service Pack 2 (64-bit editions) Windows Server 2012 R2 (Server Core installation) Internet Explorer 10 on Windows Server 2012 Microsoft Office 2013 Service Pack 1 (32-bit editions) Microsoft Office 2013 Service Pack 1 (64-bit editions) Microsoft Office 2013 RT Service Pack 1 Microsoft Word 2013 Service Pack 1 (32-bit editions) Microsoft Word 2013 Service Pack 1 (64-bit editions) Microsoft Word 2013 RT Service Pack 1 Microsoft Office Web Apps Server 2013 Service Pack 1 Microsoft .NET Framework 4.5.2 on Windows 7 for 32-bit Systems Service Pack 1 Microsoft .NET Framework 4.5.2 on Windows 7 for x64-based Systems Service Pack 1 Microsoft .NET Framework 4.5.2 on Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation) Microsoft .NET Framework 4.5.2 on Windows Server 2008 R2 for x64-based Systems Service Pack 1 Microsoft .NET Framework 4.5.2 on Windows Server 2012 Microsoft .NET Framework 4.5.2 on Windows Server 2012 (Server Core installation) Microsoft .NET Framework 4.5.2 on Windows 8.1 for 32-bit systems Microsoft .NET Framework 4.5.2 on Windows 8.1 for x64-based systems Microsoft .NET Framework 4.5.2 on Windows Server 2012 R2 Microsoft .NET Framework 4.5.2 on Windows RT 8.1 Microsoft .NET Framework 4.5.2 on Windows Server 2012 R2 (Server Core installation) Microsoft .NET Framework 4.5.2 on Windows Server 2008 for 32-bit Systems Service Pack 2 Microsoft .NET Framework 4.5.2 on Windows Server 2008 for x64-based Systems Service Pack 2 Microsoft Excel 2013 Service Pack 1 (32-bit editions) Microsoft Excel 2013 Service Pack 1 (64-bit editions) Microsoft Excel 2013 RT Service Pack 1 Microsoft Edge (EdgeHTML-based) on Windows 10 for 32-bit Systems Microsoft Edge (EdgeHTML-based) on Windows 10 for x64-based Systems Microsoft Edge (EdgeHTML-based) on Windows 10 Version 1511 for x64-based Systems Microsoft Edge (EdgeHTML-based) on Windows 10 Version 1511 for 32-bit Systems Microsoft Edge (EdgeHTML-based) on Windows Server 2016 Microsoft Edge (EdgeHTML-based) on Windows 10 Version 1607 for 32-bit Systems Microsoft Edge (EdgeHTML-based) on Windows 10 Version 1607 for x64-based Systems Microsoft Edge (EdgeHTML-based) on Windows 10 Version 1703 for 32-bit Systems Microsoft Edge (EdgeHTML-based) on Windows 10 Version 1703 for x64-based Systems Microsoft Edge (EdgeHTML-based) on Windows 10 Version 1709 for 32-bit Systems Microsoft Edge (EdgeHTML-based) on Windows 10 Version 1709 for x64-based Systems Microsoft .NET Framework 4.6 on Windows 10 for 32-bit Systems Microsoft .NET Framework 4.6 on Windows 10 for x64-based Systems Microsoft .NET Framework 4.6 on Windows Server 2008 for 32-bit Systems Service Pack 2 Microsoft .NET Framework 4.6 on Windows Server 2008 for x64-based Systems Service Pack 2 Windows 10 for 32-bit Systems Microsoft Office 2016 for Mac Windows 10 for x64-based Systems Microsoft Excel 2016 (32-bit edition) Microsoft Excel 2016 (64-bit edition) Microsoft Word 2016 (32-bit edition) Microsoft Word 2016 (64-bit edition) Microsoft Office Online Server 2016 Microsoft Office 2016 (32-bit edition) Microsoft Office 2016 (64-bit edition) Microsoft Outlook 2016 (32-bit edition) Microsoft Outlook 2016 (64-bit edition) Windows 10 Version 1511 for x64-based Systems Windows 10 Version 1511 for 32-bit Systems Microsoft .NET Framework 4.6.1 on Windows 10 Version 1511 for x64-based Systems Microsoft .NET Framework 4.6.1 on Windows 10 Version 1511 for 32-bit Systems Microsoft Outlook 2013 Service Pack 1 (32-bit editions) Microsoft Outlook 2013 Service Pack 1 (64-bit editions) Windows Server 2016 Windows 10 Version 1607 for 32-bit Systems Windows 10 Version 1607 for x64-based Systems Windows Server 2016 (Server Core installation) Microsoft Excel 2016 Click-to-Run (C2R) for 32-bit editions Microsoft Office 2016 Click-to-Run (C2R) for 32-bit editions Microsoft Office 2016 Click-to-Run (C2R) for 64-bit editions Microsoft Excel 2016 Click-to-Run (C2R) for 64-bit editions Microsoft SQL Server 2012 for 32-bit Systems Service Pack 3 (GDR) Microsoft SQL Server 2012 for 32-bit Systems Service Pack 3 (CU) Microsoft SQL Server 2012 for x64-based Systems Service Pack 3 (GDR) Microsoft SQL Server 2012 for x64-based Systems Service Pack 3 (CU) Microsoft SQL Server 2014 Service Pack 2 for 32-bit Systems (GDR) Microsoft SQL Server 2014 Service Pack 2 for 32-bit Systems (CU) Microsoft SQL Server 2014 Service Pack 2 for x64-based Systems (CU) Microsoft SQL Server 2014 Service Pack 2 for x64-based Systems (GDR) Microsoft SQL Server 2016 for x64-based Systems (GDR) Microsoft SQL Server 2016 for x64-based Systems (CU) Microsoft SharePoint Enterprise Server 2016 Windows 10 Version 1703 for 32-bit Systems Windows 10 Version 1703 for x64-based Systems Microsoft .NET Framework 4.7 on Windows 10 Version 1703 for 32-bit Systems Microsoft .NET Framework 4.7 on Windows 10 Version 1703 for x64-based Systems Microsoft SharePoint Enterprise Server 2013 Service Pack 1 Microsoft .NET Framework 4.6.2/4.7 on Windows Server 2016 Microsoft .NET Framework 4.6.2/4.7 on Windows 10 Version 1607 for 32-bit Systems Microsoft .NET Framework 4.6.2/4.7 on Windows 10 Version 1607 for x64-based Systems Microsoft .NET Framework 4.6.2/4.7 on Windows Server 2016 (Server Core installation) Microsoft SQL Server 2016 for x64-based Systems Service Pack 1 (GDR) Microsoft SQL Server 2016 for x64-based Systems Service Pack 1 (CU) ChakraCore Microsoft .NET Framework 4.6/4.6.1/4.6.2/4.7 on Windows 7 for 32-bit Systems Service Pack 1 Microsoft .NET Framework 4.6/4.6.1/4.6.2/4.7 on Windows 7 for x64-based Systems Service Pack 1 Microsoft .NET Framework 4.6/4.6.1/4.6.2/4.7 on Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation) Microsoft .NET Framework 4.6/4.6.1/4.6.2/4.7 on Windows Server 2008 R2 for x64-based Systems Service Pack 1 Microsoft .NET Framework 4.6/4.6.1/4.6.2/4.7 on Windows Server 2012 Microsoft .NET Framework 4.6/4.6.1/4.6.2/4.7 on Windows Server 2012 (Server Core installation) Microsoft .NET Framework 4.6/4.6.1/4.6.2/4.7 on Windows 8.1 for 32-bit systems Microsoft .NET Framework 4.6/4.6.1/4.6.2/4.7 on Windows 8.1 for x64-based systems Microsoft .NET Framework 4.6/4.6.1/4.6.2/4.7 on Windows Server 2012 R2 Microsoft .NET Framework 4.6/4.6.1/4.6.2/4.7 on Windows RT 8.1 Microsoft .NET Framework 4.6/4.6.1/4.6.2/4.7 on Windows Server 2012 R2 (Server Core installation) Windows 10 Version 1709 for 32-bit Systems Windows 10 Version 1709 for x64-based Systems ASP.NET Core 2.0 .NET Core 1.0 .NET Core 1.1 .NET Core 2.0 Windows Server, version 1709 (Server Core Installation) Microsoft SQL Server 2008 for 32-bit Systems Service Pack 4 (QFE) Microsoft SQL Server 2012 for 32-bit Systems Service Pack 4 (QFE) Microsoft SQL Server 2012 for x64-based Systems Service Pack 4 (QFE) Microsoft SQL Server 2017 for x64-based Systems (GDR) Microsoft SQL Server 2017 for x64-based Systems (CU) Microsoft .NET Framework 4.7.1 on Windows 10 Version 1709 for 32-bit Systems Microsoft .NET Framework 4.7.1 on Windows 10 Version 1709 for x64-based Systems Microsoft .NET Framework 4.7.1 on Windows Server, version 1709 (Server Core Installation) Microsoft SQL Server 2008 R2 for 32-Bit Systems Service Pack 3 (QFE) Microsoft SQL Server 2008 R2 for x64-Based Systems Service Pack 3 (QFE) Microsoft SQL Server 2008 for x64-Based Systems Service Pack 4 (QFE) PowerShell Core 6.0.0 Windows 10 Version 1607 for HoloLens Windows 10 Version 1803 for 32-bit Systems Windows 10 Version 1803 for x64-based Systems Windows Server, version 1803 (Server Core Installation) Windows 10 Version 1803 for ARM64-based Systems Windows 10 Version 1809 for 32-bit Systems Windows 10 Version 1809 for x64-based Systems Windows 10 Version 1809 for ARM64-based Systems Microsoft Office Word Viewer azl3 slf4j 2.0.7-1 on Azure Linux 3.0 azl3 slf4j 2.0.7-1 on Azure Linux 3.0 azl3 python-blinker 1.7.0-4 on Azure Linux 3.0 azl3 python-blinker 1.7.0-4 on Azure Linux 3.0 azl3 ceph 18.2.2-1 on Azure Linux 3.0 azl3 ceph 18.2.2-1 on Azure Linux 3.0 cm1 p7zip 16.02-22 on CBL Mariner 1.0 cbl2 p7zip 16.02-22 on CBL Mariner 2.0 azl3 p7zip 16.02-23 on Azure Linux 3.0 azl3 p7zip 16.02-23 on Azure Linux 3.0 azl3 mozjs 102.15.1-1 on Azure Linux 3.0 azl3 javapackages-bootstrap 1.14.0-2 on Azure Linux 3.0 azl3 ceph 18.2.2-8 on Azure Linux 3.0 azl3 rust 1.75.0-14 on Azure Linux 3.0 azl3 rust 1.86.0-1 on Azure Linux 3.0 azl3 python-tensorboard 2.16.2-6 on Azure Linux 3.0 azl3 fontawesome4-fonts 4.7.0-12 on Azure Linux 3.0 azl3 boost 1.83.0-2 on Azure Linux 3.0 azl3 scons 4.6.0-1 on Azure Linux 3.0 azl3 cal10n 0.8.1.10-1 on Azure Linux 3.0 azl3 slf4j 1.7.30-6 on Azure Linux 3.0 azl3 orangefs 2.9.8-3 on Azure Linux 3.0 cbl2 orangefs 2.9.8-3 on CBL Mariner 2.0 azl3 openscap 1.3.9-1 on Azure Linux 3.0 Microsoft .NET Framework 3.5 on Windows Server 2012 Microsoft .NET Framework 3.5 on Windows Server 2012 (Server Core installation) Microsoft .NET Framework 3.5 on Windows 8.1 for 32-bit systems Microsoft .NET Framework 3.5 on Windows 8.1 for x64-based systems Microsoft .NET Framework 3.5 on Windows Server 2012 R2 Microsoft .NET Framework 3.5 on Windows Server 2012 R2 (Server Core installation) Microsoft .NET Framework 3.5 on Windows 10 for 32-bit Systems Microsoft .NET Framework 3.5 on Windows 10 for x64-based Systems Microsoft .NET Framework 3.5 on Windows 10 Version 1511 for x64-based Systems Microsoft .NET Framework 3.5 on Windows 10 Version 1511 for 32-bit Systems Microsoft .NET Framework 3.5 on Windows Server 2016 Microsoft .NET Framework 3.5 on Windows 10 Version 1607 for 32-bit Systems Microsoft .NET Framework 3.5 on Windows 10 Version 1607 for x64-based Systems Microsoft .NET Framework 3.5 on Windows Server 2016 (Server Core installation) Microsoft .NET Framework 3.5 on Windows 10 Version 1703 for 32-bit Systems Microsoft .NET Framework 3.5 on Windows 10 Version 1703 for x64-based Systems Microsoft .NET Framework 3.5 on Windows 10 Version 1709 for 32-bit Systems Microsoft .NET Framework 3.5 on Windows 10 Version 1709 for x64-based Systems Microsoft .NET Framework 3.5 on Windows Server, version 1709 (Server Core Installation) Microsoft Office Compatibility Pack Service Pack 3 Microsoft .NET Framework 3.0 Service Pack 2 on Windows Server 2008 for Itanium-Based Systems Service Pack 2 Microsoft .NET Framework 3.0 Service Pack 2 on Windows Server 2008 for 32-bit Systems Service Pack 2 Microsoft .NET Framework 3.0 Service Pack 2 on Windows Server 2008 for x64-based Systems Service Pack 2 Microsoft .NET Framework 2.0 Service Pack 2 on Windows Server 2008 for Itanium-Based Systems Service Pack 2 Microsoft .NET Framework 2.0 Service Pack 2 on Windows Server 2008 for 32-bit Systems Service Pack 2 Microsoft .NET Framework 2.0 Service Pack 2 on Windows Server 2008 for x64-based Systems Service Pack 2 Windows Server 2008 for Itanium-Based Systems Service Pack 2 Windows Server 2008 for 32-bit Systems Service Pack 2 Windows Server 2008 for x64-based Systems Service Pack 2 Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation) Microsoft .NET Framework 3.5.1 on Windows 7 for 32-bit Systems Service Pack 1 Microsoft .NET Framework 3.5.1 on Windows 7 for x64-based Systems Service Pack 1 Microsoft .NET Framework 3.5.1 on Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation) Microsoft .NET Framework 3.5.1 on Windows Server 2008 R2 for Itanium-Based Systems Service Pack 1 Microsoft .NET Framework 3.5.1 on Windows Server 2008 R2 for x64-based Systems Service Pack 1 jQuery before 3.0.0 is vulnerable to Cross-site Scripting (XSS) attacks when a cross-domain Ajax request is performed without the dataType option causing text/javascript responses to be executed. <p><strong>Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability?</strong></p> <p>One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is composed. Microsoft is committed to transparency in this work which is why we began publishing CSAF/VEX in October 2025. See <a href="https://www.microsoft.com/en-us/msrc/blog/2025/10/toward-greater-transparency-machine-readable-vulnerability-exploitability-xchange-for-azure-linux">this blog</a> post for more information. If impact to additional products is identified, we will update the CVE to reflect this.</p> Mariner mitre Yes CVE-2015-9251 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') 16853-17084 16854-17084 16855-17084 20250-17086 18469-17084 20120-17084 19842-17084 20263-17084 20150-17084 19686-17084 16853-16817 16854-16817 16855-16817 20249-17084 19693-17084 19034-17084 19666-17084 20142-17084 19732-17084 19671-17084 16853-17084 16854-17084 16855-17084 20250-17086 18469-17084 20120-17084 19842-17084 20263-17084 20150-17084 19686-17084 16853-16817 16854-16817 16855-16817 20249-17084 19693-17084 19034-17084 19666-17084 20142-17084 19732-17084 19671-17084 Moderate 16853-17084 Moderate 16854-17084 Moderate 16855-17084 20250-17086 18469-17084 20120-17084 19842-17084 20263-17084 20150-17084 19686-17084 Moderate 16853-16817 Moderate 16854-16817 Moderate 16855-16817 20249-17084 19693-17084 19034-17084 19666-17084 20142-17084 19732-17084 19671-17084 6.1 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 16853-17084 6.1 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 16854-17084 6.1 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 16855-17084 6.1 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 20250-17086 6.1 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 18469-17084 6.1 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 20120-17084 6.1 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 19842-17084 6.1 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 20263-17084 6.1 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 20150-17084 6.1 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 19686-17084 6.1 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 16853-16817 6.1 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 16854-16817 6.1 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 16855-16817 6.1 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 20249-17084 6.1 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 19693-17084 6.1 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 19034-17084 6.1 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 19666-17084 6.1 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 20142-17084 6.1 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 19732-17084 6.1 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 19671-17084 CBL-Mariner Releases 16853-17084 20150-17084 16853-16817 No Security Update 2.0.7-1 https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade 16853-17084 20150-17084 16853-16817 CBL-Mariner Releases CBL-Mariner Releases 16854-17084 16854-16817 No Security Update 1.7.0-4 https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade 16854-17084 16854-16817 CBL-Mariner Releases CBL-Mariner Releases 16855-17084 16855-16817 19666-17084 No Security Update 18.2.2-1 https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade 16855-17084 16855-16817 19666-17084 CBL-Mariner Releases 1.1 2025-02-03T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 1.3 2025-02-05T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 1.4 2025-02-07T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 1.5 2025-02-08T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 1.6 2025-02-09T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 1.8 2025-02-11T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 2.2 2025-02-15T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 2.4 2025-02-17T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 2.5 2025-02-18T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 2.6 2025-02-19T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 3.0 2025-02-23T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 3.1 2025-02-24T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 3.3 2025-02-26T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 3.4 2025-02-27T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 3.7 2025-03-02T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 3.8 2025-03-03T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 4.0 2025-03-05T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 4.1 2025-03-06T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 4.2 2025-03-08T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 4.4 2025-03-10T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 4.5 2025-03-11T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 4.6 2025-03-12T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 4.7 2025-03-13T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 5.2 2025-03-18T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 5.5 2025-03-21T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 5.6 2025-03-22T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 5.7 2025-03-23T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 6.2 2025-03-28T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 6.5 2025-03-31T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 6.6 2025-04-01T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 6.8 2025-04-04T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 7.0 2025-04-06T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 7.1 2025-04-07T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 7.2 2025-04-08T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 7.3 2025-04-09T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 7.6 2025-04-13T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 7.8 2025-04-15T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 7.9 2025-04-16T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 8.0 2025-04-17T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 8.4 2025-04-21T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 8.5 2025-04-22T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 8.6 2025-04-23T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 8.7 2025-04-24T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 8.8 2025-04-25T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 9.0 2025-04-28T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 9.2 2025-04-30T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 9.5 2025-05-03T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 9.8 2025-05-06T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 9.9 2025-05-07T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 10.2 2025-05-10T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 10.3 2025-05-11T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 10.4 2025-05-12T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 10.6 2025-05-14T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 10.7 2025-05-15T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 10.9 2025-05-17T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 11.2 2025-05-20T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 11.4 2025-05-22T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 11.7 2025-05-25T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 11.8 2025-05-26T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 1.0 2024-09-11T00:00:00 <p>Information published.</p> 1.2 2025-02-04T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 1.7 2025-02-10T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 1.9 2025-02-12T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 2.0 2025-02-13T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 2.1 2025-02-14T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 2.3 2025-02-16T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 2.7 2025-02-20T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 2.8 2025-02-21T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 2.9 2025-02-22T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 3.2 2025-02-25T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 3.5 2025-02-28T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 3.6 2025-03-01T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 3.9 2025-03-04T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 4.3 2025-03-09T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 4.8 2025-03-14T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 4.9 2025-03-15T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 5.0 2025-03-16T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 5.1 2025-03-17T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 5.3 2025-03-19T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 5.4 2025-03-20T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 5.8 2025-03-24T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 5.9 2025-03-25T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 6.0 2025-03-26T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 6.1 2025-03-27T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 6.3 2025-03-29T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 6.4 2025-03-30T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 6.7 2025-04-03T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 6.9 2025-04-05T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 7.4 2025-04-11T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 7.5 2025-04-12T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 7.7 2025-04-14T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 8.1 2025-04-18T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 8.2 2025-04-19T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 8.3 2025-04-20T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 8.9 2025-04-26T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 9.1 2025-04-29T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 9.3 2025-05-01T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 9.4 2025-05-02T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 9.6 2025-05-04T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 9.7 2025-05-05T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 10.0 2025-05-08T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 10.1 2025-05-09T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 10.5 2025-05-13T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 10.8 2025-05-16T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 11.0 2025-05-18T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 11.1 2025-05-19T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 11.3 2025-05-21T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 11.5 2025-05-23T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 11.6 2025-05-24T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 11.9 2025-05-27T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> Heap-based buffer overflow in the NCompress::NShrink::CDecoder::CodeReal method in 7-Zip before 18.00 and p7zip allows remote attackers to cause a denial of service (out-of-bounds write) or potentially execute arbitrary code via a crafted ZIP archive. <p><strong>Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability?</strong></p> <p>One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is composed. Microsoft is committed to transparency in this work which is why we began publishing CSAF/VEX in October 2025. See <a href="https://www.microsoft.com/en-us/msrc/blog/2025/10/toward-greater-transparency-machine-readable-vulnerability-exploitability-xchange-for-azure-linux">this blog</a> post for more information. If impact to additional products is identified, we will update the CVE to reflect this.</p> Mariner mitre Yes CVE-2017-17969 Out-of-bounds Write 16884-17084 16882-16820 16883-16823 16884-16817 16884-17084 16882-16820 16883-16823 16884-16817 Important 16884-17084 Important 16882-16820 Important 16883-16823 Important 16884-16817 7.8 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 16884-17084 7.8 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 16882-16820 7.8 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 16883-16823 7.8 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 16884-16817 CBL-Mariner Releases 16884-17084 16884-16817 No Security Update 16.02-23 https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade 16884-17084 16884-16817 CBL-Mariner Releases CBL-Mariner Releases 16882-16820 16883-16823 No Security Update 16.02-22 https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade 16882-16820 16883-16823 CBL-Mariner Releases 1.0 2021-12-16T00:00:00 <p>Information published.</p> 1.1 2024-06-30T07:00:00 <p>Information published.</p> Insufficient exception handling in the method NCompress::NRar3::CDecoder::Code of 7-Zip before 18.00 and p7zip can lead to multiple memory corruptions within the PPMd code allows remote attackers to cause a denial of service (segmentation fault) or execute arbitrary code via a crafted RAR archive. <p><strong>Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability?</strong></p> <p>One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is composed. Microsoft is committed to transparency in this work which is why we began publishing CSAF/VEX in October 2025. See <a href="https://www.microsoft.com/en-us/msrc/blog/2025/10/toward-greater-transparency-machine-readable-vulnerability-exploitability-xchange-for-azure-linux">this blog</a> post for more information. If impact to additional products is identified, we will update the CVE to reflect this.</p> Mariner mitre Yes CVE-2018-5996 Improper Restriction of Operations within the Bounds of a Memory Buffer 16884-17084 16882-16820 16883-16823 16884-16817 16884-17084 16882-16820 16883-16823 16884-16817 Important 16884-17084 Important 16882-16820 Important 16883-16823 Important 16884-16817 7.8 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 16884-17084 7.8 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 16882-16820 7.8 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 16883-16823 7.8 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 16884-16817 CBL-Mariner Releases 16884-17084 16884-16817 No Security Update 16.02-23 https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade 16884-17084 16884-16817 CBL-Mariner Releases CBL-Mariner Releases 16882-16820 16883-16823 No Security Update 16.02-22 https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade 16882-16820 16883-16823 CBL-Mariner Releases 1.0 2021-12-16T00:00:00 <p>Information published.</p> 1.1 2024-06-30T07:00:00 <p>Information published.</p> jQuery before 1.9.0 is vulnerable to Cross-site Scripting (XSS) attacks. The jQuery(strInput) function does not differentiate selectors from HTML in a reliable fashion. In vulnerable versions jQuery determined whether the input was HTML by looking for the '<' character anywhere in the string giving attackers more flexibility when attempting to construct a malicious payload. In fixed versions jQuery only deems the input to be HTML if it explicitly starts with the '<' character limiting exploitability only to attackers who can control the beginning of a string which is far less common. <p><strong>Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability?</strong></p> <p>One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is composed. Microsoft is committed to transparency in this work which is why we began publishing CSAF/VEX in October 2025. See <a href="https://www.microsoft.com/en-us/msrc/blog/2025/10/toward-greater-transparency-machine-readable-vulnerability-exploitability-xchange-for-azure-linux">this blog</a> post for more information. If impact to additional products is identified, we will update the CVE to reflect this.</p> Mariner mitre Yes CVE-2012-6708 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') 16853-17084 16854-17084 16855-17084 19693-17084 20120-17084 18469-17084 19671-17084 19686-17084 19666-17084 20142-17084 19732-17084 19034-17084 19842-17084 20150-17084 16853-17084 16854-17084 16855-17084 19693-17084 20120-17084 18469-17084 19671-17084 19686-17084 19666-17084 20142-17084 19732-17084 19034-17084 19842-17084 20150-17084 Moderate 16853-17084 Moderate 16854-17084 Moderate 16855-17084 Moderate 19693-17084 Moderate 20120-17084 Moderate 18469-17084 Moderate 19671-17084 Moderate 19686-17084 Moderate 19666-17084 Moderate 20142-17084 Moderate 19732-17084 Moderate 19034-17084 Moderate 19842-17084 Moderate 20150-17084 6.1 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 16853-17084 6.1 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 16854-17084 6.1 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 16855-17084 6.1 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 19693-17084 6.1 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 20120-17084 6.1 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 18469-17084 6.1 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 19671-17084 6.1 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 19686-17084 6.1 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 19666-17084 6.1 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 20142-17084 6.1 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 19732-17084 6.1 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 19034-17084 6.1 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 19842-17084 6.1 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 20150-17084 CBL-Mariner Releases 16853-17084 20150-17084 No Security Update 2.0.7-1 https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade 16853-17084 20150-17084 CBL-Mariner Releases CBL-Mariner Releases 16854-17084 No Security Update 1.7.0-4 https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade 16854-17084 CBL-Mariner Releases CBL-Mariner Releases 16855-17084 19666-17084 No Security Update 18.2.2-1 https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade 16855-17084 19666-17084 CBL-Mariner Releases 1.1 2025-02-03T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 1.3 2025-02-05T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 1.4 2025-02-07T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 1.5 2025-02-08T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 1.8 2025-02-11T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 2.3 2025-02-16T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 2.4 2025-02-17T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 2.6 2025-02-19T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 3.1 2025-02-24T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 3.3 2025-02-26T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 3.5 2025-02-28T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 3.7 2025-03-02T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 3.8 2025-03-03T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 4.1 2025-03-06T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 4.4 2025-03-10T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 4.6 2025-03-12T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 4.7 2025-03-13T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 5.2 2025-03-18T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 5.5 2025-03-21T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 5.6 2025-03-22T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 5.7 2025-03-23T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 6.1 2025-03-27T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 6.2 2025-03-28T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 6.4 2025-03-30T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 6.5 2025-03-31T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 6.6 2025-04-01T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 6.8 2025-04-04T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 6.9 2025-04-05T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 7.0 2025-04-06T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 7.1 2025-04-07T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 7.2 2025-04-08T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 7.3 2025-04-09T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 7.6 2025-04-13T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 7.7 2025-04-14T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 7.8 2025-04-15T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 7.9 2025-04-16T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 8.0 2025-04-17T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 8.3 2025-04-20T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 8.4 2025-04-21T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 8.6 2025-04-23T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 8.7 2025-04-24T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 8.8 2025-04-25T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 8.9 2025-04-26T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 9.0 2025-04-28T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 9.2 2025-04-30T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 9.3 2025-05-01T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 9.5 2025-05-03T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 9.6 2025-05-04T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 9.7 2025-05-05T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 9.8 2025-05-06T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 9.9 2025-05-07T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 10.0 2025-05-08T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 10.3 2025-05-11T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 10.4 2025-05-12T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 10.6 2025-05-14T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 10.7 2025-05-15T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 11.0 2025-05-18T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 11.2 2025-05-20T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 11.3 2025-05-21T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 11.4 2025-05-22T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 11.6 2025-05-24T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 11.8 2025-05-26T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 11.9 2025-05-27T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 12.0 2026-02-18T03:07:24 <p>Information published.</p> 1.0 2024-09-11T00:00:00 <p>Information published.</p> 1.2 2025-02-04T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 1.6 2025-02-09T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 1.7 2025-02-10T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 1.9 2025-02-12T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 2.0 2025-02-13T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 2.1 2025-02-14T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 2.2 2025-02-15T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 2.5 2025-02-18T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 2.7 2025-02-20T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 2.8 2025-02-21T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 2.9 2025-02-22T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 3.0 2025-02-23T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 3.2 2025-02-25T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 3.4 2025-02-27T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 3.6 2025-03-01T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 3.9 2025-03-04T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 4.0 2025-03-05T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 4.2 2025-03-08T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 4.3 2025-03-09T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 4.5 2025-03-11T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 4.8 2025-03-14T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 4.9 2025-03-15T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 5.0 2025-03-16T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 5.1 2025-03-17T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 5.3 2025-03-19T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 5.4 2025-03-20T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 5.8 2025-03-24T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 5.9 2025-03-25T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 6.0 2025-03-26T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 6.3 2025-03-29T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 6.7 2025-04-03T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 7.4 2025-04-11T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 7.5 2025-04-12T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 8.1 2025-04-18T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 8.2 2025-04-19T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 8.5 2025-04-22T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 9.1 2025-04-29T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 9.4 2025-05-02T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 10.1 2025-05-09T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 10.2 2025-05-10T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 10.5 2025-05-13T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 10.8 2025-05-16T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 10.9 2025-05-17T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 11.1 2025-05-19T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 11.5 2025-05-23T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> 11.7 2025-05-25T00:00:00 <p>Added slf4j to Azure Linux 3.0</p> Microsoft Office Defense in Depth Update <p>Microsoft has released an update for Microsoft Office that provides enhanced security as a defense in depth measure.</p> Microsoft Office ADV180003 10753 10754 10905 10906 10150 10521 10522 10603 10601 10602 Defense in Depth 10753 Defense in Depth 10754 Defense in Depth 10905 Defense in Depth 10906 Defense in Depth 10150 Defense in Depth 10521 Defense in Depth 10522 Defense in Depth 10603 Defense in Depth 10601 Defense in Depth 10602 None 10753 None 10754 None 10905 None 10906 None 10150 None 10521 None 10522 None 10603 None 10601 None 10602 Publicly Disclosed:No;Exploited:No 4011622 https://www.microsoft.com/downloads/details.aspx?familyid=e471a9fd-0d48-49c1-954e-3f50bad0ec91 4011038 10753 Maybe Security Update 4011622 https://www.microsoft.com/downloads/details.aspx?familyid=0644ab0a-0160-4ef1-b18b-ef8b9fd29240 4011038 10754 Maybe Security Update Click to Run 10905 Maybe Security Update Click to Run 10906 No Security Update 4011201 https://www.microsoft.com/downloads/details.aspx?familyid=57604ded-f97d-4b79-a237-59d9aecf702e 4011063 10150 Maybe Security Update 4011611 https://www.microsoft.com/downloads/details.aspx?familyid=7369b56d-5149-4c74-9374-ea9a9d9da47a 4011055 10521 Maybe Security Update 4011611 https://www.microsoft.com/downloads/details.aspx?familyid=533bc56e-2bf3-4fb2-85e1-f28f16ca14e8 4011055 10522 Maybe Security Update 4011636 10603 Maybe Security Update 4011636 https://www.microsoft.com/downloads/details.aspx?familyid=5e41dae0-c4db-4fd3-a5ed-a5e5c176d162 4011103 10601 Maybe Security Update 4011636 https://www.microsoft.com/downloads/details.aspx?familyid=755edfae-e26e-4286-ad08-6241abfec2a8 4011103 10602 Maybe Security Update 1.0 2018-01-09T08:00:00Z <p>Information published.</p> Microsoft Office Memory Corruption Vulnerability <p>A remote code execution vulnerability exists in Microsoft Office software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on with administrative user rights, an attacker could take control of the affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.</p> <p>Exploitation of the vulnerability requires that a user open a specially crafted file with an affected version of Microsoft Office or Microsoft WordPad software. In an email attack scenario, an attacker could exploit the vulnerability by sending the specially crafted file to the user and convincing the user to open the file. In a web-based attack scenario, an attacker could host a website (or leverage a compromised website that accepts or hosts user-provided content) containing a specially crafted file designed to exploit the vulnerability. An attacker would have no way to force users to visit the website. Instead, an attacker would have to convince users to click a link, typically by way of an enticement in an email or instant message, and then convince them to open the specially crafted file.</p> <p>The security update addresses the vulnerability by removing Equation Editor functionality. For more information on this change, please refer to the following article: <a href="https://support.microsoft.com/en-us/help/4057882">https://support.microsoft.com/en-us/help/4057882</a></p> Microsoft Office CVE-2018-0804 10753 10754 10746 10747 10905 10906 10150 10521 10522 10601 10602 4497 10162 10513 10514 10606 10604 10605 Remote Code Execution 10753 Remote Code Execution 10754 Remote Code Execution 10746 Remote Code Execution 10747 Remote Code Execution 10905 Remote Code Execution 10906 Remote Code Execution 10150 Remote Code Execution 10521 Remote Code Execution 10522 Remote Code Execution 10601 Remote Code Execution 10602 Remote Code Execution 4497 Remote Code Execution 10162 Remote Code Execution 10513 Remote Code Execution 10514 Remote Code Execution 10606 Remote Code Execution 10604 Remote Code Execution 10605 Low 10753 Low 10754 Low 10746 Low 10747 Low 10905 Low 10906 Low 10150 Low 10521 Low 10522 Low 10601 Low 10602 Low 4497 Low 10162 Low 10513 Low 10514 Low 10606 Low 10604 Low 10605 Publicly Disclosed:No;Exploited:No;Latest Software Release:Exploitation Unlikely;Older Software Release:Exploitation Unlikely 4011574 https://www.microsoft.com/downloads/details.aspx?familyid=b0a99a51-599c-4b33-aa49-ceb75f4520f7 4011262 10753 Maybe Security Update 4011574 https://www.microsoft.com/downloads/details.aspx?familyid=163108fd-18ee-4610-b0cf-bc722f9655e1 4011262 10754 Maybe Security Update 4011643 https://www.microsoft.com/downloads/details.aspx?familyid=919fcd04-b72d-4dc5-9afa-a6fa30125e3f 4011575 10746 Maybe Security Update 4011643 https://www.microsoft.com/downloads/details.aspx?familyid=4cc2a1b6-6b5d-47b4-a463-81081dfc41c1 4011575 10747 Maybe Security Update Click to Run 10905 Maybe Security Update Click to Run 10906 No Security Update 4011656 https://www.microsoft.com/downloads/details.aspx?familyid=456bea44-8229-4bb0-bf67-321ac6b4a2e5 4011604 10150 Maybe Security Update 4011610 https://www.microsoft.com/downloads/details.aspx?familyid=982129f7-f445-4b72-89b5-751ac9896f6a 4011618 10521 Maybe Security Update 4011610 https://www.microsoft.com/downloads/details.aspx?familyid=47b29c72-b2a6-4b9b-a1d0-9dbbde948540 4011618 10522 Maybe Security Update 4011651 https://www.microsoft.com/downloads/details.aspx?familyid=95bc77f3-0845-4af2-84cf-436070a6e8a1 4011590 10601 Maybe Security Update 4011651 https://www.microsoft.com/downloads/details.aspx?familyid=3e5b5dc2-cff0-48ae-9955-b1e0abc7e57c 4011590 10602 Maybe Security Update 4011607 https://www.microsoft.com/downloads/details.aspx?familyid=8a1593a2-62b7-4ac3-9c5c-e64e70edf7e5 4011265 4497 Maybe Security Update 4011657 https://www.microsoft.com/downloads/details.aspx?familyid=7e67f7a4-7838-4019-a894-939d8b7e0b7b 4011608 10162 Maybe Security Update 4011659 https://www.microsoft.com/downloads/details.aspx?familyid=2a266bf5-20d3-4a81-a447-3ba52cf10c0d 4011614 10513 Maybe Security Update 4011659 https://www.microsoft.com/downloads/details.aspx?familyid=7c7e1022-7a6e-44aa-8cae-5069a6d4aa76 4011614 10514 Maybe Security Update 4011651 10606 Maybe Security Update 4011651 https://www.microsoft.com/downloads/details.aspx?familyid=95bc77f3-0845-4af2-84cf-436070a6e8a1 4011590 10604 Maybe Security Update 4011651 https://www.microsoft.com/downloads/details.aspx?familyid=3e5b5dc2-cff0-48ae-9955-b1e0abc7e57c 4011590 10605 Maybe Security Update Yuki Chen of <a href="http://www.360.com/">Qihoo 360 Vulcan Team</a> 1.0 2018-01-09T08:00:00Z <p>Information published.</p> Microsoft Office Memory Corruption Vulnerability <p>A remote code execution vulnerability exists in Microsoft Office software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on with administrative user rights, an attacker could take control of the affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.</p> <p>Exploitation of the vulnerability requires that a user open a specially crafted file with an affected version of Microsoft Office or Microsoft WordPad software. In an email attack scenario, an attacker could exploit the vulnerability by sending the specially crafted file to the user and convincing the user to open the file. In a web-based attack scenario, an attacker could host a website (or leverage a compromised website that accepts or hosts user-provided content) containing a specially crafted file designed to exploit the vulnerability. An attacker would have no way to force users to visit the website. Instead, an attacker would have to convince users to click a link, typically by way of an enticement in an email or instant message, and then convince them to open the specially crafted file.</p> <p>The security update addresses the vulnerability by removing Equation Editor functionality. For more information on this change, please refer to the following article: <a href="https://support.microsoft.com/en-us/help/4057882">https://support.microsoft.com/en-us/help/4057882</a></p> Microsoft Office CVE-2018-0805 10753 10754 10746 10747 10905 10906 10150 10521 10522 10601 10602 4497 10162 10513 10514 10606 10604 10605 Remote Code Execution 10753 Remote Code Execution 10754 Remote Code Execution 10746 Remote Code Execution 10747 Remote Code Execution 10905 Remote Code Execution 10906 Remote Code Execution 10150 Remote Code Execution 10521 Remote Code Execution 10522 Remote Code Execution 10601 Remote Code Execution 10602 Remote Code Execution 4497 Remote Code Execution 10162 Remote Code Execution 10513 Remote Code Execution 10514 Remote Code Execution 10606 Remote Code Execution 10604 Remote Code Execution 10605 Important 10753 Important 10754 Important 10746 Important 10747 Important 10905 Important 10906 Important 10150 Important 10521 Important 10522 Important 10601 Important 10602 Important 4497 Important 10162 Important 10513 Important 10514 Important 10606 Important 10604 Important 10605 Publicly Disclosed:No;Exploited:No;Latest Software Release:Exploitation Unlikely;Older Software Release:Exploitation Unlikely 4011574 https://www.microsoft.com/downloads/details.aspx?familyid=b0a99a51-599c-4b33-aa49-ceb75f4520f7 4011262 10753 Maybe Security Update 4011574 https://www.microsoft.com/downloads/details.aspx?familyid=163108fd-18ee-4610-b0cf-bc722f9655e1 4011262 10754 Maybe Security Update 4011643 https://www.microsoft.com/downloads/details.aspx?familyid=919fcd04-b72d-4dc5-9afa-a6fa30125e3f 4011575 10746 Maybe Security Update 4011643 https://www.microsoft.com/downloads/details.aspx?familyid=4cc2a1b6-6b5d-47b4-a463-81081dfc41c1 4011575 10747 Maybe Security Update Click to Run 10905 Maybe Security Update Click to Run 10906 No Security Update 4011656 https://www.microsoft.com/downloads/details.aspx?familyid=456bea44-8229-4bb0-bf67-321ac6b4a2e5 4011604 10150 Maybe Security Update 4011610 https://www.microsoft.com/downloads/details.aspx?familyid=982129f7-f445-4b72-89b5-751ac9896f6a 4011618 10521 Maybe Security Update 4011610 https://www.microsoft.com/downloads/details.aspx?familyid=47b29c72-b2a6-4b9b-a1d0-9dbbde948540 4011618 10522 Maybe Security Update 4011651 https://www.microsoft.com/downloads/details.aspx?familyid=95bc77f3-0845-4af2-84cf-436070a6e8a1 4011590 10601 Maybe Security Update 4011651 https://www.microsoft.com/downloads/details.aspx?familyid=3e5b5dc2-cff0-48ae-9955-b1e0abc7e57c 4011590 10602 Maybe Security Update 4011607 https://www.microsoft.com/downloads/details.aspx?familyid=8a1593a2-62b7-4ac3-9c5c-e64e70edf7e5 4011265 4497 Maybe Security Update 4011657 https://www.microsoft.com/downloads/details.aspx?familyid=7e67f7a4-7838-4019-a894-939d8b7e0b7b 4011608 10162 Maybe Security Update 4011659 https://www.microsoft.com/downloads/details.aspx?familyid=2a266bf5-20d3-4a81-a447-3ba52cf10c0d 4011614 10513 Maybe Security Update 4011659 https://www.microsoft.com/downloads/details.aspx?familyid=7c7e1022-7a6e-44aa-8cae-5069a6d4aa76 4011614 10514 Maybe Security Update 4011651 10606 Maybe Security Update 4011651 https://www.microsoft.com/downloads/details.aspx?familyid=95bc77f3-0845-4af2-84cf-436070a6e8a1 4011590 10604 Maybe Security Update 4011651 https://www.microsoft.com/downloads/details.aspx?familyid=3e5b5dc2-cff0-48ae-9955-b1e0abc7e57c 4011590 10605 Maybe Security Update Wenxuan Zheng of Tencent PC Manager <a href=https://twitter.com/bee13oy>bee13oy</a> of <a href=https://www.360.com/>Qihoo 360 Vulcan Team</a> Yuki Chen of <a href="http://www.360.com/">Qihoo 360 Vulcan Team</a> 1.0 2018-01-09T08:00:00Z <p>Information published.</p> Microsoft Office Memory Corruption Vulnerability <p>A remote code execution vulnerability exists in Microsoft Office software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on with administrative user rights, an attacker could take control of the affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.</p> <p>Exploitation of the vulnerability requires that a user open a specially crafted file with an affected version of Microsoft Office or Microsoft WordPad software. In an email attack scenario, an attacker could exploit the vulnerability by sending the specially crafted file to the user and convincing the user to open the file. In a web-based attack scenario, an attacker could host a website (or leverage a compromised website that accepts or hosts user-provided content) containing a specially crafted file designed to exploit the vulnerability. An attacker would have no way to force users to visit the website. Instead, an attacker would have to convince users to click a link, typically by way of an enticement in an email or instant message, and then convince them to open the specially crafted file.</p> <p>The security update addresses the vulnerability by removing Equation Editor functionality. For more information on this change, please refer to the following article: <a href="https://support.microsoft.com/en-us/help/4057882">https://support.microsoft.com/en-us/help/4057882</a></p> Microsoft Office CVE-2018-0806 10753 10754 10746 10747 10905 10906 10150 10521 10522 10601 10602 4497 10162 10513 10514 10606 10604 10605 Remote Code Execution 10753 Remote Code Execution 10754 Remote Code Execution 10746 Remote Code Execution 10747 Remote Code Execution 10905 Remote Code Execution 10906 Remote Code Execution 10150 Remote Code Execution 10521 Remote Code Execution 10522 Remote Code Execution 10601 Remote Code Execution 10602 Remote Code Execution 4497 Remote Code Execution 10162 Remote Code Execution 10513 Remote Code Execution 10514 Remote Code Execution 10606 Remote Code Execution 10604 Remote Code Execution 10605 Important 10753 Important 10754 Important 10746 Important 10747 Important 10905 Important 10906 Important 10150 Important 10521 Important 10522 Important 10601 Important 10602 Important 4497 Important 10162 Important 10513 Important 10514 Important 10606 Important 10604 Important 10605 Publicly Disclosed:No;Exploited:No;Latest Software Release:Exploitation Unlikely;Older Software Release:Exploitation Unlikely 4011574 https://www.microsoft.com/downloads/details.aspx?familyid=b0a99a51-599c-4b33-aa49-ceb75f4520f7 4011262 10753 Maybe Security Update 4011574 https://www.microsoft.com/downloads/details.aspx?familyid=163108fd-18ee-4610-b0cf-bc722f9655e1 4011262 10754 Maybe Security Update 4011643 https://www.microsoft.com/downloads/details.aspx?familyid=919fcd04-b72d-4dc5-9afa-a6fa30125e3f 4011575 10746 Maybe Security Update 4011643 https://www.microsoft.com/downloads/details.aspx?familyid=4cc2a1b6-6b5d-47b4-a463-81081dfc41c1 4011575 10747 Maybe Security Update Click to Run 10905 Maybe Security Update Click to Run 10906 No Security Update 4011656 https://www.microsoft.com/downloads/details.aspx?familyid=456bea44-8229-4bb0-bf67-321ac6b4a2e5 4011604 10150 Maybe Security Update 4011610 https://www.microsoft.com/downloads/details.aspx?familyid=982129f7-f445-4b72-89b5-751ac9896f6a 4011618 10521 Maybe Security Update 4011610 https://www.microsoft.com/downloads/details.aspx?familyid=47b29c72-b2a6-4b9b-a1d0-9dbbde948540 4011618 10522 Maybe Security Update 4011651 https://www.microsoft.com/downloads/details.aspx?familyid=95bc77f3-0845-4af2-84cf-436070a6e8a1 4011590 10601 Maybe Security Update 4011651 https://www.microsoft.com/downloads/details.aspx?familyid=3e5b5dc2-cff0-48ae-9955-b1e0abc7e57c 4011590 10602 Maybe Security Update 4011607 https://www.microsoft.com/downloads/details.aspx?familyid=8a1593a2-62b7-4ac3-9c5c-e64e70edf7e5 4011265 4497 Maybe Security Update 4011657 https://www.microsoft.com/downloads/details.aspx?familyid=7e67f7a4-7838-4019-a894-939d8b7e0b7b 4011608 10162 Maybe Security Update 4011659 https://www.microsoft.com/downloads/details.aspx?familyid=2a266bf5-20d3-4a81-a447-3ba52cf10c0d 4011614 10513 Maybe Security Update 4011659 https://www.microsoft.com/downloads/details.aspx?familyid=7c7e1022-7a6e-44aa-8cae-5069a6d4aa76 4011614 10514 Maybe Security Update 4011651 10606 Maybe Security Update 4011651 https://www.microsoft.com/downloads/details.aspx?familyid=95bc77f3-0845-4af2-84cf-436070a6e8a1 4011590 10604 Maybe Security Update 4011651 https://www.microsoft.com/downloads/details.aspx?familyid=3e5b5dc2-cff0-48ae-9955-b1e0abc7e57c 4011590 10605 Maybe Security Update Yuki Chen of <a href="http://www.360.com/">Qihoo 360 Vulcan Team</a> 1.0 2018-01-09T08:00:00Z <p>Information published.</p> Microsoft Office Memory Corruption Vulnerability <p>A remote code execution vulnerability exists in Microsoft Office software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on with administrative user rights, an attacker could take control of the affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.</p> <p>Exploitation of the vulnerability requires that a user open a specially crafted file with an affected version of Microsoft Office or Microsoft WordPad software. In an email attack scenario, an attacker could exploit the vulnerability by sending the specially crafted file to the user and convincing the user to open the file. In a web-based attack scenario, an attacker could host a website (or leverage a compromised website that accepts or hosts user-provided content) containing a specially crafted file designed to exploit the vulnerability. An attacker would have no way to force users to visit the website. Instead, an attacker would have to convince users to click a link, typically by way of an enticement in an email or instant message, and then convince them to open the specially crafted file.</p> <p>The security update addresses the vulnerability by removing Equation Editor functionality. For more information on this change, please refer to the following article: <a href="https://support.microsoft.com/en-us/help/4057882">https://support.microsoft.com/en-us/help/4057882</a></p> Microsoft Office CVE-2018-0807 10753 10754 10746 10747 10905 10906 10150 10521 10522 10601 10602 4497 10162 10513 10514 10606 10604 10605 Remote Code Execution 10753 Remote Code Execution 10754 Remote Code Execution 10746 Remote Code Execution 10747 Remote Code Execution 10905 Remote Code Execution 10906 Remote Code Execution 10150 Remote Code Execution 10521 Remote Code Execution 10522 Remote Code Execution 10601 Remote Code Execution 10602 Remote Code Execution 4497 Remote Code Execution 10162 Remote Code Execution 10513 Remote Code Execution 10514 Remote Code Execution 10606 Remote Code Execution 10604 Remote Code Execution 10605 Important 10753 Important 10754 Important 10746 Important 10747 Important 10905 Important 10906 Important 10150 Important 10521 Important 10522 Important 10601 Important 10602 Important 4497 Important 10162 Important 10513 Important 10514 Important 10606 Important 10604 Important 10605 Publicly Disclosed:No;Exploited:No;Latest Software Release:Exploitation Unlikely;Older Software Release:Exploitation Unlikely 4011574 https://www.microsoft.com/downloads/details.aspx?familyid=b0a99a51-599c-4b33-aa49-ceb75f4520f7 4011262 10753 Maybe Security Update 4011574 https://www.microsoft.com/downloads/details.aspx?familyid=163108fd-18ee-4610-b0cf-bc722f9655e1 4011262 10754 Maybe Security Update 4011643 https://www.microsoft.com/downloads/details.aspx?familyid=919fcd04-b72d-4dc5-9afa-a6fa30125e3f 4011575 10746 Maybe Security Update 4011643 https://www.microsoft.com/downloads/details.aspx?familyid=4cc2a1b6-6b5d-47b4-a463-81081dfc41c1 4011575 10747 Maybe Security Update Click to Run 10905 Maybe Security Update Click to Run 10906 No Security Update 4011656 https://www.microsoft.com/downloads/details.aspx?familyid=456bea44-8229-4bb0-bf67-321ac6b4a2e5 4011604 10150 Maybe Security Update 4011610 https://www.microsoft.com/downloads/details.aspx?familyid=982129f7-f445-4b72-89b5-751ac9896f6a 4011618 10521 Maybe Security Update 4011610 https://www.microsoft.com/downloads/details.aspx?familyid=47b29c72-b2a6-4b9b-a1d0-9dbbde948540 4011618 10522 Maybe Security Update 4011651 https://www.microsoft.com/downloads/details.aspx?familyid=95bc77f3-0845-4af2-84cf-436070a6e8a1 4011590 10601 Maybe Security Update 4011651 https://www.microsoft.com/downloads/details.aspx?familyid=3e5b5dc2-cff0-48ae-9955-b1e0abc7e57c 4011590 10602 Maybe Security Update 4011607 https://www.microsoft.com/downloads/details.aspx?familyid=8a1593a2-62b7-4ac3-9c5c-e64e70edf7e5 4011265 4497 Maybe Security Update 4011657 https://www.microsoft.com/downloads/details.aspx?familyid=7e67f7a4-7838-4019-a894-939d8b7e0b7b 4011608 10162 Maybe Security Update 4011659 https://www.microsoft.com/downloads/details.aspx?familyid=2a266bf5-20d3-4a81-a447-3ba52cf10c0d 4011614 10513 Maybe Security Update 4011659 https://www.microsoft.com/downloads/details.aspx?familyid=7c7e1022-7a6e-44aa-8cae-5069a6d4aa76 4011614 10514 Maybe Security Update 4011651 10606 Maybe Security Update 4011651 https://www.microsoft.com/downloads/details.aspx?familyid=95bc77f3-0845-4af2-84cf-436070a6e8a1 4011590 10604 Maybe Security Update 4011651 https://www.microsoft.com/downloads/details.aspx?familyid=3e5b5dc2-cff0-48ae-9955-b1e0abc7e57c 4011590 10605 Maybe Security Update Gal De Leon of <a href="https://www.paloaltonetworks.com">Palo Alto Networks</a> Yuki Chen of <a href="http://www.360.com/">Qihoo 360 Vulcan Team</a> <a href=https://twitter.com/bee13oy>bee13oy</a> of <a href=https://www.360.com/>Qihoo 360 Vulcan Team</a> 1.0 2018-01-09T08:00:00Z <p>Information published.</p> Microsoft Office Memory Corruption Vulnerability <p>A remote code execution vulnerability exists in Microsoft Office software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on with administrative user rights, an attacker could take control of the affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.</p> <p>Exploitation of the vulnerability requires that a user open a specially crafted file with an affected version of Microsoft Office or Microsoft WordPad software. In an email attack scenario, an attacker could exploit the vulnerability by sending the specially crafted file to the user and convincing the user to open the file. In a web-based attack scenario, an attacker could host a website (or leverage a compromised website that accepts or hosts user-provided content) containing a specially crafted file designed to exploit the vulnerability. An attacker would have no way to force users to visit the website. Instead, an attacker would have to convince users to click a link, typically by way of an enticement in an email or instant message, and then convince them to open the specially crafted file.</p> <p>The security update addresses the vulnerability by removing Equation Editor functionality. For more information on this change, please refer to the following article: <a href="https://support.microsoft.com/en-us/help/4057882">https://support.microsoft.com/en-us/help/4057882</a></p> Microsoft Office CVE-2018-0812 10753 10754 10746 10747 10905 10906 10150 10521 10522 10601 10602 4497 10162 10513 10514 10606 10604 10605 Remote Code Execution 10753 Remote Code Execution 10754 Remote Code Execution 10746 Remote Code Execution 10747 Remote Code Execution 10905 Remote Code Execution 10906 Remote Code Execution 10150 Remote Code Execution 10521 Remote Code Execution 10522 Remote Code Execution 10601 Remote Code Execution 10602 Remote Code Execution 4497 Remote Code Execution 10162 Remote Code Execution 10513 Remote Code Execution 10514 Remote Code Execution 10606 Remote Code Execution 10604 Remote Code Execution 10605 Important 10753 Important 10754 Important 10746 Important 10747 Important 10905 Important 10906 Important 10150 Important 10521 Important 10522 Important 10601 Important 10602 Important 4497 Important 10162 Important 10513 Important 10514 Important 10606 Important 10604 Important 10605 Publicly Disclosed:No;Exploited:No;Latest Software Release:Exploitation Unlikely;Older Software Release:Exploitation Unlikely 4011574 https://www.microsoft.com/downloads/details.aspx?familyid=b0a99a51-599c-4b33-aa49-ceb75f4520f7 4011262 10753 Maybe Security Update 4011574 https://www.microsoft.com/downloads/details.aspx?familyid=163108fd-18ee-4610-b0cf-bc722f9655e1 4011262 10754 Maybe Security Update 4011643 https://www.microsoft.com/downloads/details.aspx?familyid=919fcd04-b72d-4dc5-9afa-a6fa30125e3f 4011575 10746 Maybe Security Update 4011643 https://www.microsoft.com/downloads/details.aspx?familyid=4cc2a1b6-6b5d-47b4-a463-81081dfc41c1 4011575 10747 Maybe Security Update Click to Run 10905 Maybe Security Update Click to Run 10906 No Security Update 4011656 https://www.microsoft.com/downloads/details.aspx?familyid=456bea44-8229-4bb0-bf67-321ac6b4a2e5 4011604 10150 Maybe Security Update 4011610 https://www.microsoft.com/downloads/details.aspx?familyid=982129f7-f445-4b72-89b5-751ac9896f6a 4011618 10521 Maybe Security Update 4011610 https://www.microsoft.com/downloads/details.aspx?familyid=47b29c72-b2a6-4b9b-a1d0-9dbbde948540 4011618 10522 Maybe Security Update 4011580 https://www.microsoft.com/downloads/details.aspx?familyid=65ccd6a9-246e-47ad-b059-c596ba50aa59 3162047 10601 Maybe Security Update 4011580 https://www.microsoft.com/downloads/details.aspx?familyid=13eebd26-08aa-4ea0-8926-cf32bf561cc7 3162047 10602 Maybe Security Update 4011607 https://www.microsoft.com/downloads/details.aspx?familyid=8a1593a2-62b7-4ac3-9c5c-e64e70edf7e5 4011265 4497 Maybe Security Update 4011657 https://www.microsoft.com/downloads/details.aspx?familyid=7e67f7a4-7838-4019-a894-939d8b7e0b7b 4011608 10162 Maybe Security Update 4011659 https://www.microsoft.com/downloads/details.aspx?familyid=2a266bf5-20d3-4a81-a447-3ba52cf10c0d 4011614 10513 Maybe Security Update 4011659 https://www.microsoft.com/downloads/details.aspx?familyid=7c7e1022-7a6e-44aa-8cae-5069a6d4aa76 4011614 10514 Maybe Security Update 4011580 3162047 10606 Maybe Security Update 4011580 https://www.microsoft.com/downloads/details.aspx?familyid=65ccd6a9-246e-47ad-b059-c596ba50aa59 3162047 10604 Maybe Security Update 4011580 https://www.microsoft.com/downloads/details.aspx?familyid=13eebd26-08aa-4ea0-8926-cf32bf561cc7 3162047 10605 Maybe Security Update Yuki Chen of <a href="http://www.360.com/">Qihoo 360 Vulcan Team</a> 1.0 2018-01-09T08:00:00Z <p>Information published.</p> Scripting Engine Security Feature Bypass Vulnerability <p>A security feature bypass vulnerability exists in the Microsoft Chakra scripting engine that allows Control Flow Guard (CFG) to be bypassed. By itself, the CFG bypass vulnerability does not allow arbitrary code execution. However, an attacker could use the CFG bypass vulnerability in conjunction with another vulnerability, such as a remote code execution vulnerability, to run arbitrary code on a target system.</p> <p>To exploit the CFG bypass vulnerability, a user must be logged on to the Microsoft Chakra scripting engine and running it. The user would then need to browse to a malicious website.</p> <p>The security update addresses the CFG bypass vulnerability by helping to ensure that the Microsoft Chakra scripting engine properly handles accessing memory.</p> Microsoft Scripting Engine CVE-2018-0818 11447 Security Feature Bypass 11447 Important 11447 Publicly Disclosed:No;Exploited:No;Latest Software Release:Exploitation Unlikely;Older Software Release:Exploitation Unlikely 4.3 3.9 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N/E:P/RL:O/RC:C 11447 Commit https://github.com/Microsoft/ChakraCore/pull/4427 11447 Yes Security Update Ivan Fratric of <a href="https://www.google.com/">Google Project Zero</a> 1.0 2018-01-03T08:00:00Z <p>Information published.</p> 2.0 2018-01-05T08:00:00Z <p>Revised the Affected Products table to include ChakraCore for this vulnerability.</p> Spoofing Vulnerability in Microsoft Office for MAC <p>A spoofing vulnerability exists when Microsoft Outlook for MAC does not properly handle the encoding and display of email addresses. This improper handling and display may cause antivirus or antispam scanning to not work as intended.</p> <p>To exploit the vulnerability, an attacker could send a specially crafted email attachment to a user in an attempt to launch a social engineering attack, such as phishing.</p> <p>The security update addresses the vulnerability by correcting how Outlook for MAC displays encoded email addresses.</p> Microsoft Office CVE-2018-0819 10734 Spoofing 10734 Important 10734 Publicly Disclosed:Yes;Exploited:No;Latest Software Release:Exploitation Less Likely;Older Software Release:Exploitation Less Likely Release Notes https://go.microsoft.com/fwlink/p/?linkid=831049 10734 No Security Update Sabri Haddouche (@pwnsdx) of <a href="https://wire.com">Wire Swiss GmbH</a> 1.0 2018-01-09T08:00:00Z <p>Information published.</p> 1.1 2018-01-10T08:00:00Z <p>The update for Microsoft Office 2016 for Mac will be available on 1/16/2018. Customers running affected Mac software should install the update at that time to be protected from this vulnerability. Customers running other Microsoft Office software do not need to take any action. See the <a href="https://go.microsoft.com/fwlink/p/?linkid=831049">Release Notes</a> for more information.</p> 2.0 2018-01-18T08:00:00Z <p>Microsoft is announcing the availability of the 16.9.18011602 update for Microsoft Office 2016 for Mac. Customers running affected Mac software should install the update for their product to be protected from this vulnerability. Customers running other Microsoft Office software do not need to take any action. See the <a href="https://go.microsoft.com/fwlink/p/?linkid=831049">Release Notes</a> for more information and download links.</p> 1.2 2018-01-17T08:00:00Z <p>Microsoft is working to provide an update for Microsoft Office 2016 for Mac as soon as possible. Customers running affected Mac software are encouraged to install the update when it is released to be protected from this vulnerability. Customers running other Microsoft Office software do not need to take any action.</p> Microsoft Office Memory Corruption Vulnerability <p>A remote code execution vulnerability exists in Microsoft Office software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on with administrative user rights, an attacker could take control of the affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.</p> <p>Exploitation of the vulnerability requires that a user open a specially crafted file with an affected version of Microsoft Office or Microsoft WordPad software. In an email attack scenario, an attacker could exploit the vulnerability by sending the specially crafted file to the user and convincing the user to open the file. In a web-based attack scenario, an attacker could host a website (or leverage a compromised website that accepts or hosts user-provided content) containing a specially crafted file designed to exploit the vulnerability. An attacker would have no way to force users to visit the website. Instead, an attacker would have to convince users to click a link, typically by way of an enticement in an email or instant message, and then convince them to open the specially crafted file.</p> <p>The security update addresses the vulnerability by removing Equation Editor functionality. For more information on this change, please refer to the following article: <a href="https://support.microsoft.com/en-us/help/4057882">https://support.microsoft.com/en-us/help/4057882</a></p> Microsoft Office CVE-2018-0845 10753 10754 10746 10747 10905 10906 10150 10521 10522 10601 10602 4497 10162 10513 10514 10606 10604 10605 Remote Code Execution 10753 Remote Code Execution 10754 Remote Code Execution 10746 Remote Code Execution 10747 Remote Code Execution 10905 Remote Code Execution 10906 Remote Code Execution 10150 Remote Code Execution 10521 Remote Code Execution 10522 Remote Code Execution 10601 Remote Code Execution 10602 Remote Code Execution 4497 Remote Code Execution 10162 Remote Code Execution 10513 Remote Code Execution 10514 Remote Code Execution 10606 Remote Code Execution 10604 Remote Code Execution 10605 Important 10753 Important 10754 Important 10746 Important 10747 Important 10905 Important 10906 Important 10150 Important 10521 Important 10522 Important 10601 Important 10602 Important 4497 Important 10162 Important 10513 Important 10514 Important 10606 Important 10604 Important 10605 Publicly Disclosed:No;Exploited:No;Latest Software Release:Exploitation Unlikely;Older Software Release:Exploitation Unlikely 4011574 https://www.microsoft.com/downloads/details.aspx?familyid=b0a99a51-599c-4b33-aa49-ceb75f4520f7 4011262 10753 Maybe Security Update 4011574 https://www.microsoft.com/downloads/details.aspx?familyid=163108fd-18ee-4610-b0cf-bc722f9655e1 4011262 10754 Maybe Security Update 4011643 https://www.microsoft.com/downloads/details.aspx?familyid=919fcd04-b72d-4dc5-9afa-a6fa30125e3f 4011575 10746 Maybe Security Update 4011643 https://www.microsoft.com/downloads/details.aspx?familyid=4cc2a1b6-6b5d-47b4-a463-81081dfc41c1 4011575 10747 Maybe Security Update Click to Run 10905 No Security Update Click to Run 10906 No Security Update 4011656 https://www.microsoft.com/downloads/details.aspx?familyid=456bea44-8229-4bb0-bf67-321ac6b4a2e5 4011604 10150 Maybe Security Update 4011610 https://www.microsoft.com/downloads/details.aspx?familyid=982129f7-f445-4b72-89b5-751ac9896f6a 4011618 10521 Maybe Security Update 4011610 https://www.microsoft.com/downloads/details.aspx?familyid=47b29c72-b2a6-4b9b-a1d0-9dbbde948540 4011618 10522 Maybe Security Update 4011651 https://www.microsoft.com/downloads/details.aspx?familyid=95bc77f3-0845-4af2-84cf-436070a6e8a1 4011590 10601 Maybe Security Update 4011651 https://www.microsoft.com/downloads/details.aspx?familyid=3e5b5dc2-cff0-48ae-9955-b1e0abc7e57c 4011590 10602 Maybe Security Update 4011607 https://www.microsoft.com/downloads/details.aspx?familyid=8a1593a2-62b7-4ac3-9c5c-e64e70edf7e5 4011265 4497 Maybe Security Update 4011657 https://www.microsoft.com/downloads/details.aspx?familyid=7e67f7a4-7838-4019-a894-939d8b7e0b7b 4011608 10162 Maybe Security Update 4011659 https://www.microsoft.com/downloads/details.aspx?familyid=2a266bf5-20d3-4a81-a447-3ba52cf10c0d 4011614 10513 Maybe Security Update 4011659 https://www.microsoft.com/downloads/details.aspx?familyid=7c7e1022-7a6e-44aa-8cae-5069a6d4aa76 4011614 10514 Maybe Security Update 4011651 10606 Maybe Security Update 4011651 https://www.microsoft.com/downloads/details.aspx?familyid=95bc77f3-0845-4af2-84cf-436070a6e8a1 4011590 10604 Maybe Security Update 4011651 https://www.microsoft.com/downloads/details.aspx?familyid=3e5b5dc2-cff0-48ae-9955-b1e0abc7e57c 4011590 10605 Maybe Security Update Yuki Chen of <a href="http://www.360.com/">Qihoo 360 Vulcan Team</a> 1.0 2018-01-19T08:00:00Z <p>Information published.</p> Microsoft Office Memory Corruption Vulnerability <p>A remote code execution vulnerability exists in Microsoft Office software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on with administrative user rights, an attacker could take control of the affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.</p> <p>Exploitation of the vulnerability requires that a user open a specially crafted file with an affected version of Microsoft Office or Microsoft WordPad software. In an email attack scenario, an attacker could exploit the vulnerability by sending the specially crafted file to the user and convincing the user to open the file. In a web-based attack scenario, an attacker could host a website (or leverage a compromised website that accepts or hosts user-provided content) containing a specially crafted file designed to exploit the vulnerability. An attacker would have no way to force users to visit the website. Instead, an attacker would have to convince users to click a link, typically by way of an enticement in an email or instant message, and then convince them to open the specially crafted file.</p> <p>The security update addresses the vulnerability by removing Equation Editor functionality. For more information on this change, please refer to the following article: <a href="https://support.microsoft.com/en-us/help/4057882">https://support.microsoft.com/en-us/help/4057882</a></p> Microsoft Office CVE-2018-0848 10753 10754 10746 10747 10905 10906 10150 10521 10522 10601 10602 4497 10162 10513 10514 10606 10604 10605 Remote Code Execution 10753 Remote Code Execution 10754 Remote Code Execution 10746 Remote Code Execution 10747 Remote Code Execution 10905 Remote Code Execution 10906 Remote Code Execution 10150 Remote Code Execution 10521 Remote Code Execution 10522 Remote Code Execution 10601 Remote Code Execution 10602 Remote Code Execution 4497 Remote Code Execution 10162 Remote Code Execution 10513 Remote Code Execution 10514 Remote Code Execution 10606 Remote Code Execution 10604 Remote Code Execution 10605 Important 10753 Important 10754 Important 10746 Important 10747 Important 10905 Important 10906 Important 10150 Important 10521 Important 10522 Important 10601 Important 10602 Important 4497 Important 10162 Important 10513 Important 10514 Important 10606 Important 10604 Important 10605 Publicly Disclosed:No;Exploited:No;Latest Software Release:Exploitation Unlikely;Older Software Release:Exploitation Unlikely 4011574 https://www.microsoft.com/downloads/details.aspx?familyid=b0a99a51-599c-4b33-aa49-ceb75f4520f7 4011262 10753 Maybe Security Update 4011574 https://www.microsoft.com/downloads/details.aspx?familyid=163108fd-18ee-4610-b0cf-bc722f9655e1 4011262 10754 Maybe Security Update 4011643 https://www.microsoft.com/downloads/details.aspx?familyid=919fcd04-b72d-4dc5-9afa-a6fa30125e3f 4011575 10746 Maybe Security Update 4011643 https://www.microsoft.com/downloads/details.aspx?familyid=4cc2a1b6-6b5d-47b4-a463-81081dfc41c1 4011575 10747 Maybe Security Update Click to Run 10905 No Security Update Click to Run 10906 No Security Update 4011656 https://www.microsoft.com/downloads/details.aspx?familyid=456bea44-8229-4bb0-bf67-321ac6b4a2e5 4011604 10150 Maybe Security Update 4011610 https://www.microsoft.com/downloads/details.aspx?familyid=982129f7-f445-4b72-89b5-751ac9896f6a 4011618 10521 Maybe Security Update 4011610 https://www.microsoft.com/downloads/details.aspx?familyid=47b29c72-b2a6-4b9b-a1d0-9dbbde948540 4011618 10522 Maybe Security Update 4011651 https://www.microsoft.com/downloads/details.aspx?familyid=95bc77f3-0845-4af2-84cf-436070a6e8a1 4011590 10601 Maybe Security Update 4011651 https://www.microsoft.com/downloads/details.aspx?familyid=3e5b5dc2-cff0-48ae-9955-b1e0abc7e57c 4011590 10602 Maybe Security Update 4011607 https://www.microsoft.com/downloads/details.aspx?familyid=8a1593a2-62b7-4ac3-9c5c-e64e70edf7e5 4011265 4497 Maybe Security Update 4011657 https://www.microsoft.com/downloads/details.aspx?familyid=7e67f7a4-7838-4019-a894-939d8b7e0b7b 4011608 10162 Maybe Security Update 4011659 https://www.microsoft.com/downloads/details.aspx?familyid=2a266bf5-20d3-4a81-a447-3ba52cf10c0d 4011614 10513 Maybe Security Update 4011659 https://www.microsoft.com/downloads/details.aspx?familyid=7c7e1022-7a6e-44aa-8cae-5069a6d4aa76 4011614 10514 Maybe Security Update 4011651 10606 Maybe Security Update 4011651 https://www.microsoft.com/downloads/details.aspx?familyid=95bc77f3-0845-4af2-84cf-436070a6e8a1 4011590 10604 Maybe Security Update 4011651 https://www.microsoft.com/downloads/details.aspx?familyid=3e5b5dc2-cff0-48ae-9955-b1e0abc7e57c 4011590 10605 Maybe Security Update Yuki Chen of <a href="http://www.360.com/">Qihoo 360 Vulcan Team</a> 1.0 2018-01-19T08:00:00Z <p>Information published.</p> Microsoft Office Memory Corruption Vulnerability <p>A remote code execution vulnerability exists in Microsoft Office software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on with administrative user rights, an attacker could take control of the affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.</p> <p>Exploitation of the vulnerability requires that a user open a specially crafted file with an affected version of Microsoft Office or Microsoft WordPad software. In an email attack scenario, an attacker could exploit the vulnerability by sending the specially crafted file to the user and convincing the user to open the file. In a web-based attack scenario, an attacker could host a website (or leverage a compromised website that accepts or hosts user-provided content) containing a specially crafted file designed to exploit the vulnerability. An attacker would have no way to force users to visit the website. Instead, an attacker would have to convince users to click a link, typically by way of an enticement in an email or instant message, and then convince them to open the specially crafted file.</p> <p>The security update addresses the vulnerability by removing Equation Editor functionality. For more information on this change, please refer to the following article: <a href="https://support.microsoft.com/en-us/help/4057882">https://support.microsoft.com/en-us/help/4057882</a></p> Microsoft Office CVE-2018-0849 10753 10754 10746 10747 10905 10906 10150 10521 10522 10601 10602 4497 10162 10513 10514 10606 10604 10605 Remote Code Execution 10753 Remote Code Execution 10754 Remote Code Execution 10746 Remote Code Execution 10747 Remote Code Execution 10905 Remote Code Execution 10906 Remote Code Execution 10150 Remote Code Execution 10521 Remote Code Execution 10522 Remote Code Execution 10601 Remote Code Execution 10602 Remote Code Execution 4497 Remote Code Execution 10162 Remote Code Execution 10513 Remote Code Execution 10514 Remote Code Execution 10606 Remote Code Execution 10604 Remote Code Execution 10605 Important 10753 Important 10754 Important 10746 Important 10747 Important 10905 Important 10906 Important 10150 Important 10521 Important 10522 Important 10601 Important 10602 Important 4497 Important 10162 Important 10513 Important 10514 Important 10606 Important 10604 Important 10605 Publicly Disclosed:No;Exploited:No;Latest Software Release:Exploitation Unlikely;Older Software Release:Exploitation Unlikely 4011574 https://www.microsoft.com/downloads/details.aspx?familyid=b0a99a51-599c-4b33-aa49-ceb75f4520f7 4011262 10753 Maybe Security Update 4011574 https://www.microsoft.com/downloads/details.aspx?familyid=163108fd-18ee-4610-b0cf-bc722f9655e1 4011262 10754 Maybe Security Update 4011643 https://www.microsoft.com/downloads/details.aspx?familyid=919fcd04-b72d-4dc5-9afa-a6fa30125e3f 4011575 10746 Maybe Security Update 4011643 https://www.microsoft.com/downloads/details.aspx?familyid=4cc2a1b6-6b5d-47b4-a463-81081dfc41c1 4011575 10747 Maybe Security Update Click to Run 10905 No Security Update Click to Run 10906 No Security Update 4011656 https://www.microsoft.com/downloads/details.aspx?familyid=456bea44-8229-4bb0-bf67-321ac6b4a2e5 4011604 10150 Maybe Security Update 4011610 https://www.microsoft.com/downloads/details.aspx?familyid=982129f7-f445-4b72-89b5-751ac9896f6a 4011618 10521 Maybe Security Update 4011610 https://www.microsoft.com/downloads/details.aspx?familyid=47b29c72-b2a6-4b9b-a1d0-9dbbde948540 4011618 10522 Maybe Security Update 4011651 https://www.microsoft.com/downloads/details.aspx?familyid=95bc77f3-0845-4af2-84cf-436070a6e8a1 4011590 10601 Maybe Security Update 4011651 https://www.microsoft.com/downloads/details.aspx?familyid=3e5b5dc2-cff0-48ae-9955-b1e0abc7e57c 4011590 10602 Maybe Security Update 4011607 https://www.microsoft.com/downloads/details.aspx?familyid=8a1593a2-62b7-4ac3-9c5c-e64e70edf7e5 4011265 4497 Maybe Security Update 4011657 https://www.microsoft.com/downloads/details.aspx?familyid=7e67f7a4-7838-4019-a894-939d8b7e0b7b 4011608 10162 Maybe Security Update 4011659 https://www.microsoft.com/downloads/details.aspx?familyid=2a266bf5-20d3-4a81-a447-3ba52cf10c0d 4011614 10513 Maybe Security Update 4011659 https://www.microsoft.com/downloads/details.aspx?familyid=7c7e1022-7a6e-44aa-8cae-5069a6d4aa76 4011614 10514 Maybe Security Update 4011651 10606 Maybe Security Update 4011651 https://www.microsoft.com/downloads/details.aspx?familyid=95bc77f3-0845-4af2-84cf-436070a6e8a1 4011590 10604 Maybe Security Update 4011651 https://www.microsoft.com/downloads/details.aspx?familyid=3e5b5dc2-cff0-48ae-9955-b1e0abc7e57c 4011590 10605 Maybe Security Update Yuki Chen of <a href="http://www.360.com/">Qihoo 360 Vulcan Team</a> 1.0 2018-01-19T08:00:00Z <p>Information published.</p> Microsoft Office Memory Corruption Vulnerability <p>A remote code execution vulnerability exists in Microsoft Office software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on with administrative user rights, an attacker could take control of the affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.</p> <p>Exploitation of the vulnerability requires that a user open a specially crafted file with an affected version of Microsoft Office or Microsoft WordPad software. In an email attack scenario, an attacker could exploit the vulnerability by sending the specially crafted file to the user and convincing the user to open the file. In a web-based attack scenario, an attacker could host a website (or leverage a compromised website that accepts or hosts user-provided content) containing a specially crafted file designed to exploit the vulnerability. An attacker would have no way to force users to visit the website. Instead, an attacker would have to convince users to click a link, typically by way of an enticement in an email or instant message, and then convince them to open the specially crafted file.</p> <p>The security update addresses the vulnerability by removing Equation Editor functionality. For more information on this change, please refer to the following article: <a href="https://support.microsoft.com/en-us/help/4057882">https://support.microsoft.com/en-us/help/4057882</a></p> Microsoft Office CVE-2018-0862 10753 10754 10746 10747 10905 10906 10150 10521 10522 10601 10602 4497 10162 10513 10514 10606 10604 10605 Remote Code Execution 10753 Remote Code Execution 10754 Remote Code Execution 10746 Remote Code Execution 10747 Remote Code Execution 10905 Remote Code Execution 10906 Remote Code Execution 10150 Remote Code Execution 10521 Remote Code Execution 10522 Remote Code Execution 10601 Remote Code Execution 10602 Remote Code Execution 4497 Remote Code Execution 10162 Remote Code Execution 10513 Remote Code Execution 10514 Remote Code Execution 10606 Remote Code Execution 10604 Remote Code Execution 10605 Important 10753 Important 10754 Important 10746 Important 10747 Important 10905 Important 10906 Important 10150 Important 10521 Important 10522 Important 10601 Important 10602 Important 4497 Important 10162 Important 10513 Important 10514 Important 10606 Important 10604 Important 10605 Publicly Disclosed:No;Exploited:No;Latest Software Release:Exploitation Unlikely;Older Software Release:Exploitation Unlikely 4011574 https://www.microsoft.com/downloads/details.aspx?familyid=b0a99a51-599c-4b33-aa49-ceb75f4520f7 4011262 10753 Maybe Security Update 4011574 https://www.microsoft.com/downloads/details.aspx?familyid=163108fd-18ee-4610-b0cf-bc722f9655e1 4011262 10754 Maybe Security Update 4011643 https://www.microsoft.com/downloads/details.aspx?familyid=919fcd04-b72d-4dc5-9afa-a6fa30125e3f 4011575 10746 Maybe Security Update 4011643 https://www.microsoft.com/downloads/details.aspx?familyid=4cc2a1b6-6b5d-47b4-a463-81081dfc41c1 4011575 10747 Maybe Security Update Click to Run 10905 No Security Update Click to Run 10906 No Security Update 4011656 https://www.microsoft.com/downloads/details.aspx?familyid=456bea44-8229-4bb0-bf67-321ac6b4a2e5 4011604 10150 Maybe Security Update 4011610 https://www.microsoft.com/downloads/details.aspx?familyid=982129f7-f445-4b72-89b5-751ac9896f6a 4011618 10521 Maybe Security Update 4011610 https://www.microsoft.com/downloads/details.aspx?familyid=47b29c72-b2a6-4b9b-a1d0-9dbbde948540 4011618 10522 Maybe Security Update 4011651 https://www.microsoft.com/downloads/details.aspx?familyid=95bc77f3-0845-4af2-84cf-436070a6e8a1 4011590 10601 Maybe Security Update 4011651 https://www.microsoft.com/downloads/details.aspx?familyid=3e5b5dc2-cff0-48ae-9955-b1e0abc7e57c 4011590 10602 Maybe Security Update 4011607 https://www.microsoft.com/downloads/details.aspx?familyid=8a1593a2-62b7-4ac3-9c5c-e64e70edf7e5 4011265 4497 Maybe Security Update 4011657 https://www.microsoft.com/downloads/details.aspx?familyid=7e67f7a4-7838-4019-a894-939d8b7e0b7b 4011608 10162 Maybe Security Update 4011659 https://www.microsoft.com/downloads/details.aspx?familyid=2a266bf5-20d3-4a81-a447-3ba52cf10c0d 4011614 10513 Maybe Security Update 4011659 https://www.microsoft.com/downloads/details.aspx?familyid=7c7e1022-7a6e-44aa-8cae-5069a6d4aa76 4011614 10514 Maybe Security Update 4011651 10606 Maybe Security Update 4011651 https://www.microsoft.com/downloads/details.aspx?familyid=95bc77f3-0845-4af2-84cf-436070a6e8a1 4011590 10604 Maybe Security Update 4011651 https://www.microsoft.com/downloads/details.aspx?familyid=3e5b5dc2-cff0-48ae-9955-b1e0abc7e57c 4011590 10605 Maybe Security Update Yuki Chen of <a href="http://www.360.com/">Qihoo 360 Vulcan Team</a> 1.0 2018-01-19T08:00:00Z <p>Information published.</p> Windows Kernel Information Disclosure Vulnerability <p>An information disclosure vulnerability exists in the Windows kernel that could allow an attacker to retrieve information that could lead to a <a href="https://technet.microsoft.com/en-us/library/security/dn848375.aspx#ASLR">Kernel Address Space Layout Randomization (ASLR)</a> bypass. An attacker who successfully exploited the vulnerability could retrieve the memory address of a kernel object.</p> <p>To exploit the vulnerability, an attacker would have to log on to an affected system and run a specially crafted application.</p> <p>The security update addresses the vulnerability by correcting how the Windows kernel handles memory addresses.</p> Windows Kernel CVE-2018-0746 10951 10952 11453 11454 10729 10735 10789 10788 10852 10853 10816 10855 10481 10482 10378 10379 10483 10543 Information Disclosure 10951 Information Disclosure 10952 Information Disclosure 11453 Information Disclosure 11454 Information Disclosure 10729 Information Disclosure 10735 Information Disclosure 10789 Information Disclosure 10788 Information Disclosure 10852 Information Disclosure 10853 Information Disclosure 10816 Information Disclosure 10855 Information Disclosure 10481 Information Disclosure 10482 Information Disclosure 10378 Information Disclosure 10379 Information Disclosure 10483 Information Disclosure 10543 Important 10951 Important 10952 Important 11453 Important 11454 Important 10729 Important 10735 Important 10789 Important 10788 Important 10852 Important 10853 Important 10816 Important 10855 Important 10481 Important 10482 Important 10378 Important 10379 Important 10483 Important 10543 Publicly Disclosed:No;Exploited:No;Latest Software Release:Exploitation More Likely;Older Software Release:Exploitation More Likely 4.7 4.2 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C 10951 4.7 4.2 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C 10952 4.7 4.2 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C 11453 4.7 4.2 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C 11454 4.7 4.2 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C 10729 4.7 4.2 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C 10735 4.7 4.2 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C 10789 4.7 4.2 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C 10788 4.7 4.2 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C 10852 4.7 4.2 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C 10853 4.7 4.2 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C 10816 4.7 4.2 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C 10855 4.7 4.2 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C 10481 4.7 4.2 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C 10482 4.7 4.2 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C 10378 4.7 4.2 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C 10379 4.7 4.2 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C 10483 4.7 4.2 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C 10543 4056891 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056891 4053580 10951 Yes Security Update 4056891 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056891 4053580 10952 Yes Security Update 4056892 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056892 4054517 11453 Yes Security Update 4056892 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056892 4054517 11454 Yes Security Update 4056893 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056893 4053581 10729 Yes Security Update 4056893 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056893 4053581 10735 Yes Security Update 4056888 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056888 4053578 10789 Yes Security Update 4056888 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056888 4053578 10788 Yes Security Update 4056890 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056890 4053579 10852 Yes Security Update 4056890 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056890 4053579 10853 Yes Security Update 4056890 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056890 4053579 10816 Yes Security Update 4056890 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056890 4053579 10855 Yes Security Update 4056895 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056895 4054519 10481 Yes Monthly Rollup 4056898 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056898 10481 Yes Security Only 4056895 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056895 4054519 10482 Yes Monthly Rollup 4056898 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056898 10482 Yes Security Only 4056896 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056896 4054520 10378 Yes Monthly Rollup 4056899 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056899 10378 Yes Security Only 4056896 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056896 4054520 10379 Yes Monthly Rollup 4056899 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056899 10379 Yes Security Only 4056895 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056895 4054519 10483 Yes Monthly Rollup 4056898 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056898 10483 Yes Security Only 4056895 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056895 4054519 10543 Yes Monthly Rollup 4056898 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056898 10543 Yes Security Only Mateusz Jurczyk of <a href="https://www.google.com">Google Project Zero</a> 3.0 2018-01-18T08:00:00Z <p>On January 5, 2018, Microsoft re-released KB4056898 (Security Only) for Windows 8.1 and Windows Server 2012 R2 to address a known issue. Customers who have installed the original package on 1/3/2018 should reinstall the update.</p> 1.0 2018-01-03T08:00:00Z <p>Information published.</p> 2.0 2018-01-05T08:00:00Z <p>Revised the Affected Products table to add Monthly Rollup updates for Windows 7, Windows Server 2008 R2, and Windows Server 2012. Customers who install Monthly Rollups should install these updates to be protected from this vulnerability.</p> 3.0 2018-01-22T08:00:00Z <p>Revised the Affected Products table to add Monthly Rollup updates for supported editions of Windows 8.1 and Windows Server 2012 R2. Customers who install Monthly Rollups should install these updates to be protected from this vulnerability.</p> Windows Kernel Information Disclosure Vulnerability <p>An information disclosure vulnerability exists in the Windows kernel that could allow an attacker to retrieve information that could lead to a <a href="https://technet.microsoft.com/en-us/library/security/dn848375.aspx#ASLR">Kernel Address Space Layout Randomization (ASLR)</a> bypass. An attacker who successfully exploited the vulnerability could retrieve the memory address of a kernel object.</p> <p>To exploit the vulnerability, an attacker would have to log on to an affected system and run a specially crafted application.</p> <p>The security update addresses the vulnerability by correcting how the Windows kernel handles memory addresses.</p> Windows Kernel CVE-2018-0747 11466 10951 10952 11453 11454 10729 10735 10789 10788 10852 10853 10816 10855 10047 10048 10481 10482 9312 10287 9311 9318 9344 10050 10051 10049 10378 10379 10483 10543 Information Disclosure 11466 Information Disclosure 10951 Information Disclosure 10952 Information Disclosure 11453 Information Disclosure 11454 Information Disclosure 10729 Information Disclosure 10735 Information Disclosure 10789 Information Disclosure 10788 Information Disclosure 10852 Information Disclosure 10853 Information Disclosure 10816 Information Disclosure 10855 Information Disclosure 10047 Information Disclosure 10048 Information Disclosure 10481 Information Disclosure 10482 Information Disclosure 9312 Information Disclosure 10287 Information Disclosure 9311 Information Disclosure 9318 Information Disclosure 9344 Information Disclosure 10050 Information Disclosure 10051 Information Disclosure 10049 Information Disclosure 10378 Information Disclosure 10379 Information Disclosure 10483 Information Disclosure 10543 Important 11466 Important 10951 Important 10952 Important 11453 Important 11454 Important 10729 Important 10735 Important 10789 Important 10788 Important 10852 Important 10853 Important 10816 Important 10855 Important 10047 Important 10048 Important 10481 Important 10482 Important 9312 Important 10287 Important 9311 Important 9318 Important 9344 Important 10050 Important 10051 Important 10049 Important 10378 Important 10379 Important 10483 Important 10543 Publicly Disclosed:No;Exploited:No;Latest Software Release:Exploitation More Likely;Older Software Release:Exploitation More Likely 4.7 4.2 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C 11466 4.7 4.2 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C 10951 4.7 4.2 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C 10952 4.7 4.2 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C 11453 4.7 4.2 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C 11454 4.7 4.2 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C 10729 4.7 4.2 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C 10735 4.7 4.2 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C 10789 4.7 4.2 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C 10788 4.7 4.2 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C 10852 4.7 4.2 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C 10853 4.7 4.2 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C 10816 4.7 4.2 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C 10855 4.7 4.2 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C 10047 4.7 4.2 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C 10048 4.7 4.2 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C 10481 4.7 4.2 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C 10482 4.7 4.2 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C 9312 4.7 4.2 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C 10287 4.7 4.2 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C 9311 4.7 4.2 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C 9318 4.7 4.2 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C 9344 4.7 4.2 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C 10050 4.7 4.2 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C 10051 4.7 4.2 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C 10049 4.7 4.2 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C 10378 4.7 4.2 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C 10379 4.7 4.2 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C 10483 4.7 4.2 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C 10543 4056892 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056892 4054517 11466 Yes Security Update 4056891 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056891 4053580 10951 Yes Security Update 4056891 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056891 4053580 10952 Yes Security Update 4056892 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056892 4054517 11453 Yes Security Update 4056892 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056892 4054517 11454 Yes Security Update 4056893 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056893 4053581 10729 Yes Security Update 4056893 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056893 4053581 10735 Yes Security Update 4056888 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056888 4053578 10789 Yes Security Update 4056888 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056888 4053578 10788 Yes Security Update 4056890 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056890 4053579 10852 Yes Security Update 4056890 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056890 4053579 10853 Yes Security Update 4056890 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056890 4053579 10816 Yes Security Update 4056890 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056890 4053579 10855 Yes Security Update 4056894 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056894 4054518 10047 Yes Monthly Rollup 4056897 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056897 10047 Yes Security Only 4056894 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056894 4054518 10048 Yes Monthly Rollup 4056897 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056897 10048 Yes Security Only 4056895 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056895 4054519 10481 Yes Monthly Rollup 4056898 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056898 10481 Yes Security Only 4056895 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056895 4054519 10482 Yes Monthly Rollup 4056898 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056898 10482 Yes Security Only 4056613 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056613 9312 Yes Security Update 4056613 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056613 10287 Yes Security Update 4056613 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056613 9311 Yes Security Update 4056613 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056613 9318 Yes Security Update 4056613 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056613 9344 Yes Security Update 4056894 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056894 4054518 10050 Yes Monthly Rollup 4056897 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056897 10050 Yes Security Only 4056894 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056894 4054518 10051 Yes Monthly Rollup 4056897 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056897 10051 Yes Security Only 4056894 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056894 4054518 10049 Yes Monthly Rollup 4056897 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056897 10049 Yes Security Only 4056896 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056896 4054520 10378 Yes Monthly Rollup 4056899 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056899 10378 Yes Security Only 4056896 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056896 4054520 10379 Yes Monthly Rollup 4056899 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056899 10379 Yes Security Only 4056895 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056895 4054519 10483 Yes Monthly Rollup 4056898 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056898 10483 Yes Security Only 4056895 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056895 4054519 10543 Yes Monthly Rollup 4056898 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056898 10543 Yes Security Only Mateusz Jurczyk of <a href="https://www.google.com">Google Project Zero</a> 4.0 2018-01-18T08:00:00Z <p>On January 5, 2018, Microsoft re-released KB4056898 (Security Only) for Windows 8.1 and Windows Server 2012 R2 to address a known issue. Customers who have installed the original package on 1/3/2018 should reinstall the update.</p> 1.0 2018-01-03T08:00:00Z <p>Information published.</p> 2.0 2018-01-05T08:00:00Z <p>Revised the Affected Products table to add Monthly Rollup updates for Windows 7, Windows Server 2008 R2, and Windows Server 2012. Customers who install Monthly Rollups should install these updates to be protected from this vulnerability.</p> 3.0 2018-01-12T08:00:00Z <p>Updated CVE-2018-0747 to announce that as of January 12, 2018, security update 4056613 for all supported editions of Windows Server 2008 Service Pack 2 is available on WSUS and the Microsoft Update Catalog. Customers running Windows Server 2008 Service Pack 2 should install the update to be protected from this vulnerability.</p> 5.0 2018-01-22T08:00:00Z <p>Revised the Affected Products table to add Monthly Rollup updates for supported editions of Windows 8.1 and Windows Server 2012 R2. Customers who install Monthly Rollups should install these updates to be protected from this vulnerability.</p> 5.1 2018-10-04T07:00:00Z <p>Updated the KB number in revision note 3.0. This is an informational change only.</p> Windows Elevation of Privilege Vulnerability <p>An elevation of privilege vulnerability exists in the way that the Windows Kernel API enforces permissions. An attacker who successfully exploited the vulnerability could impersonate processes, interject cross-process communication, or interrupt system functionality.</p> <p>To exploit the vulnerability, a locally authenticated attacker could run a specially crafted application.</p> <p>The security update addresses the vulnerability by helping to ensure that the Windows Kernel API properly enforces permissions.</p> Windows Kernel CVE-2018-0748 10951 10952 11453 11454 10729 10735 10789 10788 10852 10853 10816 10855 10047 10048 10481 10482 9312 10287 9311 9318 9344 10050 10051 10049 10378 10379 10483 10543 11466 Elevation of Privilege 10951 Elevation of Privilege 10952 Elevation of Privilege 11453 Elevation of Privilege 11454 Elevation of Privilege 10729 Elevation of Privilege 10735 Elevation of Privilege 10789 Elevation of Privilege 10788 Elevation of Privilege 10852 Elevation of Privilege 10853 Elevation of Privilege 10816 Elevation of Privilege 10855 Elevation of Privilege 10047 Elevation of Privilege 10048 Elevation of Privilege 10481 Elevation of Privilege 10482 Elevation of Privilege 9312 Elevation of Privilege 10287 Elevation of Privilege 9311 Elevation of Privilege 9318 Elevation of Privilege 9344 Elevation of Privilege 10050 Elevation of Privilege 10051 Elevation of Privilege 10049 Elevation of Privilege 10378 Elevation of Privilege 10379 Elevation of Privilege 10483 Elevation of Privilege 10543 Elevation of Privilege 11466 Important 10951 Important 10952 Important 11453 Important 11454 Important 10729 Important 10735 Important 10789 Important 10788 Important 10852 Important 10853 Important 10816 Important 10855 Important 10047 Important 10048 Important 10481 Important 10482 Important 9312 Important 10287 Important 9311 Important 9318 Important 9344 Important 10050 Important 10051 Important 10049 Important 10378 Important 10379 Important 10483 Important 10543 Important 11466 Publicly Disclosed:No;Exploited:No;Latest Software Release:Exploitation Less Likely;Older Software Release:Exploitation Less Likely 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 10951 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 10952 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 11453 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 11454 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 10729 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 10735 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 10789 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 10788 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 10852 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 10853 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 10816 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 10855 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 10047 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 10048 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 10481 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 10482 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 9312 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 10287 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 9311 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 9318 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 9344 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 10050 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 10051 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 10049 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 10378 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 10379 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 10483 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 10543 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 11466 4056891 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056891 4053580 10951 Yes Security Update 4056891 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056891 4053580 10952 Yes Security Update 4056892 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056892 4054517 11453 Yes Security Update 4056892 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056892 4054517 11454 Yes Security Update 4056893 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056893 4053581 10729 Yes Security Update 4056893 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056893 4053581 10735 Yes Security Update 4056888 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056888 4053578 10789 Yes Security Update 4056888 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056888 4053578 10788 Yes Security Update 4056890 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056890 4053579 10852 Yes Security Update 4056890 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056890 4053579 10853 Yes Security Update 4056890 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056890 4053579 10816 Yes Security Update 4056890 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056890 4053579 10855 Yes Security Update 4056894 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056894 4054518 10047 Yes Monthly Rollup 4056897 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056897 10047 Yes Security Only 4056894 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056894 4054518 10048 Yes Monthly Rollup 4056897 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056897 10048 Yes Security Only 4056895 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056895 4054519 10481 Yes Monthly Rollup 4056898 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056898 10481 Yes Security Only 4056895 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056895 4054519 10482 Yes Monthly Rollup 4056898 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056898 10482 Yes Security Only 4056615 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056615 9312 Yes Security Update 4056615 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056615 10287 Yes Security Update 4056615 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056615 9311 Yes Security Update 4056615 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056615 9318 Yes Security Update 4056615 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056615 9344 Yes Security Update 4056894 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056894 4054518 10050 Yes Monthly Rollup 4056897 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056897 10050 Yes Security Only 4056894 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056894 4054518 10051 Yes Monthly Rollup 4056897 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056897 10051 Yes Security Only 4056894 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056894 4054518 10049 Yes Monthly Rollup 4056897 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056897 10049 Yes Security Only 4056896 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056896 4054520 10378 Yes Monthly Rollup 4056899 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056899 10378 Yes Security Only 4056896 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056896 4054520 10379 Yes Monthly Rollup 4056899 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056899 10379 Yes Security Only 4056895 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056895 4054519 10483 Yes Monthly Rollup 4056898 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056898 10483 Yes Security Only 4056895 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056895 4054519 10543 Yes Monthly Rollup 4056898 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056898 10543 Yes Security Only 4056892 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056892 4054517 11466 Yes Security Update James Forshaw of <a href="https://www.google.com">Google Project Zero</a> 3.0 2018-01-18T08:00:00Z <p>On January 5, 2018, Microsoft re-released KB4056898 (Security Only) for Windows 8.1 and Windows Server 2012 R2 to address a known issue. Customers who have installed the original package on 1/3/2018 should reinstall the update.</p> 1.0 2018-01-03T08:00:00Z <p>Information published.</p> 2.0 2018-01-05T08:00:00Z <p>Revised the Affected Products table to add Monthly Rollup updates for Windows 7, Windows Server 2008 R2, and Windows Server 2012. Customers who install Monthly Rollups should install these updates to be protected from this vulnerability.</p> 4.0 2018-01-22T08:00:00Z <p>Revised the Affected Products table to add Monthly Rollup updates for supported editions of Windows 8.1 and Windows Server 2012 R2. Customers who install Monthly Rollups should install these updates to be protected from this vulnerability.</p> Windows Elevation of Privilege Vulnerability <p>An elevation of privilege vulnerability exists in the way that the Windows Kernel API enforces permissions. An attacker who successfully exploited the vulnerability could impersonate processes, interject cross-process communication, or interrupt system functionality.</p> <p>To exploit the vulnerability, a locally authenticated attacker could run a specially crafted application.</p> <p>The security update addresses the vulnerability by helping to ensure that the Windows Kernel API properly enforces permissions.</p> Windows Kernel CVE-2018-0751 10951 10952 11453 11454 10729 10735 10789 10788 10852 10853 10816 10855 10481 10482 10378 10379 10483 10543 11466 Elevation of Privilege 10951 Elevation of Privilege 10952 Elevation of Privilege 11453 Elevation of Privilege 11454 Elevation of Privilege 10729 Elevation of Privilege 10735 Elevation of Privilege 10789 Elevation of Privilege 10788 Elevation of Privilege 10852 Elevation of Privilege 10853 Elevation of Privilege 10816 Elevation of Privilege 10855 Elevation of Privilege 10481 Elevation of Privilege 10482 Elevation of Privilege 10378 Elevation of Privilege 10379 Elevation of Privilege 10483 Elevation of Privilege 10543 Elevation of Privilege 11466 Important 10951 Important 10952 Important 11453 Important 11454 Important 10729 Important 10735 Important 10789 Important 10788 Important 10852 Important 10853 Important 10816 Important 10855 Important 10481 Important 10482 Important 10378 Important 10379 Important 10483 Important 10543 Important 11466 Publicly Disclosed:No;Exploited:No;Latest Software Release:Exploitation Less Likely;Older Software Release:Exploitation Less Likely 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 10951 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 10952 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 11453 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 11454 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 10729 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 10735 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 10789 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 10788 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 10852 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 10853 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 10816 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 10855 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 10481 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 10482 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 10378 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 10379 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 10483 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 10543 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 11466 4056891 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056891 4053580 10951 Yes Security Update 4056891 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056891 4053580 10952 Yes Security Update 4056892 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056892 4054517 11453 Yes Security Update 4056892 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056892 4054517 11454 Yes Security Update 4056893 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056893 4053581 10729 Yes Security Update 4056893 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056893 4053581 10735 Yes Security Update 4056888 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056888 4053578 10789 Yes Security Update 4056888 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056888 4053578 10788 Yes Security Update 4056890 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056890 4053579 10852 Yes Security Update 4056890 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056890 4053579 10853 Yes Security Update 4056890 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056890 4053579 10816 Yes Security Update 4056890 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056890 4053579 10855 Yes Security Update 4056895 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056895 4054519 10481 Yes Monthly Rollup 4056898 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056898 10481 Yes Security Only 4056895 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056895 4054519 10482 Yes Monthly Rollup 4056898 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056898 10482 Yes Security Only 4056896 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056896 4054520 10378 Yes Monthly Rollup 4056899 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056899 10378 Yes Security Only 4056896 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056896 4054520 10379 Yes Monthly Rollup 4056899 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056899 10379 Yes Security Only 4056895 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056895 4054519 10483 Yes Monthly Rollup 4056898 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056898 10483 Yes Security Only 4056895 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056895 4054519 10543 Yes Monthly Rollup 4056898 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056898 10543 Yes Security Only 4056892 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056892 4054517 11466 Yes Security Update James Forshaw of <a href="https://www.google.com">Google Project Zero</a> 3.0 2018-01-18T08:00:00Z <p>On January 5, 2018, Microsoft re-released KB4056898 (Security Only) for Windows 8.1 and Windows Server 2012 R2 to address a known issue. Customers who have installed the original package on 1/3/2018 should reinstall the update.</p> 1.0 2018-01-03T08:00:00Z <p>Information published.</p> 2.0 2018-01-05T08:00:00Z <p>Revised the Affected Products table to add Monthly Rollup updates for Windows 7, Windows Server 2008 R2, and Windows Server 2012. Customers who install Monthly Rollups should install these updates to be protected from this vulnerability.</p> 4.0 2018-01-22T08:00:00Z <p>Revised the Affected Products table to add Monthly Rollup updates for supported editions of Windows 8.1 and Windows Server 2012 R2. Customers who install Monthly Rollups should install these updates to be protected from this vulnerability.</p> Windows Elevation of Privilege Vulnerability <p>An elevation of privilege vulnerability exists in the way that the Windows Kernel API enforces permissions. An attacker who successfully exploited the vulnerability could impersonate processes, interject cross-process communication, or interrupt system functionality.</p> <p>To exploit the vulnerability, a locally authenticated attacker could run a specially crafted application.</p> <p>The security update addresses the vulnerability by helping to ensure that the Windows Kernel API properly enforces permissions.</p> Windows Kernel CVE-2018-0752 11453 11454 10951 10952 10729 10735 10789 10788 10852 10853 10816 10855 10481 10482 10378 10379 10483 10543 11466 Elevation of Privilege 11453 Elevation of Privilege 11454 Elevation of Privilege 10951 Elevation of Privilege 10952 Elevation of Privilege 10729 Elevation of Privilege 10735 Elevation of Privilege 10789 Elevation of Privilege 10788 Elevation of Privilege 10852 Elevation of Privilege 10853 Elevation of Privilege 10816 Elevation of Privilege 10855 Elevation of Privilege 10481 Elevation of Privilege 10482 Elevation of Privilege 10378 Elevation of Privilege 10379 Elevation of Privilege 10483 Elevation of Privilege 10543 Elevation of Privilege 11466 Important 11453 Important 11454 Important 10951 Important 10952 Important 10729 Important 10735 Important 10789 Important 10788 Important 10852 Important 10853 Important 10816 Important 10855 Important 10481 Important 10482 Important 10378 Important 10379 Important 10483 Important 10543 Important 11466 Publicly Disclosed:No;Exploited:No;Latest Software Release:Exploitation Less Likely;Older Software Release:Exploitation Less Likely 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 11453 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 11454 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 10951 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 10952 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 10729 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 10735 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 10789 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 10788 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 10852 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 10853 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 10816 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 10855 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 10481 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 10482 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 10378 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 10379 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 10483 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 10543 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 11466 4056892 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056892 4054517 11453 Yes Security Update 4056892 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056892 4054517 11454 Yes Security Update 4056891 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056891 4053580 10951 Yes Security Update 4056891 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056891 4053580 10952 Yes Security Update 4056893 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056893 4053581 10729 Yes Security Update 4056893 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056893 4053581 10735 Yes Security Update 4056888 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056888 4053578 10789 Yes Security Update 4056888 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056888 4053578 10788 Yes Security Update 4056890 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056890 4053579 10852 Yes Security Update 4056890 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056890 4053579 10853 Yes Security Update 4056890 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056890 4053579 10816 Yes Security Update 4056890 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056890 4053579 10855 Yes Security Update 4056895 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056895 4054519 10481 Yes Monthly Rollup 4056898 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056898 10481 Yes Security Only 4056895 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056895 4054519 10482 Yes Monthly Rollup 4056898 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056898 10482 Yes Security Only 4056896 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056896 4054520 10378 Yes Monthly Rollup 4056899 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056899 10378 Yes Security Only 4056896 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056896 4054520 10379 Yes Monthly Rollup 4056899 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056899 10379 Yes Security Only 4056895 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056895 4054519 10483 Yes Monthly Rollup 4056898 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056898 10483 Yes Security Only 4056895 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056895 4054519 10543 Yes Monthly Rollup 4056898 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056898 10543 Yes Security Only 4056892 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056892 4054517 11466 Yes Security Update James Forshaw of <a href="https://www.google.com">Google Project Zero</a> 3.0 2018-01-18T08:00:00Z <p>On January 5, 2018, Microsoft re-released KB4056898 (Security Only) for Windows 8.1 and Windows Server 2012 R2 to address a known issue. Customers who have installed the original package on 1/3/2018 should reinstall the update.</p> 1.0 2018-01-03T08:00:00Z <p>Information published.</p> 2.0 2018-01-05T08:00:00Z <p>Revised the Affected Products table to add Monthly Rollup updates for Windows 7, Windows Server 2008 R2, and Windows Server 2012. Customers who install Monthly Rollups should install these updates to be protected from this vulnerability.</p> 4.0 2018-01-22T08:00:00Z <p>Revised the Affected Products table to add Monthly Rollup updates for supported editions of Windows 8.1 and Windows Server 2012 R2. Customers who install Monthly Rollups should install these updates to be protected from this vulnerability.</p> Windows IPSec Denial of Service Vulnerability <p>A denial of service vulnerability exists in the way that Windows handles objects in memory. An attacker who successfully exploited the vulnerability could cause a target system to stop responding. Note that the denial of service condition would not allow an attacker to execute code or to elevate user privileges. However, the denial of service condition could prevent authorized users from using system resources.</p> <p>The security update addresses the vulnerability by correcting how Windows handles objects in memory.</p> Microsoft Windows CVE-2018-0753 10951 10952 10729 10735 10789 10788 10852 10853 10816 10855 10481 10482 10378 10379 10483 10543 11453 11466 Denial of Service 10951 Denial of Service 10952 Denial of Service 10729 Denial of Service 10735 Denial of Service 10789 Denial of Service 10788 Denial of Service 10852 Denial of Service 10853 Denial of Service 10816 Denial of Service 10855 Denial of Service 10481 Denial of Service 10482 Denial of Service 10378 Denial of Service 10379 Denial of Service 10483 Denial of Service 10543 Denial of Service 11453 Denial of Service 11466 Important 10951 Important 10952 Important 10729 Important 10735 Important 10789 Important 10788 Important 10852 Important 10853 Important 10816 Important 10855 Important 10481 Important 10482 Important 10378 Important 10379 Important 10483 Important 10543 Important 11453 Important 11466 Publicly Disclosed:No;Exploited:No;Latest Software Release:Exploitation Unlikely;Older Software Release:Exploitation Unlikely 5.9 5.3 CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C 10951 5.9 5.3 CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C 10952 5.9 5.3 CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C 10729 5.9 5.3 CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C 10735 5.9 5.3 CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C 10789 5.9 5.3 CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C 10788 5.9 5.3 CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C 10852 5.9 5.3 CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C 10853 5.9 5.3 CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C 10816 5.9 5.3 CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C 10855 5.9 5.3 CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C 10481 5.9 5.3 CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C 10482 5.9 5.3 CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C 10378 5.9 5.3 CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C 10379 5.9 5.3 CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C 10483 5.9 5.3 CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C 10543 5.9 5.3 CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C 11453 5.9 5.3 CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C 11466 4056891 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056891 4053580 10951 Yes Security Update 4056891 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056891 4053580 10952 Yes Security Update 4056893 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056893 4053581 10729 Yes Security Update 4056893 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056893 4053581 10735 Yes Security Update 4056888 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056888 4053578 10789 Yes Security Update 4056888 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056888 4053578 10788 Yes Security Update 4056890 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056890 4053579 10852 Yes Security Update 4056890 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056890 4053579 10853 Yes Security Update 4056890 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056890 4053579 10816 Yes Security Update 4056890 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056890 4053579 10855 Yes Security Update 4056895 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056895 4054519 10481 Yes Monthly Rollup 4056898 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056898 10481 Yes Security Only 4056895 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056895 4054519 10482 Yes Monthly Rollup 4056898 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056898 10482 Yes Security Only 4056896 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056896 4054520 10378 Yes Monthly Rollup 4056899 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056899 10378 Yes Security Only 4056896 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056896 4054520 10379 Yes Monthly Rollup 4056899 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056899 10379 Yes Security Only 4056895 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056895 4054519 10483 Yes Monthly Rollup 4056898 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056898 10483 Yes Security Only 4056895 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056895 4054519 10543 Yes Monthly Rollup 4056898 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056898 10543 Yes Security Only 4056892 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056892 4054517 11453 Yes Security Update 4056892 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056892 4054517 11466 Yes Security Update 3.0 2018-01-18T08:00:00Z <p>On January 5, 2018, Microsoft re-released KB4056898 (Security Only) for Windows 8.1 and Windows Server 2012 R2 to address a known issue. Customers who have installed the original package on 1/3/2018 should reinstall the update.</p> 1.0 2018-01-03T08:00:00Z <p>Information published.</p> 2.0 2018-01-05T08:00:00Z <p>Revised the Affected Products table to add Monthly Rollup updates for Windows 7, Windows Server 2008 R2, and Windows Server 2012. Customers who install Monthly Rollups should install these updates to be protected from this vulnerability.</p> 4.0 2018-01-22T08:00:00Z <p>Revised the Affected Products table to add Monthly Rollup updates for supported editions of Windows 8.1 and Windows Server 2012 R2. Customers who install Monthly Rollups should install these updates to be protected from this vulnerability.</p> Windows GDI Information Disclosure Vulnerability <p>A Win32k information disclosure vulnerability exists when the Windows GDI component improperly discloses kernel memory addresses. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user’s system.</p> <p>To exploit this vulnerability, an attacker would have to log on to an affected system and run a specially crafted application. The vulnerability would not allow an attacker to execute code or to elevate user rights directly, but it could be used to obtain information that could be used to try to further compromise the affected system.</p> <p>The security update addresses the vulnerability by correcting how the Windows GDI component handles objects in memory.</p> Microsoft Graphics Component CVE-2018-0750 10047 10048 9312 10287 9311 9318 9344 10050 10051 10049 Information Disclosure 10047 Information Disclosure 10048 Information Disclosure 9312 Information Disclosure 10287 Information Disclosure 9311 Information Disclosure 9318 Information Disclosure 9344 Information Disclosure 10050 Information Disclosure 10051 Information Disclosure 10049 Important 10047 Important 10048 Important 9312 Important 10287 Important 9311 Important 9318 Important 9344 Important 10050 Important 10051 Important 10049 Publicly Disclosed:No;Exploited:No;Latest Software Release:Exploitation More Likely;Older Software Release:Exploitation More Likely 5.5 5.0 CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C 10047 5.5 5.0 CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C 10048 5.5 5.0 CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C 9312 5.5 5.0 CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C 10287 5.5 5.0 CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C 9311 5.5 5.0 CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C 9318 5.5 5.0 CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C 9344 5.5 5.0 CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C 10050 5.5 5.0 CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C 10051 5.5 5.0 CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C 10049 4056894 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056894 4054518 10047 Yes Monthly Rollup 4056897 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056897 10047 Yes Security Only 4056894 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056894 4054518 10048 Yes Monthly Rollup 4056897 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056897 10048 Yes Security Only 4056944 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056944 9312 Yes Security Update 4056944 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056944 10287 Yes Security Update 4056944 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056944 9311 Yes Security Update 4056944 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056944 9318 Yes Security Update 4056944 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056944 9344 Yes Security Update 4056894 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056894 4054518 10050 Yes Monthly Rollup 4056897 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056897 10050 Yes Security Only 4056894 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056894 4054518 10051 Yes Monthly Rollup 4056897 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056897 10051 Yes Security Only 4056894 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056894 4054518 10049 Yes Monthly Rollup 4056897 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056897 10049 Yes Security Only Seonung Jang(<a href="https://twitter.com/seonunghardt">@seonunghardt</a>) 1.0 2018-01-03T08:00:00Z <p>Information published.</p> 2.0 2018-01-05T08:00:00Z <p>Revised the Affected Products table to add Monthly Rollup updates for Windows 7, Windows Server 2008 R2, and Windows Server 2012. Customers who install Monthly Rollups should install these updates to be protected from this vulnerability.</p> Scripting Engine Memory Corruption Vulnerability <p>A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Microsoft Edge (HTML-based). The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user. An attacker who successfully exploited the vulnerability could gain the same user rights as the current user. If the current user is logged on with administrative user rights, an attacker who successfully exploited the vulnerability could take control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.</p> <p>In a web-based attack scenario, an attacker could host a specially crafted website that is designed to exploit the vulnerability through Microsoft Edge (HTML-based) and then convince a user to view the website. The attacker could also take advantage of compromised websites and websites that accept or host user-provided content or advertisements. These websites could contain specially crafted content that could exploit the vulnerability.</p> <p>The security update addresses the vulnerability by modifying how the scripting engine handles objects in memory.</p> Microsoft Scripting Engine CVE-2018-0773 11447 10724-11453 10724-11454 Remote Code Execution 11447 Remote Code Execution 10724-11453 Remote Code Execution 10724-11454 Critical 11447 Critical 10724-11453 Critical 10724-11454 Publicly Disclosed:No;Exploited:No;Latest Software Release:Exploitation More Likely;Older Software Release:N/A;DOS:N/A 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 11447 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-11453 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-11454 Commit https://github.com/Microsoft/ChakraCore/releases/tag/v1.7.6 11447 Yes Security Update 4056892 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056892 4054517 10724-11453 Yes Security Update 4056892 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056892 4054517 10724-11454 Yes Security Update Wei of <a href="https://www.360.cn">Qihoo 360 Vulcan Team</a> 1.0 2018-01-03T08:00:00Z <p>Information published.</p> 2.0 2018-01-05T08:00:00Z <p>Revised the Affected Products table to include ChakraCore for this vulnerability.</p> Scripting Engine Memory Corruption Vulnerability <p>A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Microsoft Edge (HTML-based). The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user. An attacker who successfully exploited the vulnerability could gain the same user rights as the current user. If the current user is logged on with administrative user rights, an attacker who successfully exploited the vulnerability could take control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.</p> <p>In a web-based attack scenario, an attacker could host a specially crafted website that is designed to exploit the vulnerability through Microsoft Edge (HTML-based) and then convince a user to view the website. The attacker could also take advantage of compromised websites and websites that accept or host user-provided content or advertisements. These websites could contain specially crafted content that could exploit the vulnerability.</p> <p>The security update addresses the vulnerability by modifying how the scripting engine handles objects in memory.</p> Microsoft Scripting Engine CVE-2018-0774 11447 10724-11453 10724-11454 Remote Code Execution 11447 Remote Code Execution 10724-11453 Remote Code Execution 10724-11454 Critical 11447 Critical 10724-11453 Critical 10724-11454 Publicly Disclosed:No;Exploited:No;Latest Software Release:Exploitation More Likely;Older Software Release:N/A;DOS:N/A 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 11447 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-11453 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-11454 Commit https://github.com/Microsoft/ChakraCore/releases/tag/v1.7.6 11447 Yes Security Update 4056892 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056892 4054517 10724-11453 Yes Security Update 4056892 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056892 4054517 10724-11454 Yes Security Update Lokihardt of <a href="https://www.google.com/">Google Project Zero</a> 1.0 2018-01-03T08:00:00Z <p>Information published.</p> 2.0 2018-01-05T08:00:00Z <p>Revised the Affected Products table to include ChakraCore for this vulnerability.</p> Scripting Engine Memory Corruption Vulnerability <p>A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Microsoft Edge (HTML-based). The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user. An attacker who successfully exploited the vulnerability could gain the same user rights as the current user. If the current user is logged on with administrative user rights, an attacker who successfully exploited the vulnerability could take control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.</p> <p>In a web-based attack scenario, an attacker could host a specially crafted website that is designed to exploit the vulnerability through Microsoft Edge (HTML-based) and then convince a user to view the website. The attacker could also take advantage of compromised websites and websites that accept or host user-provided content or advertisements. These websites could contain specially crafted content that could exploit the vulnerability.</p> <p>The security update addresses the vulnerability by modifying how the scripting engine handles objects in memory.</p> Microsoft Scripting Engine CVE-2018-0781 11447 10724-10951 10724-10952 10724-11453 10724-11454 10724-10789 10724-10788 10724-10852 10724-10853 10724-10816 Remote Code Execution 11447 Remote Code Execution 10724-10951 Remote Code Execution 10724-10952 Remote Code Execution 10724-11453 Remote Code Execution 10724-11454 Remote Code Execution 10724-10789 Remote Code Execution 10724-10788 Remote Code Execution 10724-10852 Remote Code Execution 10724-10853 Remote Code Execution 10724-10816 Critical 11447 Critical 10724-10951 Critical 10724-10952 Critical 10724-11453 Critical 10724-11454 Critical 10724-10789 Critical 10724-10788 Critical 10724-10852 Critical 10724-10853 Critical 10724-10816 Publicly Disclosed:No;Exploited:No;Latest Software Release:Exploitation Unlikely;Older Software Release:Exploitation Unlikely 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 11447 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-10951 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-10952 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-11453 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-11454 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-10789 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-10788 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-10852 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-10853 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-10816 Commit https://github.com/Microsoft/ChakraCore/releases/tag/v1.7.6 11447 Yes Security Update 4056891 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056891 4053580 10724-10951 Yes Security Update 4056891 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056891 4053580 10724-10952 Yes Security Update 4056892 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056892 4054517 10724-11453 Yes Security Update 4056892 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056892 4054517 10724-11454 Yes Security Update 4056888 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056888 4053578 10724-10789 Yes Security Update 4056888 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056888 4053578 10724-10788 Yes Security Update 4056890 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056890 4053579 10724-10852 Yes Security Update 4056890 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056890 4053579 10724-10853 Yes Security Update 4056890 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056890 4053579 10724-10816 Yes Security Update 1.0 2018-01-03T08:00:00Z <p>Information published.</p> 2.0 2018-01-05T08:00:00Z <p>Revised the Affected Products table to include ChakraCore for this vulnerability.</p> ASP.NET Core Elevation Of Privilege Vulnerability <p>An elevation of privilege vulnerability exists when a ASP.NET Core web application, created using vulnerable project templates, fails to properly sanitize web requests. An attacker who successfully exploited this vulnerability could perform content injection attacks and run script in the security context of the logged-on user.</p> <p>To exploit the vulnerability, an attacker could send a specially crafted email, containing a malicious link, to a user. Alternatively, an attacker could use a chat client to social engineer a user into clicking the malicious link. However, in all cases to exploit this vulnerability a user must click a maliciously crafted link from an attacker.</p> <p>The security update addresses the vulnerability by correcting the ASP.NET Core project templates.</p> ASP .NET CVE-2018-0784 11460 Elevation of Privilege 11460 Important 11460 Publicly Disclosed:No;Exploited:No;Latest Software Release:Exploitation Less Likely;Older Software Release:Exploitation Less Likely Commit https://github.com/aspnet/Announcements/issues/285 11460 Yes Security Update <a href="http://kevinchalet.com/">Kévin Chalet</a> 1.0 2018-01-09T08:00:00Z <p>Information published.</p> .NET Security Feature Bypass Vulnerability <p>A security feature bypass vulnerability exists when Microsoft .NET Framework (and .NET Core) components do not completely validate certificates.</p> <p>An attacker could present a certificate that is marked invalid for a specific use, but the component uses it for that purpose. This action disregards the Enhanced Key Usage taggings.</p> <p>The security update addresses the vulnerability by helping to ensure that .NET Framework (and .NET Core) components completely validate certificates.</p> .NET Framework CVE-2018-0786 11463 11465 11489 11451-10047 11451-10048 11451-10481 11451-10482 11451-10484 11451-10051 11451-10049 11451-10378 11451-10379 11451-10483 11451-10543 11483-11453 11483-11454 11483-11466 2472-11453 2472-11454 2472-11466 10957-10951 10957-10952 10728-10729 10728-10735 10728-9312 10728-9318 10808-10789 10808-10788 9292-9312 9292-9311 9292-9318 9195-9312 9195-9311 9195-9318 2472-10951 2472-10952 2472-10729 2472-10735 2472-10789 2472-10788 2472-10852 2472-10853 2472-10816 2472-10855 2472-10481 2472-10482 2472-10378 2472-10379 2472-10483 2472-10543 9495-10047 9495-10048 9495-10050 9495-10051 9495-10049 10636-10047 10636-10048 10636-10481 10636-10482 10636-10484 10636-9312 10636-9318 10636-10051 10636-10049 10636-10378 10636-10379 10636-10483 10636-10543 11437-10852 11437-10853 11437-10816 11437-10855 Security Feature Bypass 11463 Security Feature Bypass 11465 Security Feature Bypass 11489 Security Feature Bypass 11451-10047 Security Feature Bypass 11451-10048 Security Feature Bypass 11451-10481 Security Feature Bypass 11451-10482 Security Feature Bypass 11451-10484 Security Feature Bypass 11451-10051 Security Feature Bypass 11451-10049 Security Feature Bypass 11451-10378 Security Feature Bypass 11451-10379 Security Feature Bypass 11451-10483 Security Feature Bypass 11451-10543 Security Feature Bypass 11483-11453 Security Feature Bypass 11483-11454 Security Feature Bypass 11483-11466 Security Feature Bypass 2472-11453 Security Feature Bypass 2472-11454 Security Feature Bypass 2472-11466 Security Feature Bypass 10957-10951 Security Feature Bypass 10957-10952 Security Feature Bypass 10728-10729 Security Feature Bypass 10728-10735 Security Feature Bypass 10728-9312 Security Feature Bypass 10728-9318 Security Feature Bypass 10808-10789 Security Feature Bypass 10808-10788 Security Feature Bypass 9292-9312 Security Feature Bypass 9292-9311 Security Feature Bypass 9292-9318 Security Feature Bypass 9195-9312 Security Feature Bypass 9195-9311 Security Feature Bypass 9195-9318 Security Feature Bypass 2472-10951 Security Feature Bypass 2472-10952 Security Feature Bypass 2472-10729 Security Feature Bypass 2472-10735 Security Feature Bypass 2472-10789 Security Feature Bypass 2472-10788 Security Feature Bypass 2472-10852 Security Feature Bypass 2472-10853 Security Feature Bypass 2472-10816 Security Feature Bypass 2472-10855 Security Feature Bypass 2472-10481 Security Feature Bypass 2472-10482 Security Feature Bypass 2472-10378 Security Feature Bypass 2472-10379 Security Feature Bypass 2472-10483 Security Feature Bypass 2472-10543 Security Feature Bypass 9495-10047 Security Feature Bypass 9495-10048 Security Feature Bypass 9495-10050 Security Feature Bypass 9495-10051 Security Feature Bypass 9495-10049 Security Feature Bypass 10636-10047 Security Feature Bypass 10636-10048 Security Feature Bypass 10636-10481 Security Feature Bypass 10636-10482 Security Feature Bypass 10636-10484 Security Feature Bypass 10636-9312 Security Feature Bypass 10636-9318 Security Feature Bypass 10636-10051 Security Feature Bypass 10636-10049 Security Feature Bypass 10636-10378 Security Feature Bypass 10636-10379 Security Feature Bypass 10636-10483 Security Feature Bypass 10636-10543 Security Feature Bypass 11437-10852 Security Feature Bypass 11437-10853 Security Feature Bypass 11437-10816 Security Feature Bypass 11437-10855 Important 11463 Important 11465 Important 11489 Important 11451-10047 Important 11451-10048 Important 11451-10481 Important 11451-10482 Important 11451-10484 Important 11451-10051 Important 11451-10049 Important 11451-10378 Important 11451-10379 Important 11451-10483 Important 11451-10543 Important 11483-11453 Important 11483-11454 Important 11483-11466 Important 2472-11453 Important 2472-11454 Important 2472-11466 Important 10957-10951 Important 10957-10952 Important 10728-10729 Important 10728-10735 Important 10728-9312 Important 10728-9318 Important 10808-10789 Important 10808-10788 Important 9292-9312 Important 9292-9311 Important 9292-9318 Important 9195-9312 Important 9195-9311 Important 9195-9318 Important 2472-10951 Important 2472-10952 Important 2472-10729 Important 2472-10735 Important 2472-10789 Important 2472-10788 Important 2472-10852 Important 2472-10853 Important 2472-10816 Important 2472-10855 Important 2472-10481 Important 2472-10482 Important 2472-10378 Important 2472-10379 Important 2472-10483 Important 2472-10543 Important 9495-10047 Important 9495-10048 Important 9495-10050 Important 9495-10051 Important 9495-10049 Important 10636-10047 Important 10636-10048 Important 10636-10481 Important 10636-10482 Important 10636-10484 Important 10636-9312 Important 10636-9318 Important 10636-10051 Important 10636-10049 Important 10636-10378 Important 10636-10379 Important 10636-10483 Important 10636-10543 Important 11437-10852 Important 11437-10853 Important 11437-10816 Important 11437-10855 Publicly Disclosed:No;Exploited:No;Latest Software Release:Exploitation Unlikely;Older Software Release:Exploitation Unlikely Commit https://github.com/dotnet/announcements/issues/51 11463 Yes Security Update Commit https://github.com/dotnet/announcements/issues/51 11465 Yes Security Update Release Notes https://github.com/PowerShell/Announcements/issues/3 11489 Maybe Security Update 4074880 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055532 4041083; 4049016 11451-10047 Maybe Monthly Rollup 4054183 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055269 3122661 11451-10047 Maybe Security Only 4074880 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055532 4049016, 4041083 11451-10048 Maybe Monthly Rollup 4054183 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055269 3122661 11451-10048 Maybe Security Only 4055001 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055266 4049017, 4041085 11451-10481 Maybe Monthly Rollup 4054182 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055271 3122660 11451-10481 Maybe Security Only 4055001 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055266 4049017, 4041085 11451-10482 Maybe Monthly Rollup 4054182 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055271 3122660 11451-10482 Maybe Security Only 4055001 4049017, 4041085 11451-10484 Maybe Monthly Rollup 4074880 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055532 4049016, 4041083 11451-10051 Maybe Monthly Rollup 4054183 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055269 3122661 11451-10051 Maybe Security Only 4074880 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055532 4049016, 4041083 11451-10049 Maybe Monthly Rollup 4054183 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055269 3122661 11451-10049 Maybe Security Only 4055000 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055265 4049018, 4041084 11451-10378 Maybe Monthly Rollup 4054181 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055270 3122658 11451-10378 Maybe Security Only 4055000 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055265 4049018, 4041084 11451-10379 Maybe Monthly Rollup 4054181 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055270 3122658 11451-10379 Maybe Security Only 4055001 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055266 4049017, 4041085 11451-10483 Maybe Monthly Rollup 4054182 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055271 3122660 11451-10483 Maybe Security Only 4055001 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055266 4049017, 4041085 11451-10543 Maybe Monthly Rollup 4054182 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055271 3122660 11451-10543 Maybe Security Only 4056892 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056892 4054517 11483-11453 Yes Security Update 4056892 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056892 4054517 11483-11454 Yes Security Update 4056892 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056892 4054517 11483-11466 Yes Security Update 4056892 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056892 4054517 2472-11453 Yes Security Update 4056892 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056892 4054517 2472-11454 Yes Security Update 4056892 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056892 4054517 2472-11466 Yes Security Update 4056891 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056891 4053580 10957-10951 Yes Security Update 4056891 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056891 4053580 10957-10952 Yes Security Update 4056893 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056893 4053581 10728-10729 Yes Security Update 4056893 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056893 4053581 10728-10735 Yes Security Update 4055002 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055267 4049019, 4041086 10728-9312 Maybe Monthly Rollup 4054183 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055272 3122661 10728-9312 Maybe Security Only 4055002 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055267 4049019, 4041086 10728-9318 Maybe Monthly Rollup 4054183 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055272 3122661 10728-9318 Maybe Security Only 4056888 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056888 4053578 10808-10789 Yes Security Update 4056888 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056888 4053578 10808-10788 Yes Security Update 4054996 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055267 4049019, 4041086 9292-9312 Maybe Monthly Rollup 4054174 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055272 3122646 9292-9312 Maybe Security Only 4054996 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055267 4049019, 4041086 9292-9311 Maybe Monthly Rollup 4054174 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055272 3122646 9292-9311 Maybe Security Update 4054996 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055267 4049019, 4041086 9292-9318 Maybe Monthly Rollup 4054174 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055272 3122646 9292-9318 Maybe Security Only 4054996 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055267 4049019, 4041086 9195-9312 Maybe Monthly Rollup 4054174 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055272 3122646 9195-9312 Maybe Security Only 4054996 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055267 4049019, 4041086 9195-9311 Maybe Monthly Rollup 4054174 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055272 3122646 9195-9311 Maybe Security Update 4054996 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055267 4049019, 4041086 9195-9318 Maybe Monthly Rollup 4054174 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055272 3122646 9195-9318 Maybe Security Only 4056891 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056891 4053580 2472-10951 Yes Security Update 4056891 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056891 4053580 2472-10952 Yes Security Update 4056893 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056893 4053581 2472-10729 Yes Security Update 4056893 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056893 4053581 2472-10735 Yes Security Update 4056888 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056888 4053578 2472-10789 Yes Security Update 4056888 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056888 4053578 2472-10788 Yes Security Update 4056890 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056890 4053579 2472-10852 Yes Security Update 4056890 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056890 4053579 2472-10853 Yes Security Update 4056890 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056890 4053579 2472-10816 Yes Security Update 4056890 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056890 4053579 2472-10855 Yes Security Update 4054999 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055266 4049017, 4041085 2472-10481 Maybe Monthly Rollup 4054177 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055271 3122651 2472-10481 Maybe Security Only 4054999 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055266 4049017, 4041085 2472-10482 Maybe Monthly Rollup 4054182 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055271 3122660 2472-10482 Maybe Security Only 4054997 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055265 4049018, 4041084 2472-10378 Maybe Monthly Rollup 4054175 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055270 3122655, 3122658 2472-10378 Maybe Security Only 4054997 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055265 4049018, 4041084 2472-10379 Maybe Monthly Rollup 4054175 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055270 3122655, 3122658 2472-10379 Maybe Security Only 4054999 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055266 4049017, 4041085 2472-10483 Maybe Monthly Rollup 4054177 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055271 3122651 2472-10483 Maybe Security Only 4054999 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055266 4049017, 4041085 2472-10543 Maybe Monthly Rollup 4054177 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055271 3122651 2472-10543 Maybe Security Only 4054998 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055532 4049016, 4041083 9495-10047 Maybe Monthly Rollup 4054176 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055269 2973112, 3122648 9495-10047 Maybe Security Only 4054998 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055532 4049016, 4041083 9495-10048 Maybe Monthly Rollup 4054176 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055269 2973112, 3122648 9495-10048 Maybe Security Only 4054998 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055532 4049016, 4041083 9495-10050 Maybe Monthly Rollup 4054176 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055269 2973112, 3122648 9495-10050 Maybe Security Only 4054998 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055532 4049016, 4041083 9495-10051 Maybe Monthly Rollup 4054176 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055269 2973112, 3122648 9495-10051 Maybe Security Only 4054998 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055532 4049016, 4041083 9495-10049 Maybe Monthly Rollup 4054176 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055269 2973112, 3122648 9495-10049 Maybe Security Only 4054995 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055532 4049016, 4041083 10636-10047 Monthly Rollup 4054172 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055269 3122656 10636-10047 Maybe Security Only 4054995 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055532 4049016, 4041083 10636-10048 Maybe Monthly Rollup 4054172 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055269 3122656 10636-10048 Maybe Security Only 4054993 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055266 4049017, 4041085 10636-10481 Maybe Monthly Rollup 4054170 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055271 3122654 10636-10481 Maybe Security Only 4054993 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055266 4049017, 4041085 10636-10482 Maybe Monthly Rollup 4054170 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055271 3122654 10636-10482 Maybe Security Only 4054993 4049017, 4041085 10636-10484 Maybe Monthly Rollup 4054995 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055267 4049017, 4041086 10636-9312 Maybe Monthly Rollup 4054172 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055272 3122656 10636-9312 Maybe Security Only 4054995 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055267 4049017, 4041086 10636-9318 Maybe Monthly Rollup 4054172 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055272 3122656 10636-9318 Security Only 4054995 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055532 4049016, 4041083 10636-10051 Maybe Monthly Rollup 4054172 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055269 3122656 10636-10051 Maybe Security Only 4054995 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055532 4049016, 4041083 10636-10049 Maybe Monthly Rollup 4054172 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055269 3122656 10636-10049 Maybe Security Only 4054994 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055265 4049018, 4041084 10636-10378 Maybe Monthly Rollup 4054171 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055270 3122655 10636-10378 Maybe Security Only 4054994 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055265 4049018, 4041084 10636-10379 Maybe Monthly Rollup 4054171 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055270 3122655 10636-10379 Maybe Security Only 4054993 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055266 4049017, 4041085 10636-10483 Maybe Monthly Rollup 4054170 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055271 3122654 10636-10483 Maybe Security Only 4054993 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055266 4049017, 4041085 10636-10543 Maybe Monthly Rollup 4054170 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055271 3122654 10636-10543 Maybe Security Only 4056890 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056890 4053579 11437-10852 Yes Security Update 4056890 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056890 4053579 11437-10853 Yes Security Update 4056890 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056890 4053579 11437-10816 Yes Security Update 4056890 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056890 4053579 11437-10855 Yes Security Update 1.0 2018-01-09T08:00:00Z <p>Information published.</p> 2.0 2018-01-18T08:00:00Z <p>To address a regression issue after installing security update 4055002, Microsoft has released security update 4074880 for Microsoft .NET 4.6/4.6.1/4.6.2/4.7/4.7.1 installed on supported editions of Windows 7 and Windows Server 2008 R2. Customers who have already installed KB4055002 should install KB4074880 to be protected from this vulnerability.</p> 3.0 2018-01-25T08:00:00Z <p>Revised the Affected Products table to include PowerShell Core 6.0.0 because it is affected by CVE-2018-0786. See https://github.com/PowerShell/Announcements/issues/3 for more information.</p> OpenType Font Driver Elevation of Privilege Vulnerability <p>An elevation of privilege vulnerability exists in Windows Adobe Type Manager Font Driver (ATMFD.dll) when it fails to properly handle objects in memory. An attacker who successfully exploited this vulnerability could execute arbitrary code and take control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.</p> <p>To exploit the vulnerability, an attacker would first have to log on to a target system and then run a specially crafted application.</p> <p>The security update addresses the vulnerability by correcting how ATMFD.dll handles objects in memory.</p> Graphic Fonts CVE-2018-0788 10047 10048 10481 10482 9312 10287 9311 9318 9344 10050 10051 10049 10378 10379 10483 10543 Information Disclosure 10047 Information Disclosure 10048 Information Disclosure 10481 Information Disclosure 10482 Information Disclosure 9312 Information Disclosure 10287 Information Disclosure 9311 Information Disclosure 9318 Information Disclosure 9344 Information Disclosure 10050 Information Disclosure 10051 Information Disclosure 10049 Information Disclosure 10378 Information Disclosure 10379 Information Disclosure 10483 Information Disclosure 10543 Important 10047 Important 10048 Important 10481 Important 10482 Important 9312 Important 10287 Important 9311 Important 9318 Important 9344 Important 10050 Important 10051 Important 10049 Important 10378 Important 10379 Important 10483 Important 10543 Publicly Disclosed:No;Exploited:No;Latest Software Release:Exploitation More Likely;Older Software Release:Exploitation More Likely 7.0 6.3 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C 10047 7.0 6.3 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C 10048 7.0 6.3 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C 10481 7.0 6.3 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C 10482 7.0 6.3 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C 9312 7.0 6.3 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C 10287 7.0 6.3 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C 9311 7.0 6.3 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C 9318 7.0 6.3 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C 9344 7.0 6.3 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C 10050 7.0 6.3 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C 10051 7.0 6.3 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C 10049 7.0 6.3 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C 10378 7.0 6.3 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C 10379 7.0 6.3 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C 10483 7.0 6.3 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C 10543 4056894 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056894 4054518 10047 Yes Monthly Rollup 4056897 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056897 10047 Yes Security Only 4056894 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056894 4054518 10048 Yes Monthly Rollup 4056897 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056897 10048 Yes Security Only 4056895 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056895 4054519 10481 Yes Monthly Rollup 4056898 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056898 10481 Yes Security Only 4056895 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056895 4054519 10482 Yes Monthly Rollup 4056898 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056898 10482 Yes Security Only 4056941 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056951 9312 Yes Security Update 4056941 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056951 10287 Yes Security Update 4056941 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056951 9311 Yes Security Update 4056941 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056951 9318 Yes Security Update 4056941 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056951 9344 Yes Security Update 4056894 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056894 4054518 10050 Yes Monthly Rollup 4056897 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056897 10050 Yes Security Only 4056894 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056894 4054518 10051 Yes Monthly Rollup 4056897 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056897 10051 Yes Security Only 4056894 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056894 4054518 10049 Yes Monthly Rollup 4056897 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056897 10049 Yes Security Only 4056896 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056896 4054520 10378 Yes Monthly Rollup 4056899 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056899 10378 Yes Security Only 4056896 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056896 4054520 10379 Yes Monthly Rollup 4056899 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056899 10379 Yes Security Only 4056895 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056895 4054519 10483 Yes Monthly Rollup 4056898 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056898 10483 Yes Security Only 4056895 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056895 4054519 10543 Yes Monthly Rollup 4056898 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056898 10543 Yes Security Only Mateusz Jurczyk of <a href="https://www.google.com">Google Project Zero</a> 3.0 2018-01-18T08:00:00Z <p>On January 5, 2018, Microsoft re-released KB4056898 (Security Only) for Windows 8.1 and Windows Server 2012 R2 to address a known issue. Customers who have installed the original package on 1/3/2018 should reinstall the update.</p> 1.0 2018-01-03T08:00:00Z <p>Information published.</p> 2.0 2018-01-05T08:00:00Z <p>Revised the Affected Products table to add Monthly Rollup updates for Windows 7, Windows Server 2008 R2, and Windows Server 2012. Customers who install Monthly Rollups should install these updates to be protected from this vulnerability.</p> 4.0 2018-01-22T08:00:00Z <p>Revised the Affected Products table to add Monthly Rollup updates for supported editions of Windows 8.1 and Windows Server 2012 R2. Customers who install Monthly Rollups should install these updates to be protected from this vulnerability.</p> Microsoft Office Remote Code Execution Vulnerability <p>A remote code execution vulnerability exists in Microsoft Office software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on with administrative user rights, an attacker could take control of the affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.</p> <p>Exploitation of the vulnerability requires that a user open a specially crafted file with an affected version of Microsoft Office. In an email attack scenario, an attacker could exploit the vulnerability by sending the specially crafted file to the user and convincing the user to open the file. In a web-based attack scenario, an attacker could host a website (or leverage a compromised website that accepts or hosts user-provided content) containing a specially crafted file designed to exploit the vulnerability. An attacker would have no way to force users to visit the website. Instead, an attacker would have to convince users to click a link, typically by way of an enticement in an email or instant message, and then convince them to open the specially crafted file.</p> <p>The security update addresses the vulnerability by correcting how Microsoft Office handles objects in memory.</p> Microsoft Office CVE-2018-0795 10753 10754 10905 10906 10521 10522 10603 10601 10602 Remote Code Execution 10753 Remote Code Execution 10754 Remote Code Execution 10905 Remote Code Execution 10906 Remote Code Execution 10521 Remote Code Execution 10522 Remote Code Execution 10603 Remote Code Execution 10601 Remote Code Execution 10602 Important 10753 Important 10754 Important 10905 Important 10906 Important 10521 Important 10522 Important 10603 Important 10601 Important 10602 Publicly Disclosed:No;Exploited:No 4011632 https://www.microsoft.com/downloads/details.aspx?familyid=bf350635-110b-45b7-b3f2-8d8a08049cd3 3191944 10753 Maybe Security Update 4011632 https://www.microsoft.com/downloads/details.aspx?familyid=3b29bb5d-03aa-434d-8fc9-3df444d27f7e 3191944 10754 Maybe Security Update Click to Run 10905 Maybe Security Update Click to Run 10906 No Security Update 4011611 https://www.microsoft.com/downloads/details.aspx?familyid=7369b56d-5149-4c74-9374-ea9a9d9da47a 4011055 10521 Maybe Security Update 4011611 https://www.microsoft.com/downloads/details.aspx?familyid=533bc56e-2bf3-4fb2-85e1-f28f16ca14e8 4011055 10522 Maybe Security Update 4011636 10603 Maybe Security Update 4011636 https://www.microsoft.com/downloads/details.aspx?familyid=5e41dae0-c4db-4fd3-a5ed-a5e5c176d162 4011103 10601 Maybe Security Update 4011636 https://www.microsoft.com/downloads/details.aspx?familyid=755edfae-e26e-4286-ad08-6241abfec2a8 4011103 10602 Maybe Security Update Ben Faull of Microsoft Office Security 1.0 2018-01-09T08:00:00Z <p>Information published.</p> Microsoft Office Memory Corruption Vulnerability <p>An Office RTF remote code execution vulnerability exists in Microsoft Office software when the Office software fails to properly handle RTF files. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on with administrative user rights, an attacker could take control of the affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.</p> <p>Exploitation of the vulnerability requires that a user open a specially crafted file with an affected version of Microsoft Office software. In an email attack scenario, an attacker could exploit the vulnerability by sending the specially crafted file to the user and convincing the user to open the file. In a web-based attack scenario, an attacker could host a website (or leverage a compromised website that accepts or hosts user-provided content) that contains a specially crafted file designed to exploit the vulnerability. An attacker would have no way to force users to visit the website. Instead, an attacker would have to convince users to click a link, typically by way of an enticement in an email or instant message, and then convince them to open the specially crafted file.</p> <p>The security update addresses the vulnerability by changing the way Microsoft Office software handles RTF content.</p> <p><strong>I have Microsoft Word 2010 installed. Why am I not being offered the 4011658 update?</strong> The 4011658 update only applies to systems running specific configurations of Microsoft Office 2010. Some configurations will not be offered the update.</p> <p><strong>I am being offered this update for software that is not specifically indicated as being affected in the Affected Software and Vulnerability Severity Ratings table. Why am I being offered this update?</strong> When updates address vulnerable code that exists in a component that is shared between multiple Microsoft Office products or shared between multiple versions of the same Microsoft Office product, the update is considered to be applicable to all supported products and versions that contain the vulnerable component.</p> <p>For example, when an update applies to Microsoft Office 2007 products, only Microsoft Office 2007 may be specifically listed in the Affected Software table. However, the update could apply to Microsoft Word 2007, Microsoft Excel 2007, Microsoft Visio 2007, Microsoft Compatibility Pack, Microsoft Excel Viewer, or any other Microsoft Office 2007 product that is not specifically listed in the Affected Software table. Furthermore, when an update applies to Microsoft Office 2010 products, only Microsoft Office 2010 may be specifically listed in the Affected Software table. However, the update could apply to Microsoft Word 2010, Microsoft Excel 2010, Microsoft Visio 2010, Microsoft Visio Viewer, or any other Microsoft Office 2010 product that is not specifically listed in the Affected Software table.</p> <p>For more information on this behavior and recommended actions, see <a href="https://support.microsoft.com/kb/830335">Microsoft Knowledge Base Article 830335</a>. For a list of Microsoft Office products that an update may apply to, refer to the Microsoft Knowledge Base Article associated with the specific update.</p> <p><strong>Why is there a separate update for Word Viewer</strong> The Word Viewer update (4011641) is only supported, and will only install from Microsoft Update, if it’s on Windows Embedded POSReady 2009. This is because Word Viewer ships pre-installed in Windows Embedded POSReady 2009, which is still in support. For other platforms, Word Viewer is no longer supported.</p> Microsoft Office CVE-2018-0797 10950 10748 10746 10747 10734 10521 10522 4497 10525 10611 1160 10162 10513 10514 10606 10604 10605 11099 10495 Remote Code Execution 10950 Remote Code Execution 10748 Remote Code Execution 10746 Remote Code Execution 10747 Remote Code Execution 10734 Remote Code Execution 10521 Remote Code Execution 10522 Remote Code Execution 4497 Remote Code Execution 10525 Remote Code Execution 10611 Remote Code Execution 1160 Remote Code Execution 10162 Remote Code Execution 10513 Remote Code Execution 10514 Remote Code Execution 10606 Remote Code Execution 10604 Remote Code Execution 10605 Remote Code Execution 11099 Remote Code Execution 10495 Critical 10950 Critical 10748 Critical 10746 Critical 10747 Important 10734 Critical 10521 Critical 10522 Critical 4497 Critical 10525 Critical 10611 Critical 1160 Critical 10162 Critical 10513 Critical 10514 Critical 10606 Critical 10604 Critical 10605 Critical 11099 Critical 10495 Publicly Disclosed:No;Exploited:No;Latest Software Release:Exploitation Less Likely;Older Software Release:Exploitation Less Likely 4011642 https://www.microsoft.com/downloads/details.aspx?familyid=8aead024-423a-453e-b444-34b08aa6a255 4011576 10950 Maybe Security Update 4011022 https://www.microsoft.com/downloads/details.aspx?familyid=ec6462a7-5165-4610-90c4-9c846f90fa02 4011021 10748 Maybe Security Update 4011643 https://www.microsoft.com/downloads/details.aspx?familyid=919fcd04-b72d-4dc5-9afa-a6fa30125e3f 4011575 10746 Maybe Security Update 4011643 https://www.microsoft.com/downloads/details.aspx?familyid=4cc2a1b6-6b5d-47b4-a463-81081dfc41c1 4011575 10747 Maybe Security Update Release Notes https://go.microsoft.com/fwlink/p/?linkid=831049 10734 No Security Update 4011658 https://www.microsoft.com/downloads/details.aspx?familyid=1b55fa1c-27a9-48f7-bfa9-a3945dc5f828 4011612 10521 Maybe Security Update 4011658 https://www.microsoft.com/downloads/details.aspx?familyid=11048fae-2735-48c9-9fbe-e10f29f5af89 4011612 10522 Maybe Security Update 4011607 https://www.microsoft.com/downloads/details.aspx?familyid=8a1593a2-62b7-4ac3-9c5c-e64e70edf7e5 4011265 4497 Maybe Security Update 4011615 https://www.microsoft.com/downloads/details.aspx?familyid=dc92915d-44c3-4d07-8420-fef804187c44 4011271 10525 Maybe Security Update 4011648 https://www.microsoft.com/downloads/details.aspx?familyid=d32b1a34-9889-4777-8c69-8fa6f5d7c6dd 4011247 10611 Maybe Security Update 4011641 https://www.microsoft.com/downloads/details.aspx?familyid=2990f739-dbc8-4f74-a50f-17139ea2b024 1160 Maybe Security Update 4011657 https://www.microsoft.com/downloads/details.aspx?familyid=7e67f7a4-7838-4019-a894-939d8b7e0b7b 4011608 10162 Maybe Security Update 4011659 https://www.microsoft.com/downloads/details.aspx?familyid=2a266bf5-20d3-4a81-a447-3ba52cf10c0d 4011614 10513 Maybe Security Update 4011659 https://www.microsoft.com/downloads/details.aspx?familyid=7c7e1022-7a6e-44aa-8cae-5069a6d4aa76 4011614 10514 Maybe Security Update 4011651 10606 Maybe Security Update 4011651 https://www.microsoft.com/downloads/details.aspx?familyid=95bc77f3-0845-4af2-84cf-436070a6e8a1 4011590 10604 Maybe Security Update 4011651 https://www.microsoft.com/downloads/details.aspx?familyid=3e5b5dc2-cff0-48ae-9955-b1e0abc7e57c 4011590 10605 Maybe Security Update 4011579 https://www.microsoft.com/downloads/details.aspx?familyid=cc7321fc-bc75-47d7-9c8b-329d74961b2a 4011245 11099 Maybe Security Update 4011609 https://www.microsoft.com/downloads/details.aspx?familyid=651ad757-2a35-4e97-8baa-5d5c736efc86 4011267 10495 Maybe Security Update Wayne Low of Fortinet’s <a href="https://fortiguard.com/">FortiGuard Lab</a> 1.1 2018-01-10T08:00:00Z <p>The update for Microsoft Office 2016 for Mac will be available on 1/16/2018. Customers running affected Mac software should install the update at that time to be protected from this vulnerability. Customers running other Microsoft Office software do not need to take any action. See the <a href="https://go.microsoft.com/fwlink/p/?linkid=831049">Release Notes</a> for more information.</p> 2.0 2018-01-18T08:00:00Z <p>To address a known issue with installing security update 4011021, Microsoft is announcing the availability of security update 4011022 as a replacement. Customers who experienced problems installing 4011021 should install 4011022.</p> 3.0 2018-01-18T08:00:00Z <p>Microsoft is announcing the availability of the 16.9.18011602 update for Microsoft Office 2016 for Mac. Customers running affected Mac software should install the update for their product to be protected from this vulnerability. Customers running other Microsoft Office software do not need to take any action. See the <a href="https://go.microsoft.com/fwlink/p/?linkid=831049">Release Notes</a> for more information and download links.</p> 1.0 2018-01-09T08:00:00Z <p>Information published.</p> 1.2 2018-01-17T08:00:00Z <p>Microsoft is working to provide an update for Microsoft Office 2016 for Mac as soon as possible. Customers running affected Mac software are encouraged to install the update when it is released to be protected from this vulnerability. Customers running other Microsoft Office software do not need to take any action.</p> Microsoft Access Tampering Vulnerability <p>A cross-site-scripting (XSS) vulnerability exists when Microsoft Access does not properly sanitize inputs to image fields edited within Design view. An attacker could exploit the vulnerability by sending a specially crafted file to a victim, or by hosting the file on a web server.</p> <p>The attacker who successfully exploited the vulnerability could then run javascript in the security context of the current user. The attacks could allow the attacker to read content that the attacker is not authorized to read, use the victim's identity to take actions on a remote site on behalf of the user, and inject malicious content in the browser of the user.</p> <p>The security update addresses the vulnerability by helping to ensure that Microsoft Access properly sanitizes image field values.</p> Microsoft Office CVE-2018-0799 10950 11099 Tampering 10950 Tampering 11099 Important 10950 Important 11099 Publicly Disclosed:No;Exploited:No;Latest Software Release:Exploitation Unlikely;Older Software Release:Exploitation Unlikely 4011642 https://www.microsoft.com/downloads/details.aspx?familyid=8aead024-423a-453e-b444-34b08aa6a255 4011576 10950 Maybe Security Update 4011599 https://www.microsoft.com/downloads/details.aspx?familyid=8ea9e019-5047-4b2c-96d7-eab1dce8a293 3178633 11099 Maybe Security Update Adrian Ivascu 1.0 2018-01-09T08:00:00Z <p>Information published.</p> Microsoft Office Memory Corruption Vulnerability <p>A remote code execution vulnerability exists in Microsoft Office software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on with administrative user rights, an attacker could take control of the affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.</p> <p>Exploitation of the vulnerability requires that a user open a specially crafted file with an affected version of Microsoft Office or Microsoft WordPad software. In an email attack scenario, an attacker could exploit the vulnerability by sending the specially crafted file to the user and convincing the user to open the file. In a web-based attack scenario, an attacker could host a website (or leverage a compromised website that accepts or hosts user-provided content) containing a specially crafted file designed to exploit the vulnerability. An attacker would have no way to force users to visit the website. Instead, an attacker would have to convince users to click a link, typically by way of an enticement in an email or instant message, and then convince them to open the specially crafted file.</p> <p>The security update addresses the vulnerability by removing Equation Editor functionality. For more information on this change, please refer to the following article: <a href="https://support.microsoft.com/en-us/help/4057882">https://support.microsoft.com/en-us/help/4057882</a></p> Microsoft Office CVE-2018-0802 10753 10754 10746 10747 10905 10906 10150 10521 10522 10601 10602 4497 10162 10513 10514 10606 10604 10605 Remote Code Execution 10753 Remote Code Execution 10754 Remote Code Execution 10746 Remote Code Execution 10747 Remote Code Execution 10905 Remote Code Execution 10906 Remote Code Execution 10150 Remote Code Execution 10521 Remote Code Execution 10522 Remote Code Execution 10601 Remote Code Execution 10602 Remote Code Execution 4497 Remote Code Execution 10162 Remote Code Execution 10513 Remote Code Execution 10514 Remote Code Execution 10606 Remote Code Execution 10604 Remote Code Execution 10605 Important 10753 Important 10754 Important 10746 Important 10747 Important 10905 Important 10906 Important 10150 Important 10521 Important 10522 Important 10601 Important 10602 Important 4497 Important 10162 Important 10513 Important 10514 Important 10606 Important 10604 Important 10605 Publicly Disclosed:No;Exploited:Yes;Latest Software Release:Exploitation Detected;Older Software Release:Exploitation Detected 4011574 https://www.microsoft.com/downloads/details.aspx?familyid=b0a99a51-599c-4b33-aa49-ceb75f4520f7 4011262 10753 Maybe Security Update 4011574 https://www.microsoft.com/downloads/details.aspx?familyid=163108fd-18ee-4610-b0cf-bc722f9655e1 4011262 10754 Maybe Security Update 4011643 https://www.microsoft.com/downloads/details.aspx?familyid=919fcd04-b72d-4dc5-9afa-a6fa30125e3f 4011575 10746 Maybe Security Update 4011643 https://www.microsoft.com/downloads/details.aspx?familyid=4cc2a1b6-6b5d-47b4-a463-81081dfc41c1 4011575 10747 Maybe Security Update Click to Run 10905 Maybe Security Update Click to Run 10906 No Security Update 4011656 https://www.microsoft.com/downloads/details.aspx?familyid=456bea44-8229-4bb0-bf67-321ac6b4a2e5 4011604 10150 Maybe Security Update 4011610 https://www.microsoft.com/downloads/details.aspx?familyid=982129f7-f445-4b72-89b5-751ac9896f6a 4011618 10521 Maybe Security Update 4011610 https://www.microsoft.com/downloads/details.aspx?familyid=47b29c72-b2a6-4b9b-a1d0-9dbbde948540 4011618 10522 Maybe Security Update 4011580 https://www.microsoft.com/downloads/details.aspx?familyid=65ccd6a9-246e-47ad-b059-c596ba50aa59 3162047 10601 Maybe Security Update 4011580 https://www.microsoft.com/downloads/details.aspx?familyid=13eebd26-08aa-4ea0-8926-cf32bf561cc7 3162047 10602 Maybe Security Update 4011607 https://www.microsoft.com/downloads/details.aspx?familyid=8a1593a2-62b7-4ac3-9c5c-e64e70edf7e5 4011265 4497 Maybe Security Update 4011657 https://www.microsoft.com/downloads/details.aspx?familyid=7e67f7a4-7838-4019-a894-939d8b7e0b7b 4011608 10162 Maybe Security Update 4011659 https://www.microsoft.com/downloads/details.aspx?familyid=2a266bf5-20d3-4a81-a447-3ba52cf10c0d 4011614 10513 Maybe Security Update 4011659 https://www.microsoft.com/downloads/details.aspx?familyid=7c7e1022-7a6e-44aa-8cae-5069a6d4aa76 4011614 10514 Maybe Security Update 4011580 3162047 10606 Maybe Security Update 4011580 https://www.microsoft.com/downloads/details.aspx?familyid=65ccd6a9-246e-47ad-b059-c596ba50aa59 3162047 10604 Maybe Security Update 4011580 https://www.microsoft.com/downloads/details.aspx?familyid=13eebd26-08aa-4ea0-8926-cf32bf561cc7 3162047 10605 Maybe Security Update Liang Yin of <a href="http://guanjia.qq.com/">Tencent PC Manager</a> Zhiyuan Zheng Yuki Chen of <a href="http://www.360.com/">Qihoo 360 Vulcan Team</a> Yang Kang, Ding Maoyin and Song Shenlei, and Jinquan of <a href="https://www.360.cn/">Qihoo 360 Core Security</a> (<a href="https://www.twitter.com/@360CoreSec">@360CoreSec</a>) Luka Treiber of <a href="https://0patch.com">0patch Team - ACROS Security</a> <a href="https://weibo.com/2247633831">zhouat</a> of <a href="https://www.360.com">Qihoo 360 Vulcan Team</a> <a href="https://twitter.com/bee13oy">bee13oy</a> of <a href="https://www.360.com/">Qihoo 360 Vulcan Team</a> Netanel Ben Simon and Omer Gull of Check Point Software Technologies 1.0 2018-01-09T08:00:00Z <p>Information published.</p> 1.1 2018-01-12T08:00:00Z <p>In the Exploitability Assessment table, corrected the exploitability index for both latest and older software releases. This is an informational change only.</p> Microsoft Office Memory Corruption Vulnerability <p>A remote code execution vulnerability exists in Microsoft Office software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on with administrative user rights, an attacker could take control of the affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.</p> <p>Exploitation of the vulnerability requires that a user open a specially crafted file with an affected version of Microsoft Office or Microsoft WordPad software. In an email attack scenario, an attacker could exploit the vulnerability by sending the specially crafted file to the user and convincing the user to open the file. In a web-based attack scenario, an attacker could host a website (or leverage a compromised website that accepts or hosts user-provided content) containing a specially crafted file designed to exploit the vulnerability. An attacker would have no way to force users to visit the website. Instead, an attacker would have to convince users to click a link, typically by way of an enticement in an email or instant message, and then convince them to open the specially crafted file.</p> <p>The security update addresses the vulnerability by removing Equation Editor functionality. For more information on this change, please refer to the following article: <a href="https://support.microsoft.com/en-us/help/4057882">https://support.microsoft.com/en-us/help/4057882</a></p> Microsoft Office CVE-2018-0801 10753 10754 10746 10747 10905 10906 10150 10521 10522 10601 10602 4497 10162 10513 10514 10606 10604 10605 Remote Code Execution 10753 Remote Code Execution 10754 Remote Code Execution 10746 Remote Code Execution 10747 Remote Code Execution 10905 Remote Code Execution 10906 Remote Code Execution 10150 Remote Code Execution 10521 Remote Code Execution 10522 Remote Code Execution 10601 Remote Code Execution 10602 Remote Code Execution 4497 Remote Code Execution 10162 Remote Code Execution 10513 Remote Code Execution 10514 Remote Code Execution 10606 Remote Code Execution 10604 Remote Code Execution 10605 Important 10753 Important 10754 Important 10746 Important 10747 Important 10905 Important 10906 Important 10150 Important 10521 Important 10522 Important 10601 Important 10602 Important 4497 Important 10162 Important 10513 Important 10514 Important 10606 Important 10604 Important 10605 Publicly Disclosed:No;Exploited:No;Latest Software Release:Exploitation Unlikely;Older Software Release:Exploitation Unlikely 4011574 https://www.microsoft.com/downloads/details.aspx?familyid=b0a99a51-599c-4b33-aa49-ceb75f4520f7 4011262 10753 Maybe Security Update 4011574 https://www.microsoft.com/downloads/details.aspx?familyid=163108fd-18ee-4610-b0cf-bc722f9655e1 4011262 10754 Maybe Security Update 4011643 https://www.microsoft.com/downloads/details.aspx?familyid=919fcd04-b72d-4dc5-9afa-a6fa30125e3f 4011575 10746 Maybe Security Update 4011643 https://www.microsoft.com/downloads/details.aspx?familyid=4cc2a1b6-6b5d-47b4-a463-81081dfc41c1 4011575 10747 Maybe Security Update Click to Run 10905 Maybe Security Update Click to Run 10906 No Security Update 4011656 https://www.microsoft.com/downloads/details.aspx?familyid=456bea44-8229-4bb0-bf67-321ac6b4a2e5 4011604 10150 Maybe Security Update 4011610 https://www.microsoft.com/downloads/details.aspx?familyid=982129f7-f445-4b72-89b5-751ac9896f6a 4011618 10521 Maybe Security Update 4011610 https://www.microsoft.com/downloads/details.aspx?familyid=47b29c72-b2a6-4b9b-a1d0-9dbbde948540 4011618 10522 Maybe Security Update 4011580 https://www.microsoft.com/downloads/details.aspx?familyid=65ccd6a9-246e-47ad-b059-c596ba50aa59 3162047 10601 Maybe Security Update 4011580 https://www.microsoft.com/downloads/details.aspx?familyid=13eebd26-08aa-4ea0-8926-cf32bf561cc7 3162047 10602 Maybe Security Update 4011607 https://www.microsoft.com/downloads/details.aspx?familyid=8a1593a2-62b7-4ac3-9c5c-e64e70edf7e5 4011265 4497 Maybe Security Update 4011657 https://www.microsoft.com/downloads/details.aspx?familyid=7e67f7a4-7838-4019-a894-939d8b7e0b7b 4011608 10162 Maybe Security Update 4011659 https://www.microsoft.com/downloads/details.aspx?familyid=2a266bf5-20d3-4a81-a447-3ba52cf10c0d 4011614 10513 Maybe Security Update 4011659 https://www.microsoft.com/downloads/details.aspx?familyid=7c7e1022-7a6e-44aa-8cae-5069a6d4aa76 4011614 10514 Maybe Security Update 4011580 3162047 10606 Maybe Security Update 4011580 https://www.microsoft.com/downloads/details.aspx?familyid=65ccd6a9-246e-47ad-b059-c596ba50aa59 3162047 10604 Maybe Security Update 4011580 https://www.microsoft.com/downloads/details.aspx?familyid=13eebd26-08aa-4ea0-8926-cf32bf561cc7 3162047 10605 Maybe Security Update Steven Hunter of MSRC Vulnerabilities & Mitigations Yuki Chen of <a href="http://www.360.com/">Qihoo 360 Vulcan Team</a> 1.0 2018-01-09T08:00:00Z <p>Information published.</p> Microsoft Edge Elevation of Privilege Vulnerability <p>An elevation of privilege vulnerability exists when Microsoft Edge does not properly enforce cross-domain policies, which could allow an attacker to access information from one domain and inject it into another domain.</p> <p>In a web-based attack scenario, an attacker could host a website that is used to attempt to exploit the vulnerability. In addition, compromised websites and websites that accept or host user-provided content could contain specially crafted content that could exploit the vulnerability. However, in all cases an attacker would have no way to force users to view the attacker-controlled content. Instead, an attacker would have to convince users to take action. For example, an attacker could trick users into clicking a link that takes them to the attacker's site. An attacker who successfully exploited this vulnerability could elevate privileges in affected versions of Microsoft Edge.</p> <p>The security update addresses the vulnerability by helping to ensure that cross-domain policies are properly enforced in Microsoft Edge.</p> Microsoft Edge CVE-2018-0803 10724-10951 10724-10952 10724-10729 10724-10735 10724-10789 10724-10788 10724-10852 10724-10853 10724-10816 10724-11453 10724-11454 Elevation of Privilege 10724-10951 Elevation of Privilege 10724-10952 Elevation of Privilege 10724-10729 Elevation of Privilege 10724-10735 Elevation of Privilege 10724-10789 Elevation of Privilege 10724-10788 Elevation of Privilege 10724-10852 Elevation of Privilege 10724-10853 Elevation of Privilege 10724-10816 Elevation of Privilege 10724-11453 Elevation of Privilege 10724-11454 Important 10724-10951 Important 10724-10952 Important 10724-10729 Important 10724-10735 Important 10724-10789 Important 10724-10788 Important 10724-10852 Important 10724-10853 Low 10724-10816 Important 10724-11453 Important 10724-11454 Publicly Disclosed:No;Exploited:No;Latest Software Release:Exploitation Unlikely;Older Software Release:Exploitation Unlikely 3.1 2.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N/E:P/RL:O/RC:C 10724-10951 3.1 2.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N/E:P/RL:O/RC:C 10724-10952 3.1 2.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N/E:P/RL:O/RC:C 10724-10729 3.1 2.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N/E:P/RL:O/RC:C 10724-10735 3.1 2.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N/E:P/RL:O/RC:C 10724-10789 3.1 2.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N/E:P/RL:O/RC:C 10724-10788 3.1 2.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N/E:P/RL:O/RC:C 10724-10852 3.1 2.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N/E:P/RL:O/RC:C 10724-10853 3.1 2.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N/E:P/RL:O/RC:C 10724-10816 3.1 2.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N/E:P/RL:O/RC:C 10724-11453 3.1 2.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N/E:P/RL:O/RC:C 10724-11454 4056891 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056891 4053580 10724-10951 Yes Security Update 4056891 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056891 4053580 10724-10952 Yes Security Update 4056893 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056893 4053581 10724-10729 Yes Security Update 4056893 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056893 4053581 10724-10735 Yes Security Update 4056888 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056888 4053578 10724-10789 Yes Security Update 4056888 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056888 4053578 10724-10788 Yes Security Update 4056890 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056890 4053579 10724-10852 Yes Security Update 4056890 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056890 4053579 10724-10853 Yes Security Update 4056890 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056890 4053579 10724-10816 Yes Security Update 4056892 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056892 4054517 10724-11453 Yes Security Update 4056892 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056892 4054517 10724-11454 Yes Security Update Joshua Graham with <a href="https://dtss.com.au/">TSS</a> 1.0 2018-01-03T08:00:00Z <p>Information published.</p> Chakra Scripting Engine Memory Corruption Vulnerability <p>A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge (HTML-based). The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user. An attacker who successfully exploited the vulnerability could gain the same user rights as the current user. If the current user is logged on with administrative user rights, an attacker who successfully exploited the vulnerability could take control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.</p> <p>In a web-based attack scenario, an attacker could host a specially crafted website that is designed to exploit the vulnerability through Microsoft Edge (HTML-based) and then convince a user to view the website. The attacker could also take advantage of compromised websites and websites that accept or host user-provided content or advertisements. These websites could contain specially crafted content that could exploit the vulnerability.</p> <p>The security update addresses the vulnerability by modifying how the Chakra scripting engine handles objects in memory.</p> Microsoft Scripting Engine CVE-2018-0800 11447 10724-11453 10724-11454 Information Disclosure 11447 Information Disclosure 10724-11453 Information Disclosure 10724-11454 Critical 11447 Critical 10724-11453 Critical 10724-11454 Publicly Disclosed:No;Exploited:No;Latest Software Release:Exploitation Less Likely;Older Software Release:Exploitation Less Likely 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 11447 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-11453 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-11454 Commit https://github.com/Microsoft/ChakraCore/releases/tag/v1.7.6 11447 Yes Security Update 4056892 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056892 4054517 10724-11453 Yes Security Update 4056892 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056892 4054517 10724-11454 Yes Security Update <a href="https://twitter.com/spoofyroot">Johnathan Norman</a> of Windows Devices Group – Operating System Security Team 1.0 2018-01-03T08:00:00Z <p>Information published.</p> 2.0 2018-01-05T08:00:00Z <p>Revised the Affected Products table to include ChakraCore for this vulnerability.</p> Guidance to mitigate speculative execution side-channel vulnerabilities <p><strong>NOTE</strong> This advisory was revised on July 10, 2018. Some content has been removed for simplicity and because it is no longer relevant. You can view the archived content for ADV180002 in the FAQ section following the Affected Products table.</p> <h1>Executive Summary</h1> <p>Microsoft is aware of a new publicly disclosed class of vulnerabilities referred to as “speculative execution side-channel attacks” that affect many modern processors and operating systems including Intel, AMD, and ARM. Note: this issue will affect other systems such as Android, Chrome, iOS, MacOS, so we advise customers to seek out guidance from those vendors.</p> <p>An attacker who successfully exploited these vulnerabilities may be able to read privileged data across trust boundaries. In shared resource environments (such as exists in some cloud services configurations), these vulnerabilities could allow one virtual machine to improperly access information from another. In non-browsing scenarios on standalone systems, an attacker would need prior access to the system or an ability to run code on the system to leverage these vulnerabilities.</p> <p>Microsoft has released updates to help mitigate these vulnerabilities. To get all available protections, firmware (microcode) and software updates are required. This may include microcode from device OEMs and in some cases updates to AV software as well. In some cases, installing these updates will have a performance impact. We have also taken action to secure our cloud services.</p> <p>Microsoft has no information to indicate that these vulnerabilities have been used to attack customers at this time. Microsoft continues working closely with industry partners including chip makers, hardware OEMs, and app vendors to protect customers.</p> <p>This advisory addresses the following vulnerabilities:</p> <ul> <li>CVE-2017-5753 - Bounds check bypass</li> <li>CVE-2017-5715 - Branch target injection</li> <li>CVE-2017-5754 - Rogue data cache load</li> </ul> <h1>Recommended Actions</h1> <ol> <li>The best protection is to keep computers up to date. Please see <a href="https://support.microsoft.com/en-us/help/4073757/protect-your-windows-devices-against-spectre-meltdown">Knowledge Base Article 4073757</a> for guidance on protecting Windows devices. Customers using Surface products should see <a href="https://support.microsoft.com/en-us/help/4073065/surface-surface-hub-update-history">Microsoft Knowledge Base Article 4073065</a>.</li> <li>Enterprise customers are recommended to review this advisory in detail and register for the security notifications mailer to be alerted of content changes to this advisory. See <a href="https://technet.microsoft.com/en-us/security/dd252948">Microsoft Technical Security Notifications</a>.</li> <li>Software developers should review the C++ developer guidance for speculative execution side channels at <a href="https://aka.ms/sescdevguide">https://aka.ms/sescdevguide</a>.</li> <li>Verify the status of protections for CVE-2017-5715 and CVE-2017-5754 using the PowerShell script Get-SpeculationControlSettings. For more information and to obtain the PowerShell script see: <a href="https://support.microsoft.com/en-us/help/4074629/understanding-the-output-of-get-speculationcontrolsettings-powershell">Understanding Get-SpeculationControlSettings PowerShell script output</a>.</li> </ol> <h2>Potential performance impacts</h2> <p>In testing Microsoft has seen some performance impact with these mitigations. For most consumer devices, the impact may not be noticeable; however, the specific impact varies by hardware generation and implementation by the chip manufacturer. Microsoft values the security of its software and services and has made the decision to implement certain mitigation strategies in an effort to better secure our products. In some cases, mitigations are not enabled by default to allow users and administrators to evaluate the performance impact and risk exposure before deciding to enable the mitigations. We continue to work with hardware vendors to improve performance while maintaining a high level of security.</p> <h1>Advisory Details</h1> <h2>Vulnerabilities Description</h2> <p>Speculative execution side-channel vulnerabilities can be used to read the content of memory across a trusted boundary and can therefore lead to information disclosure. There are multiple vectors by which an attacker could trigger the vulnerabilities depending on the configured environment. For a detailed view of affected scenarios and Microsoft’s approach to mitigating this new class of vulnerabilities, please see our <a href="https://blogs.technet.microsoft.com/srd/2018/03/15/mitigating-speculative-execution-side-channel-hardware-vulnerabilities/">Security Research Blog</a>.</p> <p>The following table summarizes the CVEs, names, and affected processors for each of these vulnerabilities:</p> <table> <thead> <tr> <th>CVE</th> <th>Public Vulnerability Name</th> <th>Other Names</th> <th>Processors Affected</th> </tr> </thead> <tbody> <tr> <td>CVE-2017-5753</td> <td>Bounds check bypass</td> <td>Spectre, Variant 1</td> <td>AMD, ARM, Intel</td> </tr> <tr> <td>CVE-2017-5715</td> <td>Branch target injection</td> <td>Spectre, Variant 2</td> <td>AMD, ARM, Intel</td> </tr> <tr> <td>CVE-2017-5754</td> <td>Rogue data cache load</td> <td>Meltdown, Variant 3</td> <td>ARM, Intel</td> </tr> </tbody> </table> <p>The first two variants, Bounds check bypass (CVE-2017-5753) and Branch target injection (CVE-2017-5715) are collectively known as Spectre. An attacker who has successfully exploited these vulnerabilities may be able to read privileged data across trust boundaries. In shared resource environments (such as exists in some cloud services configurations), these vulnerabilities could allow one virtual machine to improperly access information from another. In non-browsing scenarios on standalone systems, an attacker would need prior access to the system or an ability to run untrusted code on the system to leverage these vulnerabilities. In browsing scenarios, an attacker could convince a user to visit a malicious site to leverage these vulnerabilities to privileged information from the browser process such as sensitive data from other opened tabs. An attacker could also inject malicious code into advertising networks used by trusted sites or embed malicious code on a compromised, but trusted, site. Bounds check bypass store is an extension of Bounds check bypass.</p> <p>The third variant, Rogue data cache load (CVE-2017-5754) is known as Meltdown. An attacker who has successfully exploited this vulnerability may be able to read privileged memory from an unprivileged context. The following table summarizes the relevance of these variants to the attack scenarios and trust boundaries. Each attack scenario is described in terms of the direction that information flows when performing a speculative execution side channel attack. The entries for each CVE indicate whether the speculation primitive is applicable to the corresponding attack scenario.</p> <table> <thead> <tr> <th>Attack Category</th> <th>Attack Scenario</th> <th>CVE-2017-5753</th> <th>CVE-2017-5715</th> <th>CVE-2017-5754</th> </tr> </thead> <tbody> <tr> <td>Inter-VM</td> <td>Hypervisor-to-guest</td> <td>Applicable</td> <td>Applicable</td> <td>Not applicable</td> </tr> <tr> <td></td> <td>Host-to-guest</td> <td>Applicable</td> <td>Applicable</td> <td>Not applicable</td> </tr> <tr> <td></td> <td>Guest-to-guest</td> <td>Applicable</td> <td>Applicable</td> <td>Not applicable</td> </tr> <tr> <td>Intra-OS</td> <td>Kernel-to-user</td> <td>Applicable</td> <td>Applicable</td> <td>Applicable</td> </tr> <tr> <td></td> <td>Process-to-process</td> <td>Applicable</td> <td>Applicable</td> <td>Not applicable</td> </tr> <tr> <td></td> <td>Intra-process</td> <td>Applicable</td> <td>Applicable</td> <td>Not applicable</td> </tr> <tr> <td>Enclave</td> <td>Enclave-to-any</td> <td>Applicable</td> <td>Applicable</td> <td>Not applicable</td> </tr> </tbody> </table> <p>For a detailed view of these scenarios and our approach to mitigating this new class of vulnerabilities, please see our <a href="https://blogs.technet.microsoft.com/srd/2018/03/15/mitigating-speculative-execution-side-channel-hardware-vulnerabilities/">Security Research Blog</a>.</p> <h2>Microsoft Windows client customers</h2> <p>Customers using Windows client operating systems need to apply both firmware (microcode) and software updates. See <a href="https://support.microsoft.com/help/4073119">Microsoft Knowledge Base Article 4073119</a> for additional information. Customers using AMD processors should review FAQ #15 in this advisory for additional action you need to take. Microsoft is making available Intel-validated microcode updates for Windows 10 operating systems. Please see <a href="https://support.microsoft.com/help/4093836">Microsoft Knowledge Base Article 4093836</a> for the current Intel microcode updates.</p> <h2>Microsoft Windows Server customers</h2> <p>Customers using Windows server operating systems listed in the <strong>Affected Products</strong> table need to apply firmware (microcode) and software updates as well as to configure protections. See <a href="https://support.microsoft.com/help/4072698">Microsoft Knowledge Base Article 4072698</a> for additional information, including workarounds.</p> <p>Microsoft Azure has taken steps to address the security vulnerabilities at the hypervisor level to protect Windows Server VMs running in Azure. More information can be found <a href="https://support.microsoft.com/en-us/help/4073235/cloud-protections-speculative-execution-side-channel-vulnerabilities">here</a>.</p> <h2>Microsoft Surface customers</h2> <p>Customers using Microsoft Surface and Surface Book products need to apply both firmware (microcode) and software updates. Most customers have automatic updating enabled and will not need to take any action because this security update will be downloaded and installed automatically. See <a href="https://support.microsoft.com/en-us/help/4073065/surface-surface-hub-update-history">Microsoft Knowledge Base Article 4073065</a> for more information.</p> <h2>Microsoft cloud customers</h2> <p>Microsoft has already deployed mitigations across our cloud services. More information is available <a href="https://support.microsoft.com/help/4073235">here</a>.</p> <h2>Microsoft SQL Server customers</h2> <p>In scenarios running Microsoft SQL Server, customers should follow the guidance outlined in <a href="https://support.microsoft.com/help/4073225">Microsoft Knowledge Base Article 4073225</a>.</p> <h2>Microsoft HoloLens customers</h2> <p>Updates to Windows 10 for HoloLens are available to HoloLens customers through Windows Update.</p> <p>After <a href="https://support.microsoft.com/en-us/help/12643">applying</a> the <a href="https://go.microsoft.com/fwlink/?linkid=866957">February 2018 Windows Security Update</a> HoloLens customers do not need to take any additional action to update their device firmware. These mitigations will also be included in all future releases of Windows 10 for HoloLens.</p> <h2>Updated FAQ</h2> <p>Several of these FAQs have been updated or archived for simplicity. Please refer to the FAQ section following the <strong>Affected Products</strong> table for the archived FAQ content.</p> <p><strong>1. What systems are at risk from these vulnerabilities?</strong></p> <p>These vulnerabilities affect both client and server operating systems. Systems and services configured to allow execution of untrusted code are primarily at risk from these vulnerabilities. Additionally, client systems used in browser scenarios such as workstations or terminal servers are at increased risk of these vulnerabilities.</p> <p><strong>2. What are the associated CVEs for these vulnerabilities?</strong></p> <ul> <li>See <a href="https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2017-5715">CVE-2017-5715</a></li> <li>See <a href="https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2017-5753">CVE-2017-5753</a></li> <li>See <a href="https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2017-5754">CVE-2017-5754</a></li> </ul> <p><strong>3. Have there been any active attacks detected?</strong></p> <p>No. At the time of publication, Microsoft has no information to indicate that these vulnerabilities have been used to attack customers.</p> <p><strong>4. Removed for simplicity (previously the FAQ addressed the date of disclosure).</strong></p> <p><strong>5. I have not been offered the Windows security updates released on January 3, 2018. What should I do?</strong></p> <p>To help avoid adversely affecting customer devices, the Windows security updates released on January 3rd, 2018 were only offered to devices running compatible antivirus software. Please see <a href="https://support.microsoft.com/help/4072699">Microsoft Knowledge Base Article 4072699</a> for more information about how to get the updates.</p> <p><strong>6. Removed for simplicity (previously the FAQ addressed availability of updates for Windows Server 2008 and Windows Server 2012 – see the Affected Products table for the updates)</strong></p> <p><strong>7. Removed for simplicity (previously the FAQ addressed availability of updates for 32-bit versions of Windows (x86) – see the Affected Products table for the updates)</strong></p> <p><strong>8. Removed for simplicity (previously the FAQ addressed the scope of the vulnerabilities – see the Vulnerabilities Description section of this advisory for this information)</strong></p> <p><strong>9. Is my device protected after I’ve applied the Windows security updates?</strong></p> <p>No. Additional action may be required. Please refer to the following table:</p> <table> <thead> <tr> <th>CVE</th> <th>Windows Changes</th> <th>Requires microcode?</th> <th>Requires additional action?</th> </tr> </thead> <tbody> <tr> <td>CVE-2017-5753</td> <td>Compiler change; recompiled binaries now part of Windows Updates, and Edge &amp; IE11 hardened to prevent exploit from JavaScript</td> <td>No</td> <td>No</td> </tr> <tr> <td>CVE-2017-5715</td> <td>Calling new CPU instructions to eliminate branch speculation in risky situations</td> <td>Yes</td> <td>1. Requires update to microcode 2. On Windows Server, the mitigation must be enabled. See <a href="https://support.microsoft.com/help/4072698">KB 4072698</a> for more information. 3. If you are using an AMD processor, please see FAQ #15 for additional action. 4. If you are using an ARM processor, please see FAQ #19 &amp; #20 for additional action.</td> </tr> <tr> <td>CVE-2017-5754</td> <td>Isolate kernel and user mode page tables</td> <td>No</td> <td>1. On Windows Server 2019 the mitigation is enabled by default. 2. On Windows Server 2016 and earlier, the mitigation must be enabled. See <a href="https://support.microsoft.com/help/4072698">KB 4072698</a> for more information.</td> </tr> </tbody> </table> <p><strong>10. Removed for simplicity (previous FAQ addressed availability of updates for some systems using older AMD processors – see The Affected Products table for the updates)</strong></p> <p><strong>11. Removed for simplicity (previous FAQ addressed reboot issues with Intel microcode on some older processors. See <a href="https://support.microsoft.com/en-us/help/4093836/summary-of-intel-microcode-updates">KB 4093836</a> for available microcode updates.</strong></p> <p><strong>12. If I am on the Security Only branch, what Security Only updates do I need to install to be protected from the vulnerabilities described in this advisory?</strong></p> <p>Security Only updates are not cumulative. Depending on the operating system version you are using and the processor on the computer, you may need to install several security updates for full protection. In general, customers will need to install the January, February, March, and April updates. Systems based on AMD processors need an additional update as shown in the following table:</p> <table> <thead> <tr> <th>Operating System version</th> <th>Security Update</th> </tr> </thead> <tbody> <tr> <td>Windows 8.1, Windows Server 2012 R2</td> <td>4338815 - Monthly Rollup</td> </tr> <tr> <td></td> <td>4338824 - Security Only</td> </tr> <tr> <td>Windows 7 SP1, Windows Server 2008 R2 SP1, or Windows Server 2008 R2 SP1 (Server Core installation)</td> <td>4284826 - Monthly Roll-up</td> </tr> <tr> <td></td> <td>4284867 - Security Only</td> </tr> <tr> <td>Windows Server 2008 SP2</td> <td>4340583 - Security Update</td> </tr> </tbody> </table> <p>Microsoft recommends installing these Security Only updates in the order of release.</p> <p><strong>13. If I apply any of the applicable February security updates, will they disable the protections for CVE-2017-5715 like security update 4078130 did?</strong></p> <p>No. Security update 4078130 was a specific fix to prevent unpredictable system behaviors, performance issues, and/or unexpected reboots after installation of microcode. Applying the February security updates on Windows client operating systems enables all three mitigations. On Windows server operating systems, you still need to enable the mitigations after proper testing is performed. See <a href="https://support.microsoft.com/en-us/help/4072698">Microsoft Knowledge Base Article 4072698</a> for more information.</p> <p><strong>14. I understand that Intel has released microcode updates. Where can I find and install these updates for my system?</strong></p> <p>Microsoft is providing Intel microcode updates for Windows operating systems as they become available. Please see <a href="https://support.microsoft.com/help/4093836">Microsoft Knowledge Base Article 4093836</a> for the current Intel microcode updates.</p> <p><strong>15. What are the mitigations for AMD processors for CVE 2017-5715, Branch Target Injection?</strong></p> <p>The following table summarizes the attack scenarios that are protected against when the Windows Branch Target Injection mitigation is enabled and required hardware support is present on AMD CPUs:</p> <table> <thead> <tr> <th>Scenario</th> <th>Mitigation</th> </tr> </thead> <tbody> <tr> <td>Process-to-process scenarios where a malicious user-mode application could use CVE-2017-5715 to disclose the contents of memory used by other applications.</td> <td>Enabled by default</td> </tr> <tr> <td>User-to-kernel scenarios where a malicious user-mode application could use CVE-2017-5715 to disclose the contents of kernel memory.</td> <td>Disabled by default</td> </tr> <tr> <td>Virtualization scenarios where a compromised virtual machine could use CVE-2017-5715 to read the contents of privileged memory allocated to the host, hypervisor, or other guest virtual machine.</td> <td>Enabled by default</td> </tr> </tbody> </table> <p>By default, user-to-kernel protection for CVE-2017-5715 is disabled for AMD CPUs. Customers must enable the mitigation to receive additional protections for CVE-2017-5715. Enabling this mitigation may affect performance. The actual performance impact will depend on multiple factors, such as the specific chipset in your physical host and the workloads that are running. For details on how to enable this protection, see <a href="https://support.microsoft.com/en-us/help/4073119">Microsoft Knowledge Base Article 4073119</a> for Windows Client operating systems.</p> <p>For AMD CPUs that support SMT, further protection against attacks from sibling hardware threads is provided by STIBP enablement or turning off SMT. For additional details and AMD recommended mitigations please see <a href="https://www.amd.com/en/corporate/security-updates">AMD Security Updates</a> and <a href="https://developer.amd.com/wp-content/resources/Architecture_Guidelines_Update_Indirect_Branch_Control.pdf">AMD Architecture Guidelines around Indirect Branch Control</a></p> <p><strong>16. I understand that AMD has released microcode updates. Where can I find and install these updates for my system?</strong></p> <p>AMD <a href="https://www.amd.com/en/corporate/security-updates">recently announced</a> they have started to release microcode for newer CPU platforms around Spectre variant 2 (CVE 2017-5715 Branch Target Injection). For more information refer to the <a href="https://www.amd.com/en/corporate/security-updates">AMD Security Updates</a> and <a href="https://developer.amd.com/wp-content/resources/Architecture_Guidelines_Update_Indirect_Branch_Control.pdf">AMD White Paper: Architecture Guidelines around Indirect Branch Control</a>.</p> <p>Microsoft will inform customers of AMD microcode updates for Windows operating systems as they become available. Please check back to this FAQ for updates.</p> <p><strong>17. I heard that CVE-2018-3693 (Bounds Check Bypass Store) is related to Spectre. Will Microsoft release mitigations for it?</strong></p> <p>Bounds Check Bypass Store (BCBS) was disclosed on July 10, 2018 and assigned CVE-2018-3693. We consider BCBS to belong to the same class of vulnerabilities as Bounds Check Bypass (Variant 1). We are not currently aware of any instances of BCBS in our software, but we are continuing to research this vulnerability class and will work with industry partners to release mitigations as required. We continue to encourage researchers to submit any relevant findings to Microsoft’s <a href="https://technet.microsoft.com/en-us/mt846432.aspx">Speculative Execution Side Channel bounty program</a>, including any exploitable instances of BCBS. Software developers should review the developer guidance that has been updated for BCBS at <a href="https://aka.ms/sescdevguide">https://aka.ms/sescdevguide</a>.</p> <p><strong>18. I have an AMD-based device and I am experiencing high CPU utilization after installing the June or July Windows security updates or after installing a BIOS update for my device. Is this expected?</strong></p> <p>There have been reports of high CPU utilization resulting in performance degradation on some systems with Family 15h &amp; 16h AMD processors after installing June 2018 or July 2018 Windows updates from Microsoft and updated AMD microcode that addresses Spectre Variant 2 (CVE-2017-5715 - Branch Target Injection). AMD and Microsoft have investigated this issue, and Microsoft has released a solution in the August 18, 2018 Windows security updates for the following operating systems:</p> <ul> <li>Windows 10 version 1607</li> <li>Windows 10 version 1709</li> <li>Windows 10 version 1803</li> <li>Windows 7 Service Pack 1</li> <li>Windows Server 2016</li> <li>Windows Server, version 1709 (Server Core Installation)</li> <li>Windows Server, version 1803 (Server Core Installation)</li> <li>Windows Server 2008 R2 Service Pack 1</li> </ul> <p>AMD and Microsoft have investigated this issue, and Microsoft has released a solution in the November 13, 2018 Windows security updates for the following operating systems:</p> <ul> <li>Windows 8.1</li> <li>Windows Server 2008</li> <li>Windows Server 2012</li> <li>Windows Server 2012 R2</li> </ul> <p><strong>Remediation Guidance</strong></p> <p>Customers who wish to remediate the performance impact caused by this issue may wish to consider temporarily disable Spectre Variant 2 mitigations via registry settings for Windows until a solution for this issue is released. When a solution is released for this issue, customers will need to re-enable the registry settings.</p> <p>Customers who disabled Spectre Variant 2 mitigations via registry settings for Windows will need to re-enable the registry settings.</p> <p><strong>Note:</strong> We do <strong>not</strong> recommend that customers uninstall the June or July security updates for Windows because the June and July updates provide numerous other critical security fixes.</p> <p><strong>Changing Registry Settings</strong></p> <p><strong>Important</strong> This section, method, or task contains steps that tell you how to modify the registry. However, serious problems might occur if you modify the registry incorrectly. Therefore, make sure that you follow these steps carefully. For added protection, back up the registry before you modify it. Then, you can restore the registry if a problem occurs. For more information about how to back up and restore the registry, see [Microsoft Knowledge Base article 322756[(https://support.microsoft.com/en-us/help/322756).</p> <p><strong>Note</strong> Enabling or disabling the Spectre Variant 2 mitigation through registry setting changes requires administrative rights and a restart.</p> <p>To disable Spectre Variant 2 mitigations:</p> <pre><code>reg add &quot;HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\Memory Management&quot; /v FeatureSettingsOverride /t REG_DWORD /d 1 /f reg add &quot;HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\Memory Management&quot; /v FeatureSettingsOverrideMask /t REG_DWORD /d 3 /f </code></pre> <p>Restart the computer for the changes to take effect.</p> <p>When the solution is available for your operating system, the registry keys will need to be re-enabled.</p> <p><strong>To enable Spectre Variant 2 mitigations:</strong></p> <pre><code>reg add &quot;HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\Memory Management&quot; /v FeatureSettingsOverride /t REG_DWORD /d 0 /f reg add &quot;HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\Memory Management&quot; /v FeatureSettingsOverrideMask /t REG_DWORD /d 3 /f </code></pre> <p>Restart the computer for the changes to take effect.</p> <p><strong>19. Where can I find and install ARM64 firmware that mitigate CVE-2017-5715 - Branch target injection (Spectre, Variant 2)?</strong></p> <p>Customers using 64-bit ARM processors should check with the device OEM for firmware support because ARM64 operating system protections that mitigate CVE-2017-5715 - Branch target injection (Spectre, Variant 2) require the latest firmware update from device OEMs to take effect.</p> <p><strong>20. What are the mitigations for ARM CPUs for CVE 2017-5715, Branch Target Injection?</strong></p> <p>The following table summarizes the attack scenarios that are protected against when the Windows Branch Target Injection mitigation is enabled and required hardware support is present on ARM CPUs:</p> <table> <thead> <tr> <th>Scenario</th> <th>Mitigation</th> </tr> </thead> <tbody> <tr> <td>Process-to-process scenarios where a malicious user-mode application could use CVE-2017-5715 to disclose the contents of memory used by other applications.</td> <td>Enabled by default</td> </tr> <tr> <td>User-to-kernel scenarios where a malicious user-mode application could use CVE-2017-5715 to disclose the contents of kernel memory.</td> <td>Disabled by default</td> </tr> <tr> <td>Virtualization scenarios where a compromised virtual machine could use CVE-2017-5715 to read the contents of privileged memory allocated to the host, hypervisor, or other guest virtual machine.</td> <td>Enabled by default</td> </tr> </tbody> </table> <p>By default, user-to-kernel protection for CVE-2017-5715 is disabled for ARM CPUs. Customers must enable the mitigation to receive additional protections for CVE-2017-5715. Enabling this mitigation may affect performance. The actual performance impact will depend on multiple factors, such as the specific chipset in your physical host and the workloads that are running. For details on how to enable this protection, see <a href="https://support.microsoft.com/en-us/help/4073119">Microsoft Knowledge Base Article 4073119</a> for Windows Client operating systems.</p> <h1>Additional suggested actions</h1> <ul> <li><p><strong>Protect your PC</strong> We continue to encourage customers to follow our Protect Your Computer guidance of enabling a firewall, getting software updates, and installing antivirus software. For more information, see <a href="https://www.microsoft.com/security/default.aspx">Microsoft Safety &amp; Security Center</a>.</p> </li> <li><p><strong>Keep Microsoft software updated</strong> Users running Microsoft software should apply the latest Microsoft security updates to help make sure that their computers are as protected as possible. If you are not sure whether your software is up to date, visit <a href="http://go.microsoft.com/fwlink/?LinkID=40747">Microsoft Update</a>, scan your computer for available updates, and install any high-priority updates that are offered to you. If you have automatic updating enabled and configured to provide updates for Microsoft products, the updates are delivered to you when they are released, but you should verify that they are installed.</p> </li> </ul> <p><strong>NOTE:</strong> ADV180002 has been revised as of July 10, 2018. The following content is the original, archived version of ADV180002. Please refer to the top of this page for the most recent information concerning the speculative side-channel vulnerabilities discussed in this advisory.</p> <h1>Executive Summary</h1> <p>Microsoft is aware of a new publicly disclosed class of vulnerabilities referred to as “speculative execution side-channel attacks” that affect many modern processors and operating systems including Intel, AMD, and ARM. Note: this issue will affect other systems such as Android, Chrome, iOS, MacOS, so we advise customers to seek out guidance from those vendors.</p> <p>Microsoft has released several updates to help mitigate these vulnerabilities. We have also taken action to secure our cloud services. See below for more details.</p> <p>Microsoft has not received any information to indicate that these vulnerabilities have been used to attack customers at this time. Microsoft continues working closely with industry partners including chip makers, hardware OEMs and app vendors to protect customers. To get all available protections, hardware/firmware and software updates are required. This may include microcode from device OEMs and in some cases updates to AV software as well.</p> <p>This advisory addresses the following vulnerabilities:</p> <ul> <li>CVE-2017-5753 - Bounds check bypass</li> <li>CVE-2017-5715 - Branch target injection</li> <li>CVE-2017-5754 - Rogue data cache load</li> </ul> <h1>Recommended Actions</h1> <p>For consumers, the best protection is to keep your computers up to date. You can do this by taking advantage of automatic update. Learn how to turn on automatic updates <a href="https://support.microsoft.com/en-us/help/12373/windows-update-faq">here</a>. In addition to installing the January 2018 Windows security updates, you may also need to install firmware updates from your device manufacturer for increased protection. Check with your device manufacturer for relevant updates.</p> <p>If automatic updates are enabled, the January 2018 Windows security update will be offered to the devices running supported anti-virus (AV) applications. Updates can be installed in any order.</p> <ol> <li>If you have automatic updating enabled and configured to provide updates for Windows, the updates are delivered to you when they are released, if your device and software are compatible. We recommend you verify these updates are installed. If automatic update is not enabled, manually check for and install the January 2018 Windows operating system security update.</li> <li>Install applicable firmware update provided by your OEM device manufacturer.</li> </ol> <p>Customers using Surface products need to apply both firmware and software updates. See <a href="https://support.microsoft.com/en-us/help/4073065/surface-surface-hub-update-history">Microsoft Knowledge Base Article 4073065</a> article for more information.  </p> <h2>Potential performance impacts</h2> <p>In testing Microsoft has seen some performance impact with these mitigations. For most consumer devices, the impact may not be noticeable, however, the specific impact varies by hardware generation and implementation by the chip manufacturer. Microsoft values the security of its software and services and has made the decision to implement certain mitigation strategies in an effort to better secure our products. We continue to work with hardware vendors to improve performance while maintaining a high level of security.</p> <h1>Advisory Details</h1> <h2>Vulnerabilities Description</h2> <p>Speculative execution side-channel vulnerabilities can be used to read the content of memory across a trusted boundary and can therefore lead to information disclosure. There are multiple vectors by which an attacker could trigger the vulnerabilities depending on the configured environment.</p> <p>Microsoft has been working with hardware and software makers to jointly develop mitigations to protect customers across Microsoft’s products and services. These mitigations prevent attackers from triggering a weakness in the CPU which could allow the contents of memory to be disclosed.</p> <h2>Microsoft Windows client customers</h2> <p>In client scenarios, a malicious user mode application could be used to disclose the contents of kernel memory.</p> <p>Customers using Windows client operating systems including Windows 7 Service Pack 1, Windows 8.1, and Windows 10 need to apply both firmware and software updates. See <a href="https://support.microsoft.com/help/4073119">Microsoft Knowledge Base Article 4073119</a> for additional information.</p> <p>Customers using Microsoft Surface and Surface Book products need to apply both firmware and software updates. Most customers have automatic updating enabled and will not need to take any action because this security update will be downloaded and installed automatically.</p> <p>Microsoft will continue to work closely with industry partners to improve mitigations against this class of vulnerabilities.</p> <h2>Microsoft Windows Server customers</h2> <p>In server scenarios, a malicious user-mode application could be used to disclose the contents of kernel memory. In other multi-tenant hosting environments, a virtual machine could read the memory of the host operating system or the memory of other guest operating systems running on the same physical machine.</p> <p>Customers using Windows server operating systems including Windows Server 2008 R2 Service Pack 1, Windows Server 2012 R2, and Windows Server 2016 need to apply firmware and software updates as well as configure protections. See <a href="https://support.microsoft.com/help/4072698">Microsoft Knowledge Base Article 4072698</a> for additional information, including workarounds.</p> <p>Microsoft Azure has taken steps to address the security vulnerabilities at the hypervisor level to protect Windows Server VMs running in Azure. More information can be found <a href="https://support.microsoft.com/en-us/help/4073235/cloud-protections-speculative-execution-side-channel-vulnerabilities">here</a>.</p> <p>Microsoft will continue to work closely with industry partners to improve mitigations against this class of vulnerabilities.</p> <h2>Microsoft cloud customers</h2> <p>Microsoft has already deployed mitigations across the majority of our cloud services and is accelerating efforts to complete the remainder.  More information is available <a href="https://support.microsoft.com/help/4073235">here</a>.</p> <h2>Microsoft SQL Server customers</h2> <p>In scenarios running Microsoft SQL Server, customers should follow the guidance outlined in <a href="https://support.microsoft.com/help/4073225">Microsoft Knowledge Base Article 4073225</a>.</p> <h2>Microsoft HoloLens customers</h2> <p>Updates to Windows 10 for HoloLens are available to HoloLens customers through Windows Update.</p> <p>After <a href="https://support.microsoft.com/en-us/help/12643">applying</a> the <a href="https://go.microsoft.com/fwlink/?linkid=866957">February 2018 Windows Security Update</a> HoloLens customers do not need to take any additional action to update their device firmware. These mitigations will also be included in all future releases of Windows 10 for HoloLens.</p> <h2>FAQ</h2> <p><strong>1. What systems are at risk from these vulnerabilities?</strong></p> <p>These vulnerabilities affect both client and server operating systems; systems and services configured to allow execution of untrusted code are primarily at risk from these vulnerabilities. Additionally, client systems used in browser scenarios such as workstations or terminal servers are at increased risk of these vulnerabilities.</p> <p><strong>2. What are the associated CVEs for these vulnerabilities?</strong></p> <ul> <li>See <a href="http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2017-5715">CVE-2017-5715</a></li> <li>See <a href="http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2017-5753">CVE-2017-5753</a></li> <li>See <a href="http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2017-5754">CVE-2017-5754</a></li> </ul> <p><strong>3. Have there been any active attacks detected?</strong></p> <p>No. When this security advisory was issued, Microsoft had not received any information to indicate that these vulnerabilities had been used to attack customers.</p> <p><strong>4. Have these vulnerabilities been publicly disclosed?</strong></p> <p>Yes. The vulnerabilities were disclosed on January 3, 2018 at <a href="https://bugs.chromium.org/p/project-zero/issues/detail?id=1272">https://bugs.chromium.org/p/project-zero/issues/detail?id=1272</a></p> <p><strong>5. I was not offered the Windows security updates released on January 3, 2018. What should I do?</strong></p> <p>To help avoid adversely affecting customer devices, the Windows security updates released on January 3rd, 2018 have only been offered to devices running compatible antivirus software. Please see <a href="https://support.microsoft.com/help/4072699">Microsoft Knowledge Base Article 4072699</a> for more information about how to get the updates.</p> <p><strong>6. Why aren't Windows Server 2008 and Windows Server 2012 platforms getting an update? When can customers expect the fix?</strong></p> <p>Addressing a hardware vulnerability with a software update presents significant challenges with some operating systems requiring extensive architectural changes. Microsoft continues to work with affected chip manufacturers and investigate the best way to provide mitigations.</p> <p><strong>Update March 13, 2018:</strong> Microsoft has released the following security updates for Windows Server 2008 and Windows Server 2012 to provide mitigations against the vulnerabilities discussed in this advisory. See the Affected Products table for links to download and install the updates. Note that these updates are also available via Windows Update.</p> <ul> <li>4090450 – Windows Server 2008 for 32-bit Systems</li> <li>4090450 – Windows Server 2008 for x64-based Systems</li> <li>4090450 – Windows Server 2008 for Itanium-based Systems</li> <li>4088877 – (Monthly Rollup) Windows Server 2012</li> <li>4088880 – (Security Only) Windows Server 2012</li> </ul> <p><strong>7. I have an x86 architecture and the PowerShell Verification output indicates that I am not fully protected from these speculative execution side-channel vulnerabilities. Will Microsoft provide complete protections in the future?</strong></p> <p>Addressing a hardware vulnerability with a software update presents significant challenges and mitigations for older operating systems that require extensive architectural changes. The existing 32 bit update packages listed in this advisory fully address CVE-2017-5753 and CVE-2017-5715, but do not provide protections for CVE-2017-5754 at this time. Microsoft is continuing to work with affected chip manufacturers and investigate the best way to provide mitigations for x86 customers, which may be provided in a future update.</p> <p><strong>Update March 13, 2018:</strong> Microsoft has released the following security updates to provide additional protections for 32-bit (x86) versions of Windows related to CVE 2017-5754 (“Meltdown”). See the Affected Products table for links to download and install the updates. Note that these updates are also available via Windows Update.</p> <ul> <li>4088875 – (Monthly Rollup) for Windows 7 for 32-bit Systems Service Pack 1</li> <li>4088878 – (Security Only) for Windows 7 for 32-bit Systems Service Pack 1</li> <li>4088876 – (Monthly Rollup) for Windows 8.1 for 32-bit Systems</li> <li>4088879 – (Security Only) for Windows 8.1 for 32-bit Systems</li> </ul> <p><strong>Update February 13, 2018:</strong> Microsoft has released the following security updates to provide additional protections for 32-bit (x86) versions of Windows 10 related to CVE 2017-5754 (“Meltdown”). See the Affected Products table for links to download and install the updates from the Microsoft Update Catalog:</p> <ul> <li>4074596 – Windows 10 for 32-bit Systems</li> <li>4074591 – Windows 10 Version 1511 for 32-bit Systems</li> <li>4074590 – Windows 10 Version 1607 for 32-bit Systems</li> <li>4074592 – Windows 10 Version 1703 for 32-bit Systems</li> </ul> <p><strong>Update January 18, 2018:</strong> Microsoft has released security update 4073291 to provide additional protections for the 32-bit (x86) version of Windows 10 Version 1709 related to CVE 2017-5754 (“Meltdown”). See the Affected Products table for links to download and install the update from the Microsoft Update Catalog.</p> <p><strong>8. What is the scope of the vulnerabilities?</strong></p> <p>These vulnerabilities are information disclosure vulnerabilities. An attacker who successfully exploited these vulnerabilities could use them to leak sensitive information that could be used for further exploitation of the system. In shared resource environments (such as exists in some cloud services configurations), these vulnerabilities could allow one virtual machine to improperly access information from another. In non-browsing scenarios on standalone systems, an attacker would need prior access to the system or an ability to run untrusted code on the system to leverage these vulnerabilities. In browsing scenarios, an attacker could convince a user to visit a malicious site to leverage these vulnerabilities. An attacker could also inject malicious code into advertising networks used by trusted sites or embed malicious code on a compromised, but trusted, site.</p> <p>By themselves, these vulnerabilities do not allow arbitrary code execution.</p> <p><strong>9. Is my device protected after I’ve applied the Windows security updates Microsoft released on January 3, 2018?</strong></p> <p>To get all available protections for your device(s) against the three vulnerabilities described in this advisory, you must install the security updates for Windows and apply microcode updates provided by your hardware OEM.</p> <p>If your OEM does not provide a microcode update, or if you are unable to apply it, the Windows security updates released on January 3, 2018 alone address:</p> <ul> <li>CVE-2017-5753 - Bounds check bypass</li> <li>CVE-2017-5754 - Rogue data cache load</li> </ul> <p>To address CVE-2017-5715 - Branch target injection, you must apply a microcode update in conjunction with the Windows security update. Any questions regarding microcode updates must be directed to your OEM. Systems without updated microcode remain vulnerable to information disclosure as described in FAQ 8: What is the scope of the vulnerabilities?</p> <p><strong>10. I have an AMD-based device and compatible antivirus software, but I am not getting the January 2018 Windows Security Update. Why is that?</strong></p> <p>Microsoft worked with AMD to resolve update blocks on a small subset of older AMD processors (that were previously blocked to avoid users getting into an unbootable state after installation of recent Windows operating system security updates). As of January 18, 2018, Microsoft has resumed updating all AMD devices with the Windows operating system security update to help protect against the <a href="https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/ADV180002">chipset vulnerabilities</a> known as Spectre and Meltdown. The following Windows operating system update KBs include information on how to get the update. Note you first need to have a compatible antivirus software application before updating.</p> <ul> <li><a href="https://support.microsoft.com/en-us/help/4056897">January 3, 2018—KB4056897 (Security-only update)</a></li> <li><a href="https://support.microsoft.com/en-us/help/4056894">January 9, 2018—KB4056894 (Monthly Rollup)</a></li> <li><a href="https://support.microsoft.com/en-us/help/4056888">January 3, 2018—KB4056888 (OS Build 10586.1356)</a></li> <li><a href="https://support.microsoft.com/en-us/help/4056892">January 3, 2018—KB4056892 (OS Build 16299.192)</a></li> <li><a href="https://support.microsoft.com/en-us/help/4056891">January 3, 2018—KB4056891 (OS Build 15063.850)</a></li> <li><a href="https://support.microsoft.com/en-us/help/4056890">January 3, 2018—KB4056890 (OS Build 14393.2007)</a></li> <li><a href="https://support.microsoft.com/en-us/help/4056898">January 3, 2018—KB4056898 (Security-only update)</a></li> <li><a href="https://support.microsoft.com/en-us/help/4056893">January 3, 2018—KB4056893 (OS Build 10240.17735)</a></li> <li><a href="https://support.microsoft.com/en-us/help/4056895">January 9, 2018—KB4056895 (Monthly Rollup)</a></li> </ul> <p>For AMD device-specific information please refer to AMD’s <a href="https://www.amd.com/en/corporate/speculative-execution">Security Advisory</a>. Customers using Windows client operating systems including Windows 7 Service Pack 1, Windows 8.1, and Windows 10 see <a href="https://support.microsoft.com/help/4073119">Microsoft Knowledge Base Article 4073119</a> for more information. Customers using Windows server operating systems including Windows Server 2008 R2 Service Pack 1, Windows Server 2012 R2, and Windows Server 2016 <a href="https://support.microsoft.com/help/4072698">Microsoft Knowledge Base Article 4072698</a> for more information.</p> <p><strong>11. Intel has identified reboot issues with microcode on some older processors. What should I do?</strong></p> <p>Intel has <a href="https://newsroom.intel.com/news/intel-security-issue-update-addressing-reboot-issues/">reported issues</a> with recently released microcode meant to address Spectre variant 2 (CVE 2017-5715 Branch Target Injection) – specifically Intel noted that this microcode can cause “<a href="https://newsroom.intel.com/news/root-cause-of-reboot-issue-identified-updated-guidance-for-customers-and-partners/">higher than expected reboots and other unpredictable system behavior</a>” and then noted that situations like this may result in “<a href="https://www.intc.com/investor-relations/investor-education-and-news/investor-news/press-release-details/2018/Intel-Reports-Fourth-Quarter-2017-Financial-Results/default.aspx">data loss or corruption</a>.” Our own experience is that system instability can in some circumstances cause data loss or corruption. On January 22nd Intel recommended that customers <a href="https://newsroom.intel.com/news/root-cause-of-reboot-issue-identified-updated-guidance-for-customers-and-partners/">stop deploying the current microcode version</a> on impacted processors while they perform additional testing on the updated solution. We understand that Intel is continuing to investigate the potential impact of the current microcode version and encourage customers to review their guidance on an ongoing basis to inform their decisions.</p> <p>While Intel tests, updates, and deploys new microcode, we are making available an out of band update today, <a href="https://support.microsoft.com/help/4078130">KB4078130</a>, that specifically disables only the mitigation against CVE 2017-5715 - Branch Target Injection vulnerability. In our testing this update has been found to prevent the behavior described. For the full list of devices, see <a href="https://newsroom.intel.com/wp-content/uploads/sites/11/2018/01/microcode-update-guidance.pdf">Intel’s microcode revision guidance</a>. This update covers Windows 7 Service Pack 1, Windows 8.1, and all versions of Windows 10, for client and server. If you are running an impacted device, this update can be applied by downloading it from the <a href="http://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4078130">Microsoft Update Catalog</a>. Application of this payload specifically disables only the mitigation against CVE 2017-5715 - Branch Target Injection vulnerability.</p> <p>As of January 25, there are no known reports to indicate that this Spectre variant 2 (CVE 2017-5715) has been used to attack customers. We recommend Windows customers, when appropriate, re-enable the mitigation against CVE-2017-5715 when Intel reports that this unpredictable system behavior has been resolved for your device.</p> <p><strong>Update April 24, 2018:</strong></p> <p>Microsoft has released stand-alone security update 4078407 that by default enables the mitigation against Spectre variant 2 (CVE 2017-5715) for all supported versions of Windows 10 and Windows 10 Servers. This update can be applied by downloading it from the <a href="http://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4078407">Microsoft Update Catalog</a>. For more information see <a href="https://support.microsoft.com/help/4078407">Microsoft Knowledge Base Article 4078407</a>.</p> <p><strong>12. If I have not installed the January 2018 Security Only updates or the February 2018 Security Only updates, what do I need to install to be protected from the vulnerabilities described in this advisory?</strong></p> <p>Security Only updates are not cumulative. Depending on the operating system version you are running, you would need to install the January, February, and March Security Only Updates to be protected against the vulnerabilities described in this advisory. For example, if you are running Windows 7 for 32-bit Systems on an affected Intel CPU you need to install the January, February, and March Security Only Updates. We recommend installing these Security Only updates in the order of release. Note: an earlier version of this FAQ incorrectly stated that the February Security Only update included the security fixes released in January for the issues associated with this advisory.</p> <p><strong>13. If I apply any of the applicable February security updates, will they disable the protections for CVE-2017-5715 like security update 4078130 did?</strong></p> <p>No. Security update 4078130 was a specific fix to prevent unpredictable system behaviors, performance issues, and/or unexpected reboots after installation of microcode. Applying the February security updates on Windows client operating systems enables all three mitigations. On Windows server operating systems, you still need to enable the mitigations after proper testing is performed. See <a href="https://support.microsoft.com/en-us/help/4072698">Microsoft Knowledge Base Article 4072698</a> for more information.</p> <p><strong>14. I understand that Intel has released microcode updates. Where can I find and install these updates for my system?</strong></p> <p>These updates are currently available via the <a href="https://www.catalog.update.microsoft.com/Search.aspx?q=KB4090007">Microsoft Update Catalog</a> for devices running Windows 10 Version 1709 and Windows Server, version 1709. For more information and the latest available microcode update for devices running Windows 10 Version 1709 or Windows Server, version 1709, see <a href="https://support.microsoft.com/help/4090007">Microsoft Knowledge Base Article 4090007</a>.</p> <p><strong>Update May 15, 2018:</strong></p> <p>These updates are currently available via the <a href="https://www.catalog.update.microsoft.com/Search.aspx?q=KB4100347">Microsoft Update Catalog</a> for devices running Windows 10 Version 1803 and Windows Server, version 1803. For more information and the latest available microcode update for devices running Windows 10 Version 1803 or Windows Server, version 1803, see <a href="https://support.microsoft.com/help/4100347">Microsoft Knowledge Base Article 4100347</a>.</p> <p><strong>Update April 24, 2018:</strong></p> <p>These updates are currently available via the <a href="https://www.catalog.update.microsoft.com/Search.aspx?q=KB4091666">Microsoft Update Catalog</a> for devices running Windows 10. For more information and the latest available microcode update for devices running Windows 10, see <a href="https://support.microsoft.com/help/4091666">Microsoft Knowledge Base Article 4091666</a>.</p> <p><strong>Update March 14, 2018:</strong></p> <p>These updates are currently available via the <a href="https://www.catalog.update.microsoft.com/Search.aspx?q=KB4091663">Microsoft Update Catalog</a> for devices running Windows 10 Version 1703. For more information and the latest available microcode update for devices running Windows 10 Version 1703, see <a href="https://support.microsoft.com/help/4091663">Microsoft Knowledge Base Article 4091663</a>.</p> <p>These updates are currently available via the <a href="https://www.catalog.update.microsoft.com/Search.aspx?q=KB4091664">Microsoft Update Catalog</a> for devices running Windows 10 Version 1607 and Windows Server 2016. For more information and the latest available microcode update for devices running Windows 10 Version 1607 or Windows Server 2016, see <a href="https://support.microsoft.com/help/4091664">Microsoft Knowledge Base Article 4091664</a>.</p> <p>Microsoft will make available Intel microcode updates for Windows operating systems as they become available. Please see <a href="https://support.microsoft.com/help/4093836">Microsoft Knowledge Base Article 4093836</a> or check back to this FAQ for the current Intel microcode updates.</p> <p><strong>15. What are the mitigations for AMD processors for CVE 2017-5715, Branch Target Injection?</strong></p> <p>Customers running Windows 10 Version 1709 and Windows Server, version 1709 (Server Core installation) need to install security update 4093112 for additional mitigations for AMD processors for CVE 2017-5715, Branch Target Injection. See the <strong>Affected Products</strong> table for links to download and install the updates. This update is also available via Windows Update.</p> <p><strong>Update July 10, 2018</strong></p> <p>Customers running Windows 8.1, Windows Server 2012 R2, or Windows Server 2012 R2 (Server Core installation) need to install security update 4338815 (monthly rollup) or 4338824 (security only) for additional mitigations for AMD processors for CVE 2017-5715 - Branch Target Injection. See the <strong>Affected Products</strong> table for links to download and install the updates. These updates are also available via Windows Update.</p> <p>Customers running Windows Server 2012 or Windows Server 2012 (Server Core installation) need to install security update 4338830 (monthly rollup) or 4338820 (security only) for additional mitigations for AMD processors for CVE 2017-5715 - Branch Target Injection. See the <strong>Affected Products</strong> table for links to download and install the updates. These updates are also available via Windows Update.</p> <p>Customers running Windows Server 2008 or Windows Server 2008 (Server Core installation) need to install security update 4340583 for additional mitigations for AMD processors for CVE 2017-5715 - Branch Target Injection. See the <strong>Affected Products</strong> table for links to download and install the updates. These updates are also available via Windows Update.</p> <p><strong>Update June 12, 2018</strong></p> <p>Customers running Windows 10 Version 1703 need to install security update 4284874 for additional mitigations for AMD processors for CVE 2017-5715 - Branch Target Injection. See the <strong>Affected Products</strong> table for links to download and install the updates. These updates are also available via Windows Update.</p> <p>Customers running Windows 10 need to install security update 4284860 for additional mitigations for AMD processors for CVE 2017-5715 - Branch Target Injection. See the <strong>Affected Products</strong> table for links to download and install the updates. These updates are also available via Windows Update.</p> <p>Customers running Windows 7, Windows Server 2008 R2, or Windows Server 2008 R2 (Server Core installation) need to install security update 4284826 (monthly rollup) or 4284867 (security only) for additional mitigations for AMD processors for CVE 2017-5715 - Branch Target Injection. See the <strong>Affected Products</strong> table for links to download and install the updates. These updates are also available via Windows Update.</p> <p><strong>Update May 8, 2018:</strong></p> <p>Customers running Windows 10 Version 1607, Windows Server 2016, and Windows Server 2016 (Server Core installation) need to install security update 4103723 for additional mitigations for AMD processors for CVE 2017-5715 - Branch Target Injection. See the <strong>Affected Products</strong> table for links to download and install the updates. These updates are also available via Windows Update.</p> <p>The following table summarizes the attack scenarios that are protected against when the Windows Branch Target Injection mitigation is enabled and required hardware support is present on AMD CPUs:</p> <table> <thead> <tr> <th>Scenario</th> <th>Mitigation</th> </tr> </thead> <tbody> <tr> <td>Process-to-process scenarios where a malicious user-mode application could use CVE-2017-5715 to disclose the contents of memory used by other applications.</td> <td>Enabled by default</td> </tr> <tr> <td>User-to-kernel scenarios where a malicious user-mode application could use CVE-2017-5715 to disclose the contents of kernel memory.</td> <td>Disabled by default</td> </tr> <tr> <td>Virtualization scenarios where a compromised virtual machine could use CVE-2017-5715 to read the contents of privileged memory allocated to the host, hypervisor, or other guest virtual machine.</td> <td>Enabled by default</td> </tr> </tbody> </table> <p>By default, user-to-kernel protection for CVE-2017-5715 is disabled for AMD CPUs. Customers must enable the mitigation to receive additional protections for CVE-2017-5715. Enabling this mitigation may affect performance. The actual performance impact will depend on multiple factors, such as the specific chipset in your physical host and the workloads that are running. For details on how to enable this protection, see <a href="https://support.microsoft.com/en-us/help/4073119">Microsoft Knowledge Base Article 4073119</a> for Windows Client operating systems.</p> <p>For AMD CPUs that support SMT, further protection against attacks from sibling hardware threads is provided by STIBP enablement or turning off SMT. For additional details and AMD recommended mitigations please see <a href="https://www.amd.com/en/corporate/security-updates">AMD Security Updates</a> and <a href="https://developer.amd.com/wp-content/resources/Architecture_Guidelines_Update_Indirect_Branch_Control.pdf">AMD Architecture Guidelines around Indirect Branch Control</a></p> <p><strong>16. I understand that AMD has released microcode updates. Where can I find and install these updates for my system?</strong></p> <p>AMD <a href="https://www.amd.com/en/corporate/security-updates">recently announced</a> they have started to release microcode for newer CPU platforms around Spectre variant 2 (CVE 2017-5715 Branch Target Injection). For more information refer to the <a href="https://www.amd.com/en/corporate/security-updates">AMD Security Updates</a> and <a href="https://developer.amd.com/wp-content/resources/Architecture_Guidelines_Update_Indirect_Branch_Control.pdf">AMD White Paper: Architecture Guidelines around Indirect Branch Control</a>.</p> <p>Microsoft will inform customers of AMD microcode updates for Windows operating systems as they become available. Please check back to this FAQ updates.</p> <h1>Additional suggested actions</h1> <ul> <li><p><strong>Protect your PC</strong> We continue to encourage customers to follow our Protect Your Computer guidance of enabling a firewall, getting software updates, and installing antivirus software. For more information, see <a href="https://www.microsoft.com/security/default.aspx">Microsoft Safety &amp; Security Center</a>.</p> </li> <li><p><strong>Keep Microsoft software updated</strong> Users running Microsoft software should apply the latest Microsoft security updates to help make sure that their computers are as protected as possible. If you are not sure whether your software is up to date, visit <a href="http://go.microsoft.com/fwlink/?LinkID=40747">Microsoft Update</a>, scan your computer for available updates, and install any high-priority updates that are offered to you. If you have automatic updating enabled and configured to provide updates for Microsoft products, the updates are delivered to you when they are released, but you should verify that they are installed.</p> </li> </ul> Side-Channel ADV180002 11563 11570 11569 11568 11445 11486 11487 11488 10951 10952 10729 10735 10789 10788 10852 10853 10816 10855 10047 10048 10481 10482 9312 10287 9311 9318 9344 10050 10051 10049 10378 10379 10483 10543 11453 11454 11466 11439 10931 10932 10934 10935 10940 10941 10942 10943 10946 10947 11476 11477 11478 11479 11474 11490 11497 11498 11499 10724-10951 10724-10952 10724-11453 10724-11454 10724-10729 10724-10735 10724-10789 10724-10788 10724-10852 10724-10853 10724-10816 10555-10378 10486-10951 10486-10952 10486-11453 10486-11454 10486-10729 10486-10735 10486-10789 10486-10788 10486-10852 10486-10853 10486-10816 10486-10047 10486-10048 10486-10481 10486-10482 10486-10484 10486-10051 10486-10483 Information Disclosure 11563 Information Disclosure 11570 Information Disclosure 11569 Information Disclosure 11568 Information Disclosure 11445 Information Disclosure 11486 Information Disclosure 11487 Information Disclosure 11488 Information Disclosure 10951 Information Disclosure 10952 Information Disclosure 10729 Information Disclosure 10735 Information Disclosure 10789 Information Disclosure 10788 Information Disclosure 10852 Information Disclosure 10853 Information Disclosure 10816 Information Disclosure 10855 Information Disclosure 10047 Information Disclosure 10048 Information Disclosure 10481 Information Disclosure 10482 Information Disclosure 9312 Information Disclosure 10287 Information Disclosure 9311 Information Disclosure 9318 Information Disclosure 9344 Information Disclosure 10050 Information Disclosure 10051 Information Disclosure 10049 Information Disclosure 10378 Information Disclosure 10379 Information Disclosure 10483 Information Disclosure 10543 Information Disclosure 11453 Information Disclosure 11454 Information Disclosure 11466 Information Disclosure 11439 Information Disclosure 10931 Information Disclosure 10932 Information Disclosure 10934 Information Disclosure 10935 Information Disclosure 10940 Information Disclosure 10941 Information Disclosure 10942 Information Disclosure 10943 Information Disclosure 10946 Information Disclosure 10947 Information Disclosure 11476 Information Disclosure 11477 Information Disclosure 11478 Information Disclosure 11479 Information Disclosure 11474 Information Disclosure 11490 Information Disclosure 11497 Information Disclosure 11498 Information Disclosure 11499 Information Disclosure 10724-10951 Information Disclosure 10724-10952 Information Disclosure 10724-11453 Information Disclosure 10724-11454 Information Disclosure 10724-10729 Information Disclosure 10724-10735 Information Disclosure 10724-10789 Information Disclosure 10724-10788 Information Disclosure 10724-10852 Information Disclosure 10724-10853 Information Disclosure 10724-10816 Information Disclosure 10555-10378 Information Disclosure 10486-10951 Information Disclosure 10486-10952 Information Disclosure 10486-11453 Information Disclosure 10486-11454 Information Disclosure 10486-10729 Information Disclosure 10486-10735 Information Disclosure 10486-10789 Information Disclosure 10486-10788 Information Disclosure 10486-10852 Information Disclosure 10486-10853 Information Disclosure 10486-10816 Information Disclosure 10486-10047 Information Disclosure 10486-10048 Information Disclosure 10486-10481 Information Disclosure 10486-10482 Information Disclosure 10486-10484 Information Disclosure 10486-10051 Information Disclosure 10486-10483 Important 11563 Important 11570 Important 11569 Important 11568 Important 11445 Important 11486 Important 11487 Important 11488 Important 10951 Important 10952 Important 10729 Important 10735 Important 10789 Important 10788 Important 10852 Important 10853 Important 10816 Important 10855 Important 10047 Important 10048 Important 10481 Important 10482 Important 9312 Important 10287 Important 9311 Important 9318 Important 9344 Important 10050 Important 10051 Important 10049 Important 10378 Important 10379 Important 10483 Important 10543 Important 11453 Important 11454 Important 11466 Important 11439 Important 10931 Important 10932 Important 10934 Important 10935 Important 10940 Important 10941 Important 10942 Important 10943 Important 10946 Important 10947 Important 11476 Important 11477 Important 11478 Important 11479 Important 11474 Important 11490 Important 11497 Important 11498 Important 11499 Important 10724-10951 Important 10724-10952 Important 10724-11453 Important 10724-11454 Important 10724-10729 Important 10724-10735 Important 10724-10789 Important 10724-10788 Important 10724-10852 Important 10724-10853 Important 10724-10816 Important 10555-10378 Important 10486-10951 Important 10486-10952 Important 10486-11453 Important 10486-11454 Important 10486-10729 Important 10486-10735 Important 10486-10789 Important 10486-10788 Important 10486-10852 Important 10486-10853 Important 10486-10816 Important 10486-10047 Important 10486-10048 Important 10486-10481 Important 10486-10482 Important 10486-10484 Important 10486-10051 Important 10486-10483 Publicly Disclosed:No;Exploited:No;Latest Software Release:Exploitation Less Likely;Older Software Release:Exploitation Less Likely 4493464 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4493464 4489868 11563 Yes Security Update 4493464 https://support.microsoft.com/help/4493464 11563 4467708 4464330 11570 Yes Security Update 4467708 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4467708 4464330 11569 Yes Security Update 4467708 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4467708 4464330 11568 Yes Security Update 4058561 https://www.microsoft.com/downloads/details.aspx?familyid=25723638-2f71-4648-b632-efbaf55c2ab6 11445 Maybe Security Update 4057113 https://www.microsoft.com/downloads/details.aspx?familyid=8e7ba503-01df-4550-af4a-e9e5bc858eb2 11486 Maybe Security Update 4057113 https://www.microsoft.com/downloads/details.aspx?familyid=8e7ba503-01df-4550-af4a-e9e5bc858eb2 11487 Maybe Security Update 4057114 https://www.microsoft.com/downloads/details.aspx?familyid=404619e4-a2f1-4f11-a566-e02a88615395 11488 Maybe Security Update 4284874 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4284874 4103731 10951 Yes Security Update 4284874 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4284874 4103731 10952 Yes Security Update 4284860 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4284860 4103716 10729 Yes Security Update 4284860 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4284860 4103716 10735 Yes Security Update 4074591 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4074591 4056888 10789 Yes Security Update 4056888 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056888 4053578 10788 Yes Security Update 4103723 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4103723 4093119 10852 Yes Security Update 4103723 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4103723 4093119 10853 Yes Security Update 4103723 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4103723 4093119 10816 Yes Security Update 4103723 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4103723 4093119 10855 Yes Security Update 4493472 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4493472 4489878 10047 Yes VIA Processors Monthly Rollup 4493472 https://support.microsoft.com/help/4493472 10047 4493448 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4493448 10047 Yes VIA Processors Security Only 4493448 https://support.microsoft.com/help/4493448 10047 4493472 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4493472 4489878 10048 Yes VIA Processors Monthly Rollup 4493472 https://support.microsoft.com/help/4493472 10048 4493448 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4493448 10048 Yes VIA Processors Security Only 4493448 https://support.microsoft.com/help/4493448 10048 4493446 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4493446 4489881 10481 Yes VIA Processors Monthly Rollup 4493446 https://support.microsoft.com/help/4493446 10481 4493467 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4493467 10481 Yes VIA Processors Security Only 4493467 https://support.microsoft.com/help/4493467 10481 4338831 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4338831 4284815 10481 Yes Preview Rollup 4345424 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4345424 10481 Yes Standalone 4493446 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4493446 4489881 10482 Yes VIA Processors Monthly Rollup 4493446 https://support.microsoft.com/help/4493446 10482 4493467 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4493467 10482 Yes VIA Processors Security Only 4493467 https://support.microsoft.com/help/4493467 10482 4338831 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4338831 4284815 10482 Yes Preview Rollup 4345424 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4345424 10482 Yes Standalone 4340583 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4340583 4093478 9312 Yes Security Update 4340583 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4340583 4093478 10287 Yes Security Update 4340583 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4340583 4093478 9311 Yes Security Update 4340583 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4340583 4093478 9318 Yes Security Update 4340583 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4340583 4093478 9344 Yes Security Update 4493472 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4493472 4489878 10050 Yes VIA Processors Monthly Rollup 4493472 https://support.microsoft.com/help/4493472 10050 4493448 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4493448 10050 Yes VIA Processors Security Only 4493448 https://support.microsoft.com/help/4493448 10050 4493472 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4493472 4489878 10051 Yes VIA Processors Monthly Rollup 4493472 https://support.microsoft.com/help/4493472 10051 4493448 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4493448 10051 Yes VIA Processors Security Only 4493448 https://support.microsoft.com/help/4493448 10051 4493472 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4493472 4489878 10049 Yes VIA Processors Monthly Rollup 4493472 https://support.microsoft.com/help/4493472 10049 4493448 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4493448 10049 Yes VIA Processors Security Only 4493448 https://support.microsoft.com/help/4493448 10049 4338830 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4338830 4284855 10378 Yes Monthly Rollup 4338820 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4338820 10378 Yes Security Only 4338816 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4338816 4284855 10378 Yes Preview Rollup 4345425 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4345425 10378 Yes Standalone 4338830 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4338830 4284855 10379 Yes Monthly Rollup 4338820 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4338820 10379 Yes Security Only 4338816 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4338816 4284855 10379 Yes Preview Rollup 4345425 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4345425 10379 Yes Standalone 4493446 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4493446 4489881 10483 Yes VIA Processors Monthly Rollup 4493446 https://support.microsoft.com/help/4493446 10483 4493467 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4493467 10483 Yes VIA Processors Security Only 4493467 https://support.microsoft.com/help/4493467 10483 4338831 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4338831 4284815 10483 Yes Preview Rollup 4345424 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4345424 10483 Yes Standalone 4493446 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4493446 4489881 10543 Yes VIA Processors Monthly Rollup 4493446 https://support.microsoft.com/help/4493446 10543 4493467 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4493467 10543 Yes VIA Processors Security Only 4493467 https://support.microsoft.com/help/4493467 10543 4338831 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4338831 4284815 10543 Yes Preview Rollup 4345424 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4345424 10543 Yes Standalone 4093112 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4093112 4088776 11453 Yes Security Update 4093112 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4093112 4088776 11454 Yes Security Update 4093112 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4093112 4088776 11466 Yes Security Update 4057118 https://www.microsoft.com/downloads/details.aspx?familyid=18a6ec6b-4d21-4de7-8aab-faf42971f9cf 11439 Maybe Security Update 4057115 https://www.microsoft.com/downloads/details.aspx?familyid=fa30d712-f8bf-4632-ab25-074c9090d414 10931 Maybe Security Update 4057121 https://www.microsoft.com/downloads/details.aspx?familyid=28e5bc1e-48ac-402d-bf2f-8ccadd781fdd 10932 Maybe Security Update 4057115 https://www.microsoft.com/downloads/details.aspx?familyid=fa30d712-f8bf-4632-ab25-074c9090d414 10934 Maybe Security Update 4057121 https://www.microsoft.com/downloads/details.aspx?familyid=28e5bc1e-48ac-402d-bf2f-8ccadd781fdd 10935 Maybe Security Update 4057120 https://www.microsoft.com/downloads/details.aspx?familyid=4a5ea1b2-818c-4099-9fb7-1c12d693d631 10940 Maybe Security Update 4057117 https://www.microsoft.com/downloads/details.aspx?familyid=4d2ec0ce-343f-445a-b933-4bb90b4cfedd 10941 Maybe Security Update 4057120 https://www.microsoft.com/downloads/details.aspx?familyid=4a5ea1b2-818c-4099-9fb7-1c12d693d631 10942 Maybe Security Update 4057117 https://www.microsoft.com/downloads/details.aspx?familyid=4d2ec0ce-343f-445a-b933-4bb90b4cfedd 10943 Maybe Security Update 4058560 https://www.microsoft.com/downloads/details.aspx?familyid=4fd20e4c-e219-4184-ab83-b1d5fea2e704 10946 Maybe Security Update 4058559 https://www.microsoft.com/downloads/details.aspx?familyid=bb7ccd19-f7df-4ec2-8efe-92e4464f43a4 10947 Maybe Security Update 4057116 https://www.microsoft.com/downloads/details.aspx?familyid=13608f59-f45b-4b15-ac1a-a8f6db748d4b 11476 Maybe Security Update 4057116 https://www.microsoft.com/downloads/details.aspx?familyid=13608f59-f45b-4b15-ac1a-a8f6db748d4b 11477 Maybe Security Update 4057122 https://www.microsoft.com/downloads/details.aspx?familyid=7d70f956-d43d-4af6-a4b5-e55ec4cd1234 11478 Maybe Security Update 4058562 https://www.microsoft.com/downloads/details.aspx?familyid=6fa0ef46-2992-4d39-92ed-9f39f23c8d92 11479 Maybe Security Update 4057114 https://www.microsoft.com/downloads/details.aspx?familyid=404619e4-a2f1-4f11-a566-e02a88615395 11474 Maybe Security Update 4074590 https://support.microsoft.com/en-us/help/12643/hololens-update-hololens 4053579 11490 Yes Security Update 4493464 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4493464 4489868 11497 Yes VIA Processors Security Update 4493464 https://support.microsoft.com/help/4493464 11497 4493464 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4493464 4489868 11498 Yes VIA Processors Security Update 4493464 https://support.microsoft.com/help/4493464 11498 4493464 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4493464 4489868 11499 Yes VIA Processors Security Update 4493464 https://support.microsoft.com/help/4493464 11499 4088782 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4088782 4074592 10724-10951 Yes Security Update 4088782 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4088782 4074592 10724-10952 Yes Security Update 4088776 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4088776 4074588 10724-11453 Yes Security Update 4088776 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4088776 4074588 10724-11454 Yes Security Update 4088786 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4088786 4074596 10724-10729 Yes Security Update 4088786 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4088786 4074596 10724-10735 Yes Security Update 4088779 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4088779 4074591 10724-10789 Yes Security Update 4088779 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4088779 4074591 10724-10788 Yes Security Update 4088787 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4088787 4074590 10724-10852 Yes Security Update 4088787 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4088787 4074590 10724-10853 Yes Security Update 4088787 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4088787 4074590 10724-10816 Yes Security Update 4088877 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4088877 4074593 10555-10378 Yes Monthly Rollup 4089187 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4089187 4074736 10555-10378 Yes IE Cumulative 4088782 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4088782 4074592 10486-10951 Yes Security Update 4088782 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4088782 4074592 10486-10952 Yes Security Update 4088776 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4088776 4074588 10486-11453 Yes Security Update 4088776 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4088776 4074588 10486-11454 Yes Security Update 4088786 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4088786 4074596 10486-10729 Yes Security Update 4088786 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4088786 4074596 10486-10735 Yes Security Update 4088779 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4088779 4074591 10486-10789 Yes Security Update 4088779 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4088779 4074591 10486-10788 Yes Security Update 4088787 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4088787 4074590 10486-10852 Yes Security Update 4088787 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4088787 4074590 10486-10853 Yes Security Update 4088787 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4088787 4074590 10486-10816 Yes Security Update 4088875 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4088875 4074598 10486-10047 Yes Monthly Rollup 4089187 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4089187 4074736 10486-10047 Yes IE Cumulative 4088878 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4088878 10486-10048 Yes Security Only 4089187 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4089187 4074736 10486-10048 Yes IE Cumulative 4088876 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4088876 4074594 10486-10481 Yes Monthly Rollup 4089187 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4089187 4074736 10486-10481 Yes IE Cumulative 4088876 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4088876 4074594 10486-10482 Yes Monthly Rollup 4089187 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4089187 4074736 10486-10482 Yes IE Cumulative 4088876 4074594 10486-10484 Yes Monthly Rollup 4088878 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4088878 10486-10051 Yes Security Only 4089187 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4089187 4074736 10486-10051 Yes IE Cumulative 4088876 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4088876 4074594 10486-10483 Yes Monthly Rollup 4089187 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4089187 4074736 10486-10483 Yes IE Cumulative Jann Horn of <a href="https://www.google.com/">Google Project Zero</a> <a href="https://www.paulkocher.com">Paul Kocher</a> <a href="https://mlq.me/">Moritz Lipp</a> from <a href="https://www.iaik.tugraz.at/">Graz University of Technology</a> <a href="https://www.cis.upenn.edu/%7Edanielg3/">Daniel Genkin</a> from <a href="https://www.upenn.edu/">University of Pennsylvania</a> and <a href="https://www.umd.edu/">University of Maryland</a> <a href="https://gruss.cc/">Daniel Gruss</a> from <a href="https://www.iaik.tugraz.at/">Graz University of Technology</a> Werner Haas of <a href="https://www.cyberus-technology.de/">Cyberus Technology GmbH</a> <a href="https://www.shiftleft.org">Mike Hamburg</a> of <a href="https://www.rambus.com/security">Rambus Security Division</a> <a href="https://www.iaik.tugraz.at/content/about_iaik/people/mangard_stefan/">Stefan Mangard</a> from <a href="https://www.iaik.tugraz.at/">Graz University of Technology</a> Thomas Prescher of <a href="https://www.cyberus-technology.de/">Cyberus Technology GmbH</a> <a href="https://misc0110.net/web/">Michael Schwarz</a> from <a href="https://www.iaik.tugraz.at/">Graz University of Technology</a> <a href="https://www.adelaide.edu.au/directory/yuval.yarom">Yuval Yarom</a> of <a href="https://www.adelaide.edu.au/">The University of Adelaide</a> and <a href="http://ts.data61.csiro.au/">Data61</a> Additional information on the <a href="https://meltdownattack.com/">Meltdown</a> and <a href="https://spectreattack.com/">Spectre</a> attacks can be found at their respective web sites. <a href="https://twitter.com/anders_fogh">Anders Fogh</a> of <a href="https://www.gdata-advancedanalytics.de/">GDATA Advanced Analytics</a> 6.0 2018-01-16T08:00:00Z <p>Revised the Affected Products table to include updates for supported editions of Microsoft SQL Server 2012 because these updates provide mitigations for ADV180002.</p> 7.0 2018-01-18T08:00:00Z <p>On January 5, 2018, Microsoft re-released KB4056898 (Security Only) for Windows 8.1 and Windows Server 2012 R2 to address a known issue. Customers who have installed the original package on 1/3/2018 should reinstall the update.</p> 12.0 2018-02-13T08:00:00Z <p>Microsoft has released security updates to provide additional protections for the 32-bit (x86) versions of Windows 10 as follows: 4074596 for Windows 10, 4074591 for Windows 10 Version 1511, 4074590 for Windows 10 Version 1607, and 4074592 for Windows 10 Version 1703. Microsoft recommends that customers running 32-bit systems install the applicable update as soon as possible. Microsoft continues to work to provide 32-bit (x86) protections for other supported Windows versions but does not have a release schedule at this time. These update will be included in subsequent updates, and do not apply to x64 (64-bit) systems. Added a section under Advisory Details to announce that Microsoft has released mitigations for Windows Holographic to Microsoft HoloLens customers that are provided automatically as part of the February 2018 Windows Security Update to Windows 10 Version 1607 for HoloLens. HoloLens customers do not need to take any additional action to update their device firmware. Added FAQ#12 and FAQ#13 to provide further information for installing the February 2018 security updates.</p> 15.0 2018-03-14T07:00:00Z <p>Updated FAQ #14 to announce that the following stand-alone updates for Windows 10 are available via the Microsoft Update Catalog. These updates include microcode updates from Intel: For devices running Windows 10 Version 1703, for the latest available microcode updates see Microsoft Knowledge Base Article 4091663 (https://support.microsoft.com/en-us/help/4091663). For devices running Windows 10 Version 1607 and Windows Server 2016, for the latest available microcode updates see Microsoft Knowledge Base Article 4091664 (https://support.microsoft.com/en-us/help/4091664).</p> 17.0 2018-04-24T07:00:00Z <p>The following updates have been made: 1. Revised FAQ #11 to announce that stand-alone security update 4078407 is available via the Microsoft Update Catalog to enable by default the mitigation against Spectre variant 2 (CVE 2017-5715) for all supported versions of Windows 10 and Windows 10 Servers. See <a href="https://support.microsoft.com/help/4078407">Microsoft Knowledge Base Article 4078407</a> for more information. 2. Updated FAQ #14 to announce that a stand-alone update for Windows 10 is available via the Microsoft Update Catalog. This update includes microcode updates from Intel. See <a href="https://support.microsoft.com/help/4091666">Microsoft Knowledge Base Article 4091666</a> for more information.</p> 19.0 2018-05-15T07:00:00Z <p>Updated FAQ #14 to announce that a stand-alone update for Windows 10 Version 1803 and Windows Server, version 1803 is available via the Microsoft Update Catalog. This update includes microcode updates from Intel. See Microsoft Knowledge Base Article 4100347 for more information.</p> 20.0 2018-06-12T07:00:00Z <ol> <li>Updated FAQ #15 to announce that the following security updates provide addtional mitigations for AMD processors for CVE-2017-5715: 1. Security update 4284874 for Windows 10 Version 1703 - see https://support.microsoft.com/en-us/help/4103723/ for more information. 2. Security update 4284860 for Windows 10 - see https://support.microsoft.com/en-us/help/4284860/ for more information. 3. Security update 4284826 (monthly rollup) or 4284867 (security only) for Windows 7, Windows Server 2008 R2, or Windows Server 2008 R2 (Server Core installation) - see https://support.microsoft.com/en-us/help/4284826/ or https://support.microsoft.com/en-us/help/4284867/ for more information.</li> </ol> 22.0 2018-07-19T07:00:00Z <p>To address a known issue in the security updates released on July 10, Microsoft is releasing Alternate Cumulative update packages for Windows 10, and Standalone and Preview Rollup packages for all other supported editions of Windows. These packages are available via Microsoft Update catalog, WSUS, or by manually searching Windows Update. Customers who are experiencing issues after installing the July Windows security updates should install the replacement packages as applicable. Please refer to the Affected Products table for the replacement package KB numbers. Customers who have successfully installed the security updates and who are not experiencing any issues do not need to take any action.</p> 24.0 2018-08-15T07:00:00Z <p>Updated FAQ #18 to announce that with the Windows security updates released on August 14, 2018, Microsoft is providing the solution for customers with AMD-based devices who experienced high CPU utilization after installing the June or July security updates and updated microcode from AMD. Microsoft recommends that these customers install the August Windows secrurity updates and re-enable the Spectre Variant 2 mitigations if they were previously disabled. This solution is available in the August Windows security updates for: Windows 10 version 1607. Windows 10 version 1709. Windows 10 version 1803, Windows 7 Service Pack 1, Windows Server 2016, Windows Server, version 1709 (Server Core Installation), Windows Server, version 1803 (Server Core Installation), and Windows Server 2008 R2 Service Pack 1. The FAQ will be updated as further updates become available.</p> 25.0 2018-09-11T07:00:00Z <p>The following updates have been made: 1. Microsoft has released security update 4457128 for Windows 10 Version 1803 for ARM64-based Systems to provide protection against CVE-2017-5715. See the Affected Products table for links to download and install the update. Note that this update is also available via Windows Update. 2. Added FAQ #19 to explain where customer can find and install ARM64 firmware that address CVE-2017-5715 - Branch target injection (Spectre, Variant 2).</p> 27.0 2019-04-09T07:00:00Z <p>To provide protection against the Spectre Variant 2 (CVE-2017-5175) and Meltdown (CVE-2017-5754) vulnerabilities for systems running VIA processors, Microsoft has released the following security updates: 1. Security update 4493472 (monthly rollup) or 4493448 (security only) for Windows 7, Windows Server 2008 R2, or Windows Server 2008 R2 for x64-based Systems (Server Core installation) - see https://support.microsoft.com/en-us/help/4493472/ or https://support.microsoft.com/en-us/help/4493448/ for more information. 2. Security update 4493446 (monthly rollup) for Windows RT 8.1; Security update 4493446 (monthly rollup) or 4493467 (security only) for Windows 8.1, Windows Server 2012 R2, or Windows Server 2012 R2 (Server Core installation) - see https://support.microsoft.com/en-us/help/4493446/ or https://support.microsoft.com/en-us/help/4493467/ for more information. 3. Cumulative update 4493464 for Windows 10 Version 1803 or Windows Server, version 1803 (Server Core Installation) - see https://support.microsoft.com/en-us/help/4493464/ for more information. Please note that these updates are for VIA processors only. For further Windows Client (IT Pro) guidance, see https://support.microsoft.com/en-us/help/4073119/. For Windows Server guidance, see https://support.microsoft.com/en-us/help/4072698/.</p> 27.1 2019-06-14T07:00:00Z <p>Updated the table in FAQ #9 with information for customers using an ARM processor.</p> 1.0 2018-01-03T08:00:00Z <p>Information published.</p> 2.0 2018-01-03T08:00:00Z <p>Revised ADV180002 to announce release of SQL 2016 and 2017 updates.</p> 3.0 2018-01-05T08:00:00Z <p>The following updates have been made: Revised the Affected Products table to include Windows 10 Version 1709 for x64-based Systems because the update provides mitigations for ADV180002. Corrected the security update numbers for the 2016 and 2017 SQL Server Cumulative Updates. Removed Windows Server 2012 and Windows Server 2012 (Server Core installation) from the Affected Products table because there are no mitigations available for ADV180002 for these products. Revised the Affected Products table to include Monthly Rollup updates for Windows 7 and Windows Server 2008 R2. Customers who install monthly rollups should install these updates to receive the mitigations against the vulnerabilities discussed in this advisory. In the Recommended Actions section, added information for Surface customers. Added an FAQ to explain why Windows Server 2008 and Windows Server 2012 will not receive mitigations for these vulnerabilities. Added an FAQ to explain the protection against these vulnerabilties for customers using x86 architecture.</p> 4.0 2018-01-09T08:00:00Z <p>Revised the Affected Products table to include updates for supported editions of Microsoft SQL Server 2008, Microsoft SQL Server 2008, and Microsoft SQL Server 2016 because these updates provide mitigations for ADV180002.</p> 4.1 2018-01-10T08:00:00Z <p>Added FAQs to provide more details about the following: the vulnerabilities described in this advisory, what systems are at risk from the vulnerabilities, how customers can be protected against each specific vulnerability, information for customers with AMD-based devices.</p> 5.0 2018-01-12T08:00:00Z <p>Revised the Affected Products table to include updates for supported editions of Microsoft SQL Server 2014 because these updates provide mitigations for ADV180002.</p> 8.0 2018-01-18T08:00:00Z <p>Microsoft has released security update 4073291 to provide additional protections for the 32-bit (x86) version of Windows 10 Version 1709 related to CVE 2017-5754 (“Meltdown”). Microsoft recommends that customers running Windows 10 Version 1709 for 32-bit systems install the update as soon as possible. Microsoft continues to work to provide 32-bit (x86) protections for other supported Windows versions but does not have a release schedule at this time. The update is currently available via the Microsoft Update Catalog only, and will be included in subsequent updates. This update does not apply to x64 (64-bit) systems.</p> 9.0 2018-01-19T08:00:00Z <p>1 - Updated FAQ #10 to announce that Microsoft has resumed updating all AMD devices with the Windows operating system security update to help protect against the <a href="https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/ADV180002">chipset vulnerabilities</a> known as Spectre and Meltdown. See the FAQ for links to information on how to download the update for your operating system. Customers with AMD-based devices should install the updates to be protected from the vulnerabilities discussed in this advisory. 2 - Added an update to FAQ #7 that security update 4073291 is available to provide additional protections for the 32-bit (x86) version of Windows 10 Version 1709 related to CVE 2017-5754 (“Meltdown”).</p> 10.0 2018-01-22T08:00:00Z <ol> <li>Added FAQ #11 to address customer concerns about reboot issues with microcode on devices with older Intel processors. 2. Revised the Affected Products table to add Monthly Rollup updates for supported editions of Windows 8.1 and Windows Server 2012 R2. Customers who install Monthly Rollups should install these updates to be protected from the vulnerabilities described in this advisory.</li> </ol> 11.0 2018-01-26T08:00:00Z <p>Updated FAQ #11 with further guidance for customers who are experiencing reboot issues on Intel devices.</p> 13.0 2018-03-01T08:00:00Z <p>Added FAQ#14 to announce that a stand-alone update for Windows 10 Version 1709 is available via the Microsoft Update Catalog. This update includes microcode updates from Intel. See Microsoft Knowledge Base Article 4090007 (https://support.microsoft.com/en-us/help/4090007/intel-microcode-updates) for more information.</p> 14.0 2018-03-13T07:00:00Z <p>The following updates have been made: 1. Microsoft has released security updates for Windows Server 2008 and Windows Server 2012 to provide mitigations against the vulnerabilities discussed in this advisory. See the Affected Products table for links to download and install the updates. Note that these updates are also available via Windows Update. 2. Microsoft has also released security updates to provide additional protections for the 32-bit (x86) versions of Windows 7 and Windows 8.1. These updates are included in the March Security Only and Monthly Rollup updates. See the Affected Products table for links to download and install the updates. 3. Removed references in FAQ #14 describing microcode updates from Intel. These updates are not yet available.</p> 16.0 2018-04-10T07:00:00Z <p>The following updates have been made: 1. Updated FAQ#10 to provide additional links for more information about updating an AMD-based device. 2. Added FAQ #15 to announce that security update 4093112 for Windows 10 Version 1709 provides addtional mitigations for AMD processors for CVE-2017-5715, and to provide further information about these mitigations. 3. Added FAQ #16 to announce that AMD has started to release microcode updates around Spectre variant 2 (CVE 2017-5715 Branch Target Injection) for newer CPU platforms.</p> 18.0 2018-05-08T07:00:00Z <p>Updated FAQ #15 to announce that security update 4103723 for Windows 10 Version 1607, Windows Server 2016, and Windows Server 2016 (Server Core installation) provides addtional mitigations for AMD processors for CVE-2017-5715. See https://support.microsoft.com/en-us/help/4103723/ for more information. In addition, added information to the FAQ that security update 4093112 also applies to Windows Server, version 1709 (Server Core installation).</p> 21.0 2018-07-10T07:00:00Z <ol> <li>Updated FAQ #15 to announce that the following security updates provide additional mitigations for AMD processors for CVE-2017-5715: 1. Security update 4338815 (monthly rollup) or 4338824 (security only) for Windows 8.1, Windows Server 2012 R2, or Windows Server 2012 R2 (Server Core installation) - see https://support.microsoft.com/en-us/help/4338815/ or https://support.microsoft.com/en-us/help/4338824/ for more information. 2. Security update 4338830 (monthly rollup) or 4338820 (security only) for Windows Server 2012 or Windows Server 2012 (Server Core installation) - see https://support.microsoft.com/en-us/help/4338830/ or https://support.microsoft.com/en-us/help/4338820/ for more information. 3. Security update 4340583 for Windows Server 2008 or Windows Server 2008 (Server Core installation) - see https://support.microsoft.com/en-us/help/4340583/ for more information. 2. As of July 10, 2018, this advisory has been completely updated to provide customers with the most up-to-date information to protect systems from speculative side-channel execution vulnerabilities CVE-2017-5753, CVE-2017-5715, and CVE-2017-5754. Some content has been removed for simplicity and because it is no longer relevant. You can view the archived content for ADV180002 in the FAQ section following the Affected Products table.</li> </ol> 23.0 2018-08-01T07:00:00Z <p>Added FAQ #18 to address a high CPU utilization issue some customers with an AMD-based device are experiencing after installing the June or July Windows security updates or after installing a BIOS update.</p> 26.0 2018-11-13T08:00:00Z <p>The following updates have been made: 1. Added information to FAQ #9 for customers running Windows Server 2019. 2. Updated FAQ #18 to announce that with the Windows security updates released on November 13, 2018, Microsoft is providing the solution for customers with AMD-based devices who experienced high CPU utilization after installing the June or July security updates and updated microcode from AMD. Microsoft recommends that these customers install the November Windows security updates and re-enable the Spectre Variant 2 mitigations if they were previously disabled. This solution is available in the November Windows security updates for: Windows Server 2008, Windows Server 2012, Windows 8.1, and Windows Server 2012 R2. 3. Added FAQ #20 to address the mitigations for ARM CPUs for CVE 2017-5715, Branch Target Injection.</p> January 2018 Adobe Flash Security Update <p>This security update addresses the following vulnerability, which is described in Adobe Security Bulletin <a href="http://helpx.adobe.com/security/products/flash-player/apsb18-01.html">APSB18-01</a>: CVE-2018-4871.</p> <p><strong>How could an attacker exploit these vulnerabilities?</strong> In a web-based attack scenario where the user is using Internet Explorer for the desktop, an attacker could host a specially crafted website that is designed to exploit any of these vulnerabilities through Internet Explorer and then convince a user to view the website. An attacker could also embed an ActiveX control marked &quot;safe for initialization&quot; in an application or Microsoft Office document that hosts the IE rendering engine. The attacker could also take advantage of compromised websites and websites that accept or host user-provided content or advertisements. These websites could contain specially crafted content that could exploit any of these vulnerabilities. In all cases, however, an attacker would have no way to force users to view the attacker-controlled content. Instead, an attacker would have to convince users to take action, typically by clicking a link in an email message or in an Instant Messenger message that takes users to the attacker's website, or by opening an attachment sent through email.</p> <p>In a web-based attack scenario where the user is using Internet Explorer in the Windows 8-style UI, an attacker would first need to compromise a website already listed in the Compatibility View (CV) list. An attacker could then host a website that contains specially crafted Flash content designed to exploit any of these vulnerabilities through Internet Explorer and then convince a user to view the website. An attacker would have no way to force users to view the attacker-controlled content. Instead, an attacker would have to convince users to take action, typically by clicking a link in an email message or in an Instant Messenger message that takes users to the attacker's website, or by opening an attachment sent through email. For more information about Internet Explorer and the CV List, please see the MSDN Article, Developer Guidance for websites with content for Adobe Flash Player in Windows 8.</p> Adobe Flash Player ADV180001 10384-10951 10384-10952 10384-11453 10384-11454 10384-10729 10384-10735 10384-10789 10384-10788 10384-10852 10384-10853 10384-10816 10384-10481 10384-10482 10384-10484 10384-10378 10384-10483 Information Disclosure 10384-10951 Information Disclosure 10384-10952 Information Disclosure 10384-11453 Information Disclosure 10384-11454 Information Disclosure 10384-10729 Information Disclosure 10384-10735 Information Disclosure 10384-10789 Information Disclosure 10384-10788 Information Disclosure 10384-10852 Information Disclosure 10384-10853 Information Disclosure 10384-10816 Information Disclosure 10384-10481 Information Disclosure 10384-10482 Information Disclosure 10384-10484 Information Disclosure 10384-10378 Information Disclosure 10384-10483 Important 10384-10951 Important 10384-10952 Important 10384-11453 Important 10384-11454 Important 10384-10729 Important 10384-10735 Important 10384-10789 Important 10384-10788 Important 10384-10852 Important 10384-10853 Important 10384-10816 Important 10384-10481 Important 10384-10482 Important 10384-10484 Important 10384-10378 Important 10384-10483 Publicly Disclosed:No;Exploited:No 4056887 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056887 4053577 10384-10951 Yes Security Update 4056887 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056887 4053577 10384-10952 Yes Security Update 4056887 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056887 4053577 10384-11453 Yes Security Update 4056887 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056887 4053577 10384-11454 Yes Security Update 4056887 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056887 4053577 10384-10729 Yes Security Update 4056887 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056887 4053577 10384-10735 Yes Security Update 4056887 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056887 4053577 10384-10789 Yes Security Update 4056887 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056887 4053577 10384-10788 Yes Security Update 4056887 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056887 4053577 10384-10852 Yes Security Update 4056887 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056887 4053577 10384-10853 Yes Security Update 4056887 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056887 4053577 10384-10816 Yes Security Update 4056887 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056887 4053577 10384-10481 Yes Security Update 4056887 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056887 4053577 10384-10482 Yes Security Update 4056887 4053577 10384-10484 Yes Security Update 4056887 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056887 4053577 10384-10378 Yes Security Update 4056887 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056887 4053577 10384-10483 Yes Security Update 1.0 2018-01-09T08:00:00Z <p>Information published.</p> Microsoft Color Management Information Disclosure Vulnerability <p>An information disclosure vulnerability exists in the way that the Color Management Module (ICM32.dll) handles objects in memory. This vulnerability allows an attacker to retrieve information to bypass usermode ASLR (Address Space Layout Randomization) on a targeted system. By itself, the information disclosure does not allow arbitrary code execution; however, it could allow arbitrary code to be run if the attacker uses it in combination with another vulnerability.</p> <p>In a web-based attack scenario, an attacker could host a specially crafted website that is designed to exploit the vulnerability and then convince users to view the website. An attacker would have no way to force users to view the attacker-controlled content. Instead, an attacker would have to convince users to take action, typically by getting them to click a link in an email or Instant Messenger message that takes users to the attacker's website, or by opening an attachment sent through email.</p> <p>The security update addresses the vulnerability by correcting how Color Management Module handles objects in memory.</p> Microsoft Graphics Component CVE-2018-0741 10047 10048 9312 10287 9311 9318 9344 10050 10051 10049 Information Disclosure 10047 Information Disclosure 10048 Information Disclosure 9312 Information Disclosure 10287 Information Disclosure 9311 Information Disclosure 9318 Information Disclosure 9344 Information Disclosure 10050 Information Disclosure 10051 Information Disclosure 10049 Important 10047 Important 10048 Important 9312 Important 10287 Important 9311 Important 9318 Important 9344 Important 10050 Important 10051 Important 10049 Publicly Disclosed:No;Exploited:No;Latest Software Release:N/A;Older Software Release:Exploitation More Likely 5.5 5.0 CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C 10047 5.5 5.0 CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C 10048 5.5 5.0 CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C 9312 5.5 5.0 CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C 10287 5.5 5.0 CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C 9311 5.5 5.0 CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C 9318 5.5 5.0 CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C 9344 5.5 5.0 CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C 10050 5.5 5.0 CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C 10051 5.5 5.0 CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C 10049 4056894 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056894 4054518 10047 Yes Monthly Rollup 4056897 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056897 10047 Yes Security Only 4056894 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056894 4054518 10048 Yes Monthly Rollup 4056897 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056897 10048 Yes Security Only 4056942 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056942 9312 Security Update 4056942 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056942 10287 Security Update 4056942 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056942 9311 Security Update 4056942 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056942 9318 Security Update 4056942 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056942 9344 Security Update 4056894 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056894 4054518 10050 Yes Monthly Rollup 4056897 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056897 10050 Yes Security Only 4056894 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056894 4054518 10051 Yes Monthly Rollup 4056897 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056897 10051 Yes Security Only 4056894 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056894 4054518 10049 Yes Monthly Rollup 4056897 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056897 10049 Yes Security Only Lucas Leong (<a href="https://twitter.com/_wmliang_">@_wmliang_</a>) of <a href="https://www.trendmicro.com/">Trend Micro</a> 2.0 2018-01-05T08:00:00Z <p>Revised the Affected Products table to add Monthly Rollup updates for Windows 7, Windows Server 2008 R2, and Windows Server 2012. Customers who install Monthly Rollups should install these updates to be protected from this vulnerability.</p> 1.0 2018-01-03T08:00:00Z <p>Information published.</p> Windows Subsystem for Linux Elevation of Privilege Vulnerability <p>An elevation of privilege vulnerability exists due to an integer overflow in Windows Subsystem for Linux. An attacker who successfully exploited the vulnerability could execute code with elevated permissions.</p> <p>To exploit the vulnerability, a locally authenticated attacker could run a specially crafted application.</p> <p>The security update addresses the vulnerability by correcting how Windows Subsystem for Linux handles objects in memory.</p> Windows Subsystem for Linux CVE-2018-0743 10951 10952 11453 11454 11466 Elevation of Privilege 10951 Elevation of Privilege 10952 Elevation of Privilege 11453 Elevation of Privilege 11454 Elevation of Privilege 11466 Important 10951 Important 10952 Important 11453 Important 11454 Important 11466 Publicly Disclosed:No;Exploited:No;Latest Software Release:Exploitation Less Likely;Older Software Release:Exploitation Less Likely 7.0 6.3 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C 10951 7.0 6.3 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C 10952 7.0 6.3 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C 11453 7.0 6.3 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C 11454 7.0 6.3 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C 11466 4056891 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056891 4053580 10951 Yes Security Update 4056891 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056891 4053580 10952 Yes Security Update 4056892 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056892 4054517 11453 Yes Security Update 4056892 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056892 4054517 11454 Yes Security Update 4056892 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056892 4054517 11466 Yes Security Update Saar Amar 2.0 2018-01-05T08:00:00Z <p>Revised the Affected Products table to add Monthly Rollup updates for Windows 7, Windows Server 2008 R2, and Windows Server 2012. Customers who install Monthly Rollups should install these updates to be protected from this vulnerability.</p> 1.0 2018-01-03T08:00:00Z <p>Information published.</p> Windows Kernel Elevation of Privilege Vulnerability <p>An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.</p> <p>To exploit this vulnerability, an attacker would first have to log on to the system. An attacker could then run a specially crafted application to take control of an affected system.</p> <p>The update addresses the vulnerability by correcting how the Windows kernel handles objects in memory.</p> Windows Kernel CVE-2018-0744 10951 10952 10729 10735 10789 10788 10852 10853 10816 10855 10481 10482 10378 10379 10483 10543 11453 11454 11466 Elevation of Privilege 10951 Elevation of Privilege 10952 Elevation of Privilege 10729 Elevation of Privilege 10735 Elevation of Privilege 10789 Elevation of Privilege 10788 Elevation of Privilege 10852 Elevation of Privilege 10853 Elevation of Privilege 10816 Elevation of Privilege 10855 Elevation of Privilege 10481 Elevation of Privilege 10482 Elevation of Privilege 10378 Elevation of Privilege 10379 Elevation of Privilege 10483 Elevation of Privilege 10543 Elevation of Privilege 11453 Elevation of Privilege 11454 Elevation of Privilege 11466 Important 10951 Important 10952 Important 10729 Important 10735 Important 10789 Important 10788 Important 10852 Important 10853 Important 10816 Important 10855 Important 10481 Important 10482 Important 10378 Important 10379 Important 10483 Important 10543 Important 11453 Important 11454 Important 11466 Publicly Disclosed:No;Exploited:No;Latest Software Release:Exploitation More Likely;Older Software Release:Exploitation More Likely 7.0 6.3 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C 10951 7.0 6.3 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C 10952 7.0 6.3 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C 10729 7.0 6.3 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C 10735 7.0 6.3 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C 10789 7.0 6.3 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C 10788 7.0 6.3 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C 10852 7.0 6.3 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C 10853 7.0 6.3 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C 10816 7.0 6.3 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C 10855 7.0 6.3 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C 10481 7.0 6.3 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C 10482 7.0 6.3 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C 10378 7.0 6.3 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C 10379 7.0 6.3 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C 10483 7.0 6.3 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C 10543 7.0 6.3 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C 11453 7.0 6.3 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C 11454 7.0 6.3 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C 11466 4056891 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056891 4053580 10951 Yes Security Update 4056891 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056891 4053580 10952 Yes Security Update 4056893 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056893 4053581 10729 Yes Security Update 4056893 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056893 4053581 10735 Yes Security Update 4056888 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056888 4053578 10789 Yes Security Update 4056888 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056888 4053578 10788 Yes Security Update 4056890 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056890 4053579 10852 Yes Security Update 4056890 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056890 4053579 10853 Yes Security Update 4056890 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056890 4053579 10816 Yes Security Update 4056890 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056890 4053579 10855 Yes Security Update 4056895 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056895 4054519 10481 Yes Monthly Rollup 4056898 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056898 10481 Yes Security Only 4056895 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056895 4054519 10482 Yes Monthly Rollup 4056898 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056898 10482 Yes Security Only 4056896 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056896 4054520 10378 Yes Monthly Rollup 4056899 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056899 10378 Yes Security Only 4056896 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056896 4054520 10379 Yes Monthly Rollup 4056899 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056899 10379 Yes Security Only 4056895 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056895 4054519 10483 Yes Monthly Rollup 4056898 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056898 10483 Yes Security Only 4056895 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056895 4054519 10543 Yes Monthly Rollup 4056898 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056898 10543 Yes Security Only 4056892 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056892 4054517 11453 Yes Security Update 4056892 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056892 4054517 11454 Yes Security Update 4056892 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056892 4054517 11466 Yes Security Update Tavis Ormandy of <a href="https://www.google.com">Google Project Zero</a> 3.0 2018-01-18T08:00:00Z <p>On January 5, 2018, Microsoft re-released KB4056898 (Security Only) for Windows 8.1 and Windows Server 2012 R2 to address a known issue. Customers who have installed the original package on 1/3/2018 should reinstall the update.</p> 2.0 2018-01-05T08:00:00Z <p>Revised the Affected Products table to add Monthly Rollup updates for Windows 7, Windows Server 2008 R2, and Windows Server 2012. Customers who install Monthly Rollups should install these updates to be protected from this vulnerability.</p> 4.0 2018-01-22T08:00:00Z <p>Revised the Affected Products table to add Monthly Rollup updates for supported editions of Windows 8.1 and Windows Server 2012 R2. Customers who install Monthly Rollups should install these updates to be protected from this vulnerability.</p> 4.1 2018-02-06T08:00:00Z <p>Updated CVE title. This is an informational change only.</p> 1.0 2018-01-03T08:00:00Z <p>Information published.</p> Windows Kernel Information Disclosure Vulnerability <p>An information disclosure vulnerability exists in the Windows kernel that could allow an attacker to retrieve information that could lead to a <a href="https://technet.microsoft.com/en-us/library/security/dn848375.aspx#ASLR">Kernel Address Space Layout Randomization (ASLR)</a> bypass. An attacker who successfully exploited the vulnerability could retrieve the memory address of a kernel object.</p> <p>To exploit the vulnerability, an attacker would have to log on to an affected system and run a specially crafted application.</p> <p>The security update addresses the vulnerability by correcting how the Windows kernel handles memory addresses.</p> Windows Kernel CVE-2018-0745 10951 10952 11453 11454 11466 Information Disclosure 10951 Information Disclosure 10952 Information Disclosure 11453 Information Disclosure 11454 Information Disclosure 11466 Important 10951 Important 10952 Important 11453 Important 11454 Important 11466 Publicly Disclosed:No;Exploited:No;Latest Software Release:Exploitation More Likely;Older Software Release:Exploitation More Likely 4.7 4.2 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C 10951 4.7 4.2 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C 10952 4.7 4.2 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C 11453 4.7 4.2 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C 11454 4.7 4.2 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C 11466 4056891 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056891 4053580 10951 Yes Security Update 4056891 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056891 4053580 10952 Yes Security Update 4056892 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056892 4054517 11453 Yes Security Update 4056892 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056892 4054517 11454 Yes Security Update 4056892 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056892 4054517 11466 Yes Security Update Mateusz Jurczyk of <a href="https://www.google.com">Google Project Zero</a> 2.0 2018-01-05T08:00:00Z <p>Revised the Affected Products table to add Monthly Rollup updates for Windows 7, Windows Server 2008 R2, and Windows Server 2012. Customers who install Monthly Rollups should install these updates to be protected from this vulnerability.</p> 1.0 2018-01-03T08:00:00Z <p>Information published.</p> SMB Server Elevation of Privilege Vulnerability <p>An elevation of privilege vulnerability exists in the Microsoft Server Message Block (SMB) Server when an attacker with valid credentials attempts to open a specially crafted file over the SMB protocol on the same machine. An attacker who successfully exploited this vulnerability could bypass certain security checks in the operating system.</p> <p>To exploit the vulnerability, an attacker would first have to log on to the system. An attacker could then run a specially crafted application that could exploit the vulnerability and take control of an affected system.</p> <p>The update addresses the vulnerability by correcting how Windows SMB Server handles such specially crafted files.</p> Windows SMB Server CVE-2018-0749 10951 10952 11453 11454 10729 10735 10789 10788 10852 10853 10816 10855 10047 10048 10481 10482 9312 10287 9311 9318 9344 10050 10051 10049 10378 10379 10483 10543 11466 Elevation of Privilege 10951 Elevation of Privilege 10952 Elevation of Privilege 11453 Elevation of Privilege 11454 Elevation of Privilege 10729 Elevation of Privilege 10735 Elevation of Privilege 10789 Elevation of Privilege 10788 Elevation of Privilege 10852 Elevation of Privilege 10853 Elevation of Privilege 10816 Elevation of Privilege 10855 Elevation of Privilege 10047 Elevation of Privilege 10048 Elevation of Privilege 10481 Elevation of Privilege 10482 Elevation of Privilege 9312 Elevation of Privilege 10287 Elevation of Privilege 9311 Elevation of Privilege 9318 Elevation of Privilege 9344 Elevation of Privilege 10050 Elevation of Privilege 10051 Elevation of Privilege 10049 Elevation of Privilege 10378 Elevation of Privilege 10379 Elevation of Privilege 10483 Elevation of Privilege 10543 Elevation of Privilege 11466 Important 10951 Important 10952 Important 11453 Important 11454 Important 10729 Important 10735 Important 10789 Important 10788 Important 10852 Important 10853 Important 10816 Important 10855 Important 10047 Important 10048 Important 10481 Important 10482 Important 9312 Important 10287 Important 9311 Important 9318 Important 9344 Important 10050 Important 10051 Important 10049 Important 10378 Important 10379 Important 10483 Important 10543 Important 11466 Publicly Disclosed:No;Exploited:No;Latest Software Release:Exploitation Less Likely;Older Software Release:Exploitation Less Likely 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 10951 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 10952 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 11453 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 11454 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 10729 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 10735 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 10789 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 10788 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 10852 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 10853 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 10816 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 10855 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 10047 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 10048 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 10481 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 10482 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 9312 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 10287 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 9311 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 9318 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 9344 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 10050 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 10051 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 10049 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 10378 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 10379 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 10483 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 10543 6.6 5.9 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C 11466 4056891 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056891 4053580 10951 Yes Security Update 4056891 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056891 4053580 10952 Yes Security Update 4056892 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056892 4054517 11453 Yes Security Update 4056892 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056892 4054517 11454 Yes Security Update 4056893 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056893 4053581 10729 Yes Security Update 4056893 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056893 4053581 10735 Yes Security Update 4056888 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056888 4053578 10789 Yes Security Update 4056888 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056888 4053578 10788 Yes Security Update 4056890 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056890 4053579 10852 Yes Security Update 4056890 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056890 4053579 10853 Yes Security Update 4056890 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056890 4053579 10816 Yes Security Update 4056890 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056890 4053579 10855 Yes Security Update 4056894 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056894 4054518 10047 Yes Monthly Rollup 4056897 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056897 10047 Yes Security Only 4056894 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056894 4054518 10048 Yes Monthly Rollup 4056897 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056897 10048 Yes Security Only 4056895 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056895 4054519 10481 Yes Monthly Rollup 4056898 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056898 10481 Yes Security Only 4056895 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056895 4054519 10482 Yes Monthly Rollup 4056898 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056898 10482 Yes Security Only 4056759 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056759 9312 Yes Security Update 4056759 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056759 10287 Yes Security Update 4056759 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056759 9311 Yes Security Update 4056759 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056759 9318 Yes Security Update 4056759 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056759 9344 Yes Security Update 4056894 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056894 4054518 10050 Yes Monthly Rollup 4056897 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056897 10050 Yes Security Only 4056894 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056894 4054518 10051 Yes Monthly Rollup 4056897 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056897 10051 Yes Security Only 4056894 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056894 4054518 10049 Yes Monthly Rollup 4056897 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056897 10049 Yes Security Only 4056896 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056896 4054520 10378 Yes Monthly Rollup 4056899 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056899 10378 Yes Security Only 4056896 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056896 4054520 10379 Yes Monthly Rollup 4056899 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056899 10379 Yes Security Only 4056895 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056895 4054519 10483 Yes Monthly Rollup 4056898 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056898 10483 Yes Security Only 4056895 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056895 4054519 10543 Yes Monthly Rollup 4056898 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056898 10543 Yes Security Only 4056892 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056892 4054517 11466 Yes Security Update James Forshaw of <a href="https://www.google.com">Google Project Zero</a> 3.0 2018-01-18T08:00:00Z <p>On January 5, 2018, Microsoft re-released KB4056898 (Security Only) for Windows 8.1 and Windows Server 2012 R2 to address a known issue. Customers who have installed the original package on 1/3/2018 should reinstall the update.</p> 2.0 2018-01-05T08:00:00Z <p>Revised the Affected Products table to add Monthly Rollup updates for Windows 7, Windows Server 2008 R2, and Windows Server 2012. Customers who install Monthly Rollups should install these updates to be protected from this vulnerability.</p> 4.0 2018-01-22T08:00:00Z <p>Revised the Affected Products table to add Monthly Rollup updates for supported editions of Windows 8.1 and Windows Server 2012 R2. Customers who install Monthly Rollups should install these updates to be protected from this vulnerability.</p> 1.0 2018-01-03T08:00:00Z <p>Information published.</p> OpenType Font Driver Information Disclosure Vulnerability <p>An information disclosure vulnerability exists in Windows Adobe Type Manager Font Driver (ATMFD.dll) when it fails to properly handle objects in memory. An attacker who successfully exploited this vulnerability could potentially read data that was not intended to be disclosed. Note that this vulnerability would not allow an attacker to execute code or to elevate their user rights directly, but it could be used to obtain information that could be used to try to further compromise the affected system.</p> <p>To exploit this vulnerability, an attacker would have to log on to an affected system and open a document containing specially crafted fonts.</p> <p>The update addresses the vulnerability by correcting how ATMFD.dll handles objects in memory.</p> Graphic Fonts CVE-2018-0754 10951 10952 11453 10729 10735 10789 10788 10852 10853 10816 10855 10047 10048 10481 10482 9312 10287 9311 9318 9344 10050 10051 10049 10378 10379 10483 10543 11466 Information Disclosure 10951 Information Disclosure 10952 Information Disclosure 11453 Information Disclosure 10729 Information Disclosure 10735 Information Disclosure 10789 Information Disclosure 10788 Information Disclosure 10852 Information Disclosure 10853 Information Disclosure 10816 Information Disclosure 10855 Information Disclosure 10047 Information Disclosure 10048 Information Disclosure 10481 Information Disclosure 10482 Information Disclosure 9312 Information Disclosure 10287 Information Disclosure 9311 Information Disclosure 9318 Information Disclosure 9344 Information Disclosure 10050 Information Disclosure 10051 Information Disclosure 10049 Information Disclosure 10378 Information Disclosure 10379 Information Disclosure 10483 Information Disclosure 10543 Information Disclosure 11466 Important 10951 Important 10952 Important 11453 Important 10729 Important 10735 Important 10789 Important 10788 Important 10852 Important 10853 Important 10816 Important 10855 Important 10047 Important 10048 Important 10481 Important 10482 Important 9312 Important 10287 Important 9311 Important 9318 Important 9344 Important 10050 Important 10051 Important 10049 Important 10378 Important 10379 Important 10483 Important 10543 Important 11466 Publicly Disclosed:No;Exploited:No;Latest Software Release:Exploitation More Likely;Older Software Release:Exploitation More Likely 5.5 5.0 CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C 10951 5.5 5.0 CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C 10952 5.5 5.0 CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C 11453 5.5 5.0 CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C 10729 5.5 5.0 CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C 10735 5.5 5.0 CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C 10789 5.5 5.0 CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C 10788 5.5 5.0 CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C 10852 5.5 5.0 CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C 10853 5.5 5.0 CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C 10816 5.5 5.0 CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C 10855 5.5 5.0 CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C 10047 5.5 5.0 CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C 10048 5.5 5.0 CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C 10481 5.5 5.0 CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C 10482 5.5 5.0 CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C 10050 5.5 5.0 CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C 10051 5.5 5.0 CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C 10049 5.5 5.0 CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C 10378 5.5 5.0 CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C 10379 5.5 5.0 CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C 10483 5.5 5.0 CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C 10543 5.5 5.0 CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C 11466 4056891 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056891 4053580 10951 Yes Security Update 4056891 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056891 4053580 10952 Yes Security Update 4056892 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056892 4054517 11453 Yes Security Update 4056893 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056893 4053581 10729 Yes Security Update 4056893 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056893 4053581 10735 Yes Security Update 4056888 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056888 4053578 10789 Yes Security Update 4056888 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056888 4053578 10788 Yes Security Update 4056890 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056890 4053579 10852 Yes Security Update 4056890 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056890 4053579 10853 Yes Security Update 4056890 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056890 4053579 10816 Yes Security Update 4056890 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056890 4053579 10855 Yes Security Update 4056894 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056894 4054518 10047 Yes Monthly Rollup 4056897 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056897 10047 Yes Security Only 4056894 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056894 4054518 10048 Yes Monthly Rollup 4056897 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056897 10048 Yes Security Only 4056895 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056895 4054519 10481 Yes Monthly Rollup 4056898 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056898 10481 Yes Security Only 4056895 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056895 4054519 10482 Yes Monthly Rollup 4056898 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056898 10482 Yes Security Only 4056941 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056951 9312 Yes Security Update 4056941 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056951 10287 Yes Security Update 4056941 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056951 9311 Yes Security Update 4056941 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056951 9318 Yes Security Update 4056941 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056951 9344 Yes Security Update 4056894 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056894 4054518 10050 Yes Monthly Rollup 4056897 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056897 10050 Yes Security Only 4056894 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056894 4054518 10051 Yes Monthly Rollup 4056897 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056897 10051 Yes Security Only 4056894 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056894 4054518 10049 Yes Monthly Rollup 4056897 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056897 10049 Yes Security Only 4056896 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056896 4054520 10378 Yes Monthly Rollup 4056899 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056899 10378 Yes Security Only 4056896 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056896 4054520 10379 Yes Monthly Rollup 4056899 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056899 10379 Yes Security Only 4056895 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056895 4054519 10483 Yes Monthly Rollup 4056898 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056898 10483 Yes Security Only 4056895 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056895 4054519 10543 Yes Monthly Rollup 4056898 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056898 10543 Yes Security Only 4056892 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056892 4054517 11466 Yes Security Update Mateusz Jurczyk of <a href="https://www.google.com">Google Project Zero</a> 3.0 2018-01-18T08:00:00Z <p>On January 5, 2018, Microsoft re-released KB4056898 (Security Only) for Windows 8.1 and Windows Server 2012 R2 to address a known issue. Customers who have installed the original package on 1/3/2018 should reinstall the update.</p> 2.0 2018-01-05T08:00:00Z <p>Revised the Affected Products table to add Monthly Rollup updates for Windows 7, Windows Server 2008 R2, and Windows Server 2012. Customers who install Monthly Rollups should install these updates to be protected from this vulnerability.</p> 4.0 2018-01-22T08:00:00Z <p>Revised the Affected Products table to add Monthly Rollup updates for supported editions of Windows 8.1 and Windows Server 2012 R2. Customers who install Monthly Rollups should install these updates to be protected from this vulnerability.</p> 1.0 2018-01-03T08:00:00Z <p>Information published.</p> Scripting Engine Memory Corruption Vulnerability <p>A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Microsoft Edge (HTML-based). The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user. An attacker who successfully exploited the vulnerability could gain the same user rights as the current user. If the current user is logged on with administrative user rights, an attacker who successfully exploited the vulnerability could take control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.</p> <p>In a web-based attack scenario, an attacker could host a specially crafted website that is designed to exploit the vulnerability through Microsoft Edge (HTML-based) and then convince a user to view the website. The attacker could also take advantage of compromised websites and websites that accept or host user-provided content or advertisements. These websites could contain specially crafted content that could exploit the vulnerability.</p> <p>The security update addresses the vulnerability by modifying how the scripting engine handles objects in memory.</p> Microsoft Scripting Engine CVE-2018-0758 11447 10724-10951 10724-10952 10724-10729 10724-10735 10724-10789 10724-10788 10724-10852 10724-10853 10724-10816 10724-11453 10724-11454 Remote Code Execution 11447 Remote Code Execution 10724-10951 Remote Code Execution 10724-10952 Remote Code Execution 10724-10729 Remote Code Execution 10724-10735 Remote Code Execution 10724-10789 Remote Code Execution 10724-10788 Remote Code Execution 10724-10852 Remote Code Execution 10724-10853 Remote Code Execution 10724-10816 Remote Code Execution 10724-11453 Remote Code Execution 10724-11454 Critical 11447 Critical 10724-10951 Critical 10724-10952 Critical 10724-10729 Critical 10724-10735 Critical 10724-10789 Critical 10724-10788 Critical 10724-10852 Critical 10724-10853 Moderate 10724-10816 Critical 10724-11453 Critical 10724-11454 Publicly Disclosed:No;Exploited:No;Latest Software Release:Exploitation More Likely;Older Software Release:N/A 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 11447 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-10951 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-10952 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-10729 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-10735 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-10789 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-10788 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-10852 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-10853 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-10816 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-11453 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-11454 Commit https://github.com/Microsoft/ChakraCore/releases/tag/v1.7.6 11447 Yes Security Update 4056891 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056891 4053580 10724-10951 Yes Security Update 4056891 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056891 4053580 10724-10952 Yes Security Update 4056893 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056893 4053581 10724-10729 Yes Security Update 4056893 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056893 4053581 10724-10735 Yes Security Update 4056888 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056888 4053578 10724-10789 Yes Security Update 4056888 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056888 4053578 10724-10788 Yes Security Update 4056890 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056890 4053579 10724-10852 Yes Security Update 4056890 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056890 4053579 10724-10853 Yes Security Update 4056890 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056890 4053579 10724-10816 Yes Security Update 4056892 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056892 4054517 10724-11453 Yes Security Update 4056892 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056892 4054517 10724-11454 Yes Security Update 010 working with <a href="http://www.zerodayinitiative.com/">Trend Micro's Zero Day Initiative</a> Wei of Qihoo 360 Vulcan Team Lokihardt of <a href="https://www.google.com/">Google Project Zero</a> 2.0 2018-01-05T08:00:00Z <p>Revised the Affected Products table to include ChakraCore for this vulnerability.</p> 1.0 2018-01-03T08:00:00Z <p>Information published.</p> Scripting Engine Memory Corruption Vulnerability <p>A remote code execution vulnerability exists in the way the scripting engine handles objects in memory in Microsoft browsers. The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user. An attacker who successfully exploited the vulnerability could gain the same user rights as the current user. If the current user is logged on with administrative user rights, an attacker who successfully exploited the vulnerability could take control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.</p> <p>In a web-based attack scenario, an attacker could host a specially crafted website designed to exploit the vulnerability through a Microsoft browser and then convince a user to view the website. An attacker could also embed an ActiveX control marked &quot;safe for initialization&quot; in an application or Microsoft Office document that hosts the browser rendering engine. The attacker could also take advantage of compromised websites and websites that accept or host user-provided content or advertisements. These websites could contain specially crafted content that could exploit the vulnerability.</p> <p>The security update addresses the vulnerability by modifying how the scripting engine handles objects in memory.</p> Microsoft Browsers CVE-2018-0762 11447 10724-10951 10724-10952 10724-11453 10724-11454 10724-10729 10724-10735 10724-10789 10724-10788 10724-10852 10724-10853 10724-10816 10555-10378 10336-9312 10336-9318 10486-10951 10486-10952 10486-10729 10486-10735 10486-10789 10486-10788 10486-10852 10486-10853 10486-10816 10486-10047 10486-10048 10486-10481 10486-10482 10486-10484 10486-10051 10486-10483 10486-11453 10486-11454 Remote Code Execution 11447 Remote Code Execution 10724-10951 Remote Code Execution 10724-10952 Remote Code Execution 10724-11453 Remote Code Execution 10724-11454 Remote Code Execution 10724-10729 Remote Code Execution 10724-10735 Remote Code Execution 10724-10789 Remote Code Execution 10724-10788 Remote Code Execution 10724-10852 Remote Code Execution 10724-10853 Remote Code Execution 10724-10816 Remote Code Execution 10555-10378 Remote Code Execution 10336-9312 Remote Code Execution 10336-9318 Remote Code Execution 10486-10951 Remote Code Execution 10486-10952 Remote Code Execution 10486-10729 Remote Code Execution 10486-10735 Remote Code Execution 10486-10789 Remote Code Execution 10486-10788 Remote Code Execution 10486-10852 Remote Code Execution 10486-10853 Remote Code Execution 10486-10816 Remote Code Execution 10486-10047 Remote Code Execution 10486-10048 Remote Code Execution 10486-10481 Remote Code Execution 10486-10482 Remote Code Execution 10486-10484 Remote Code Execution 10486-10051 Remote Code Execution 10486-10483 Remote Code Execution 10486-11453 Remote Code Execution 10486-11454 Critical 11447 Critical 10724-10951 Critical 10724-10952 Critical 10724-11453 Critical 10724-11454 Critical 10724-10729 Critical 10724-10735 Critical 10724-10789 Critical 10724-10788 Critical 10724-10852 Critical 10724-10853 Moderate 10724-10816 Moderate 10555-10378 Moderate 10336-9312 Moderate 10336-9318 Critical 10486-10951 Critical 10486-10952 Critical 10486-10729 Critical 10486-10735 Critical 10486-10789 Critical 10486-10788 Critical 10486-10852 Critical 10486-10853 Moderate 10486-10816 Critical 10486-10047 Critical 10486-10048 Critical 10486-10481 Critical 10486-10482 Critical 10486-10484 Moderate 10486-10051 Moderate 10486-10483 Critical 10486-11453 Critical 10486-11454 Publicly Disclosed:No;Exploited:No;Latest Software Release:Exploitation More Likely;Older Software Release:Exploitation More Likely 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 11447 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-10951 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-10952 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-11453 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-11454 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-10729 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-10735 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-10789 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-10788 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-10852 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-10853 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-10816 6.4 5.8 CVSS:3.0/AV:N/AC:H/PR:H/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C 10555-10378 6.4 5.8 CVSS:3.0/AV:N/AC:H/PR:H/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C 10336-9312 6.4 5.8 CVSS:3.0/AV:N/AC:H/PR:H/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C 10336-9318 7.5 6.7 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C 10486-10951 7.5 6.7 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C 10486-10952 7.5 6.7 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C 10486-10729 7.5 6.7 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C 10486-10735 7.5 6.7 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C 10486-10789 7.5 6.7 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C 10486-10788 7.5 6.7 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C 10486-10852 7.5 6.7 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C 10486-10853 6.4 5.8 CVSS:3.0/AV:N/AC:H/PR:H/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C 10486-10816 7.5 6.7 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C 10486-10047 7.5 6.7 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C 10486-10048 7.5 6.7 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C 10486-10481 7.5 6.7 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C 10486-10482 7.5 6.7 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C 10486-10484 6.4 5.8 CVSS:3.0/AV:N/AC:H/PR:H/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C 10486-10051 6.4 5.8 CVSS:3.0/AV:N/AC:H/PR:H/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C 10486-10483 7.5 6.7 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C 10486-11453 7.5 6.7 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C 10486-11454 Commit https://github.com/Microsoft/ChakraCore/releases/tag/v1.7.6 11447 Yes Security Update 4056891 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056891 4053580 10724-10951 Yes Security Update 4056891 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056891 4053580 10724-10952 Yes Security Update 4056892 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056892 4054517 10724-11453 Yes Security Update 4056892 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056892 4054517 10724-11454 Yes Security Update 4056893 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056893 4053581 10724-10729 Yes Security Update 4056893 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056893 4053581 10724-10735 Yes Security Update 4056888 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056888 4053578 10724-10789 Yes Security Update 4056888 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056888 4053578 10724-10788 Yes Security Update 4056890 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056890 4053579 10724-10852 Yes Security Update 4056890 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056890 4053579 10724-10853 Yes Security Update 4056890 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056890 4053579 10724-10816 Yes Security Update 4056896 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056896 4054520 10555-10378 Yes Monthly Rollup 4056568 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056568 4052978 10555-10378 Yes IE Cumulative 4056568 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056568 4052978 10336-9312 Yes IE Cumulative 4056568 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056568 4052978 10336-9318 Yes IE Cumulative 4056891 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056891 4053580 10486-10951 Yes Security Update 4056891 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056891 4053580 10486-10952 Yes Security Update 4056893 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056893 4053581 10486-10729 Yes Security Update 4056893 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056893 4053581 10486-10735 Yes Security Update 4056888 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056888 4053578 10486-10789 Yes Security Update 4056888 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056888 4053578 10486-10788 Yes Security Update 4056890 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056890 4053579 10486-10852 Yes Security Update 4056890 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056890 4053579 10486-10853 Yes Security Update 4056890 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056890 4053579 10486-10816 Yes Security Update 4056894 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056894 4054518 10486-10047 Yes Monthly Rollup 4056568 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056568 4052978 10486-10047 Yes IE Cumulative 4056894 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056894 4054518 10486-10048 Yes Monthly Rollup 4056568 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056568 4052978 10486-10048 Yes IE Cumulative 4056895 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056895 4054519 10486-10481 Yes Monthly Rollup 4056568 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056568 4052978 10486-10481 Yes IE Cumulative 4056895 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056895 4054519 10486-10482 Yes Monthly Rollup 4056568 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056568 4052978 10486-10482 Yes IE Cumulative 4056895 4054519 10486-10484 Yes Monthly Rollup 4056894 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056894 4054518 10486-10051 Yes Monthly Rollup 4056568 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056568 4052978 10486-10051 Yes IE Cumulative 4056895 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056895 4054519 10486-10483 Yes Monthly Rollup 4056568 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056568 4052978 10486-10483 Yes IE Cumulative 4056892 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056892 4054517 10486-11453 Yes Security Update 4056892 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056892 4054517 10486-11454 Yes Security Update Tao Yan (@Ga1ois) of <a href="https://www.paloaltonetworks.com/">Palo Alto Networks</a> 2.0 2018-01-05T08:00:00Z <p>Revised the Affected Products table to include ChakraCore for this vulnerability.</p> 1.0 2018-01-03T08:00:00Z <p>Information published.</p> Microsoft Edge PDF Information Disclosure Vulnerability <p>An information disclosure vulnerability exists when Microsoft Edge PDF Reader improperly handles objects in memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user’s system.</p> <p>To exploit the vulnerability, in a web-based attack scenario, an attacker could host a website that contains malicious PDF content. In addition, compromised websites and websites that accept or host user-provided content could contain specially crafted PDF content that could exploit the vulnerability. However, in all cases an attacker would have no way to force a user to view the attacker-controlled content. Instead, an attacker would have to convince a user to take action. For example, an attacker could trick a user into clicking a link that takes the user to the attacker's site.</p> <p>The security update addresses the vulnerability by modifying how Microsoft Edge PDF Reader handles objects in memory.</p> Microsoft Edge CVE-2018-0766 10724-10951 10724-10952 10724-10729 10724-10735 10724-10789 10724-10788 10724-10852 10724-10853 10724-10816 10724-11453 10724-11454 Information Disclosure 10724-10951 Information Disclosure 10724-10952 Information Disclosure 10724-10729 Information Disclosure 10724-10735 Information Disclosure 10724-10789 Information Disclosure 10724-10788 Information Disclosure 10724-10852 Information Disclosure 10724-10853 Information Disclosure 10724-10816 Information Disclosure 10724-11453 Information Disclosure 10724-11454 Important 10724-10951 Important 10724-10952 Important 10724-10729 Important 10724-10735 Important 10724-10789 Important 10724-10788 Important 10724-10852 Important 10724-10853 Low 10724-10816 Important 10724-11453 Important 10724-11454 Publicly Disclosed:No;Exploited:No;Latest Software Release:Exploitation Unlikely;Older Software Release:Exploitation Unlikely 4.3 3.9 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N/E:P/RL:O/RC:C 10724-10951 4.3 3.9 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N/E:P/RL:O/RC:C 10724-10952 4.3 3.9 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N/E:P/RL:O/RC:C 10724-10729 4.3 3.9 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N/E:P/RL:O/RC:C 10724-10735 4.3 3.9 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N/E:P/RL:O/RC:C 10724-10789 4.3 3.9 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N/E:P/RL:O/RC:C 10724-10788 4.3 3.9 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N/E:P/RL:O/RC:C 10724-10852 4.3 3.9 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N/E:P/RL:O/RC:C 10724-10853 4.3 3.9 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N/E:P/RL:O/RC:C 10724-10816 4.3 3.9 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N/E:P/RL:O/RC:C 10724-11453 4.3 3.9 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N/E:P/RL:O/RC:C 10724-11454 4056891 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056891 4053580 10724-10951 Yes Security Update 4056891 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056891 4053580 10724-10952 Yes Security Update 4056893 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056893 4053581 10724-10729 Yes Security Update 4056893 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056893 4053581 10724-10735 Yes Security Update 4056888 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056888 4053578 10724-10789 Yes Security Update 4056888 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056888 4053578 10724-10788 Yes Security Update 4056890 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056890 4053579 10724-10852 Yes Security Update 4056890 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056890 4053579 10724-10853 Yes Security Update 4056890 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056890 4053579 10724-10816 Yes Security Update 4056892 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056892 4054517 10724-11453 Yes Security Update 4056892 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056892 4054517 10724-11454 Yes Security Update Ke Liu of Tencent's Xuanwu LAB working with <a href="http://www.zerodayinitiative.com/">Trend Micro's Zero Day Initiative</a> 1.0 2018-01-03T08:00:00Z <p>Information published.</p> Microsoft Edge Memory Corruption Vulnerability <p>A remote code execution vulnerability exists when Microsoft Edge improperly accesses objects in memory. The vulnerability could corrupt memory in such a way that enables an attacker to execute arbitrary code in the context of the current user. An attacker who successfully exploited the vulnerability could gain the same user rights as the current user. If the current user is logged on with administrative user rights, an attacker could take control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.</p> <p>An attacker could host a specially crafted website that is designed to exploit the vulnerability through Microsoft Edge, and then convince a user to view the website. The attacker could also take advantage of compromised websites and websites that accept or host user-provided content or advertisements by adding specially crafted content that could exploit the vulnerability. In all cases, however, an attacker would have no way to force users to view the attacker-controlled content. Instead, an attacker would have to convince users to take action, typically by way of enticement in an email or Instant Messenger message, or by getting them to open an attachment sent through email.</p> <p>The security update addresses the vulnerability by modifying how Microsoft Edge handles objects in memory.</p> Microsoft Scripting Engine CVE-2018-0767 11447 10724-10951 10724-10952 10724-10789 10724-10788 10724-10852 10724-10853 10724-10816 10724-11453 10724-11454 Information Disclosure 11447 Information Disclosure 10724-10951 Information Disclosure 10724-10952 Information Disclosure 10724-10789 Information Disclosure 10724-10788 Information Disclosure 10724-10852 Information Disclosure 10724-10853 Information Disclosure 10724-10816 Information Disclosure 10724-11453 Information Disclosure 10724-11454 Critical 11447 Critical 10724-10951 Critical 10724-10952 Critical 10724-10789 Critical 10724-10788 Critical 10724-10852 Critical 10724-10853 Moderate 10724-10816 Critical 10724-11453 Critical 10724-11454 Publicly Disclosed:No;Exploited:No;Latest Software Release:Exploitation Unlikely;Older Software Release:Exploitation Unlikely 4.3 3.9 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N/E:P/RL:O/RC:C 11447 4.3 3.9 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N/E:P/RL:O/RC:C 10724-10951 4.3 3.9 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N/E:P/RL:O/RC:C 10724-10952 4.3 3.9 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N/E:P/RL:O/RC:C 10724-10789 4.3 3.9 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N/E:P/RL:O/RC:C 10724-10788 4.3 3.9 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N/E:P/RL:O/RC:C 10724-10852 4.3 3.9 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N/E:P/RL:O/RC:C 10724-10853 4.3 3.9 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N/E:P/RL:O/RC:C 10724-10816 4.3 3.9 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N/E:P/RL:O/RC:C 10724-11453 4.3 3.9 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N/E:P/RL:O/RC:C 10724-11454 Commit https://github.com/Microsoft/ChakraCore/releases/tag/v1.7.6 11447 Yes Security Update 4056891 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056891 4053580 10724-10951 Yes Security Update 4056891 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056891 4053580 10724-10952 Yes Security Update 4056888 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056888 4053578 10724-10789 Yes Security Update 4056888 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056888 4053578 10724-10788 Yes Security Update 4056890 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056890 4053579 10724-10852 Yes Security Update 4056890 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056890 4053579 10724-10853 Yes Security Update 4056890 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056890 4053579 10724-10816 Yes Security Update 4056892 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056892 4054517 10724-11453 Yes Security Update 4056892 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056892 4054517 10724-11454 Yes Security Update Lokihardt of <a href="https://www.google.com/">Google Project Zero</a> 2.0 2018-01-05T08:00:00Z <p>Revised the Affected Products table to include ChakraCore for this vulnerability.</p> 1.0 2018-01-03T08:00:00Z <p>Information published.</p> Scripting Engine Memory Corruption Vulnerability <p>A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Microsoft Edge (HTML-based). The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user. An attacker who successfully exploited the vulnerability could gain the same user rights as the current user. If the current user is logged on with administrative user rights, an attacker who successfully exploited the vulnerability could take control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.</p> <p>In a web-based attack scenario, an attacker could host a specially crafted website that is designed to exploit the vulnerability through Microsoft Edge (HTML-based) and then convince a user to view the website. The attacker could also take advantage of compromised websites and websites that accept or host user-provided content or advertisements. These websites could contain specially crafted content that could exploit the vulnerability.</p> <p>The security update addresses the vulnerability by modifying how the scripting engine handles objects in memory.</p> Microsoft Scripting Engine CVE-2018-0768 11447 10724-11453 10724-11454 Remote Code Execution 11447 Remote Code Execution 10724-11453 Remote Code Execution 10724-11454 Important 11447 Important 10724-11453 Important 10724-11454 Publicly Disclosed:No;Exploited:No;Latest Software Release:Exploitation Less Likely;Older Software Release:Exploitation Less Likely 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 11447 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-11453 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-11454 Commit https://github.com/Microsoft/ChakraCore/releases/tag/v1.7.6 11447 Yes Security Update 4056892 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056892 4054517 10724-11453 Yes Security Update 4056892 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056892 4054517 10724-11454 Yes Security Update Wei of <a href="https://www.360.cn">Qihoo 360 Vulcan Team</a> 2.0 2018-01-05T08:00:00Z <p>Revised the Affected Products table to include ChakraCore for this vulnerability.</p> 1.0 2018-01-03T08:00:00Z <p>Information published.</p> .NET and .NET Core Denial of Service Vulnerability <p>A denial of service vulnerability exists when .NET and .NET Core improperly process XML documents. An attacker who successfully exploited this vulnerability could cause a denial of service against a .NET application.</p> <p>A remote unauthenticated attacker could exploit this vulnerability by issuing specially crafted requests to a .NET (or .NET core) application.</p> <p>The update addresses the vulnerability by correcting how .NET and .NET Core applications handle XML document processing.</p> .NET Framework CVE-2018-0764 11463 11464 11465 11489 11451-10484 11483-11453 11483-11454 11483-11466 10957-10951 10957-10952 11437-10852 11437-10853 11437-10816 11437-10855 10728-10729 10728-10735 10728-9312 10728-9318 10808-10789 10808-10788 9292-9312 9292-9311 9292-9318 9195-9312 9195-9311 9195-9318 2472-10951 2472-10952 2472-10729 2472-10735 2472-10789 2472-10788 2472-10852 2472-10853 2472-10816 2472-10855 2472-10481 2472-10482 2472-10378 2472-10379 2472-10483 2472-10543 9495-10047 9495-10048 9495-10050 9495-10051 9495-10049 10636-10047 10636-10048 10636-10481 10636-10482 10636-10484 10636-9312 10636-9318 10636-10051 10636-10049 10636-10378 10636-10379 10636-10483 10636-10543 11451-10047 11451-10048 11451-10481 11451-10482 11451-10051 11451-10049 11451-10378 11451-10379 11451-10483 11451-10543 Denial of Service 11463 Denial of Service 11464 Denial of Service 11465 Denial of Service 11489 Denial of Service 11451-10484 Denial of Service 11483-11453 Denial of Service 11483-11454 Denial of Service 11483-11466 Denial of Service 10957-10951 Denial of Service 10957-10952 Denial of Service 11437-10852 Denial of Service 11437-10853 Denial of Service 11437-10816 Denial of Service 11437-10855 Denial of Service 10728-10729 Denial of Service 10728-10735 Denial of Service 10728-9312 Denial of Service 10728-9318 Denial of Service 10808-10789 Denial of Service 10808-10788 Denial of Service 9292-9312 Denial of Service 9292-9311 Denial of Service 9292-9318 Denial of Service 9195-9312 Denial of Service 9195-9311 Denial of Service 9195-9318 Denial of Service 2472-10951 Denial of Service 2472-10952 Denial of Service 2472-10729 Denial of Service 2472-10735 Denial of Service 2472-10789 Denial of Service 2472-10788 Denial of Service 2472-10852 Denial of Service 2472-10853 Denial of Service 2472-10816 Denial of Service 2472-10855 Denial of Service 2472-10481 Denial of Service 2472-10482 Denial of Service 2472-10378 Denial of Service 2472-10379 Denial of Service 2472-10483 Denial of Service 2472-10543 Denial of Service 9495-10047 Denial of Service 9495-10048 Denial of Service 9495-10050 Denial of Service 9495-10051 Denial of Service 9495-10049 Denial of Service 10636-10047 Denial of Service 10636-10048 Denial of Service 10636-10481 Denial of Service 10636-10482 Denial of Service 10636-10484 Denial of Service 10636-9312 Denial of Service 10636-9318 Denial of Service 10636-10051 Denial of Service 10636-10049 Denial of Service 10636-10378 Denial of Service 10636-10379 Denial of Service 10636-10483 Denial of Service 10636-10543 Denial of Service 11451-10047 Denial of Service 11451-10048 Denial of Service 11451-10481 Denial of Service 11451-10482 Denial of Service 11451-10051 Denial of Service 11451-10049 Denial of Service 11451-10378 Denial of Service 11451-10379 Denial of Service 11451-10483 Denial of Service 11451-10543 Important 11463 Important 11464 Important 11465 Important 11489 Important 11451-10484 Important 11483-11453 Important 11483-11454 Important 11483-11466 Important 10957-10951 Important 10957-10952 Important 11437-10852 Important 11437-10853 Important 11437-10816 Important 11437-10855 Important 10728-10729 Important 10728-10735 Important 10728-9312 Important 10728-9318 Important 10808-10789 Important 10808-10788 Important 9292-9312 Important 9292-9311 Important 9292-9318 Important 9195-9312 Important 9195-9311 Important 9195-9318 Important 2472-10951 Important 2472-10952 Important 2472-10729 Important 2472-10735 Important 2472-10789 Important 2472-10788 Important 2472-10852 Important 2472-10853 Important 2472-10816 Important 2472-10855 Important 2472-10481 Important 2472-10482 Important 2472-10378 Important 2472-10379 Important 2472-10483 Important 2472-10543 Important 9495-10047 Important 9495-10048 Important 9495-10050 Important 9495-10051 Important 9495-10049 Important 10636-10047 Important 10636-10048 Important 10636-10481 Important 10636-10482 Important 10636-10484 Important 10636-9312 Important 10636-9318 Important 10636-10051 Important 10636-10049 Important 10636-10378 Important 10636-10379 Important 10636-10483 Important 10636-10543 Important 11451-10047 Important 11451-10048 Important 11451-10481 Important 11451-10482 Important 11451-10051 Important 11451-10049 Important 11451-10378 Important 11451-10379 Important 11451-10483 Important 11451-10543 Publicly Disclosed:No;Exploited:No;Latest Software Release:Exploitation Unlikely;Older Software Release:Exploitation Unlikely Commit https://github.com/dotnet/announcements/issues/52 11463 Yes Security Update Commit https://github.com/dotnet/announcements/issues/52 11464 Yes Security Update Commit https://github.com/dotnet/announcements/issues/52 11465 Yes Security Update Release Notes https://github.com/PowerShell/Announcements/issues/2 11489 No Security Update 4055001 4049017, 4041085 11451-10484 Maybe Monthly Rollup 4056892 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056892 4054517 11483-11453 Yes Security Update 4056892 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056892 4054517 11483-11454 Yes Security Update 4056892 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056892 4054517 11483-11466 Yes Security Update 4056891 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056891 4053580 10957-10951 Yes Security Update 4056891 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056891 4053580 10957-10952 Yes Security Update 4056890 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056890 4053579 11437-10852 Yes Security Update 4056890 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056890 4053579 11437-10853 Yes Security Update 4056890 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056890 4053579 11437-10816 Yes Security Update 4056890 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056890 4053579 11437-10855 Yes Security Update 4056893 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056893 4053581 10728-10729 Yes Security Update 4056893 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056893 4053581 10728-10735 Yes Security Update 4055002 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055267 4049019, 4041086 10728-9312 Maybe Monthly Rollup 4054183 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055272 3122661 10728-9312 Maybe Security Only 4055002 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055267 4049019, 4041086 10728-9318 Maybe Monthly Rollup 4054183 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055272 3122661 10728-9318 Maybe Security Only 4056888 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056888 4053578 10808-10789 Yes Security Update 4056888 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056888 4053578 10808-10788 Yes Security Update 4054996 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055267 4049019, 4041086 9292-9312 Maybe Monthly Rollup 4054174 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055272 3122646 9292-9312 Maybe Security Only 4054996 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055267 4049019, 4041086 9292-9311 Maybe Monthly Rollup 4054174 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055272 3122646 9292-9311 Maybe Security Update 4054996 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055267 4049019, 4041086 9292-9318 Maybe Monthly Rollup 4054174 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055272 3122646 9292-9318 Maybe Security Only 4054996 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055267 4049019, 4041086 9195-9312 Maybe Monthly Rollup 4054174 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055272 3122646 9195-9312 Maybe Security Only 4054996 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055267 4049019, 4041086 9195-9311 Maybe Monthly Rollup 4054174 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055272 3122646 9195-9311 Maybe Security Update 4054996 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055267 4049019, 4041086 9195-9318 Maybe Monthly Rollup 4054174 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055272 3122646 9195-9318 Maybe Security Only 4056891 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056891 4053580 2472-10951 Yes Security Update 4056891 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056891 4053580 2472-10952 Yes Security Update 4056893 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056893 4053581 2472-10729 Yes Security Update 4056893 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056893 4053581 2472-10735 Yes Security Update 4056888 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056888 4053578 2472-10789 Yes Security Update 4056888 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056888 4053578 2472-10788 Yes Security Update 4056890 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056890 4053579 2472-10852 Yes Security Update 4056890 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056890 4053579 2472-10853 Yes Security Update 4056890 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056890 4053579 2472-10816 Yes Security Update 4056890 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056890 4053579 2472-10855 Yes Security Update 4054999 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055266 4049017, 4041085 2472-10481 Maybe Monthly Rollup 4054177 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055271 3122651 2472-10481 Maybe Security Only 4054999 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055266 4049017, 4041085 2472-10482 Maybe Monthly Rollup 4054177 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055271 3122651 2472-10482 Maybe Security Only 4054997 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055265 4049018, 4041084 2472-10378 Maybe Monthly Rollup 4054175 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055270 3122655, 3122658 2472-10378 Maybe Security Only 4054997 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055265 4049018, 4041084 2472-10379 Maybe Monthly Rollup 4054175 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055270 3122655, 3122658 2472-10379 Maybe Security Only 4054999 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055266 4049017, 4041085 2472-10483 Maybe Monthly Rollup 4054177 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055271 3122651 2472-10483 Maybe Security Only 4054999 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055266 4049017, 4041085 2472-10543 Maybe Monthly Rollup 4054177 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055271 3122651 2472-10543 Maybe Security Only 4054998 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055532 4049016, 4041083 9495-10047 Maybe Monthly Rollup 4054176 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055269 2973112, 3122648 9495-10047 Maybe Security Only 4054998 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055532 4049016, 4041083 9495-10048 Maybe Monthly Rollup 4054176 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055269 2973112, 3122648 9495-10048 Maybe Security Only 4054998 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055532 4049016, 4041083 9495-10050 Maybe Monthly Rollup 4054176 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055269 2973112, 3122648 9495-10050 Maybe Security Only 4054998 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055532 4049016, 4041083 9495-10051 Maybe Monthly Rollup 4054176 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055269 2973112, 3122648 9495-10051 Maybe Security Only 4054998 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055532 4049016, 4041083 9495-10049 Maybe Monthly Rollup 4054176 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055269 2973112, 3122648 9495-10049 Maybe Security Only 4054995 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055532 4049016, 4041083 10636-10047 Monthly Rollup 4054172 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055269 3122656 10636-10047 Maybe Security Only 4054995 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055532 4049016, 4041083 10636-10048 Maybe Monthly Rollup 4054172 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055269 3122656 10636-10048 Maybe Security Only 4054993 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055266 4049017, 4041085 10636-10481 Maybe Monthly Rollup 4054170 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055271 3122654 10636-10481 Maybe Security Only 4054993 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055266 4049017, 4041085 10636-10482 Maybe Monthly Rollup 4054170 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055271 3122654 10636-10482 Maybe Security Only 4054993 10636-10484 Maybe Monthly Rollup 4054995 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055267 4049017, 4041086 10636-9312 Maybe Monthly Rollup 4054172 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055272 3122656 10636-9312 Maybe Security Only 4054995 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055267 4049017, 4041086 10636-9318 Maybe Monthly Rollup 4054172 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055272 3122656 10636-9318 Security Only 4054995 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055532 4049016, 4041083 10636-10051 Maybe Monthly Rollup 4054172 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055269 3122656 10636-10051 Maybe Security Only 4054995 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055532 4049016, 4041083 10636-10049 Maybe Monthly Rollup 4054172 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055269 3122656 10636-10049 Maybe Security Only 4054994 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055265 4049018, 4041084 10636-10378 Maybe Monthly Rollup 4054171 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055270 3122655 10636-10378 Maybe Security Only 4054994 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055265 4049018, 4041084 10636-10379 Maybe Monthly Rollup 4054171 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055270 3122655 10636-10379 Maybe Security Only 4054993 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055266 4049017, 4041085 10636-10483 Maybe Monthly Rollup 4054170 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055271 3122654 10636-10483 Maybe Security Only 4054993 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055266 4049017, 4041085 10636-10543 Maybe Monthly Rollup 4054170 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055271 3122654 10636-10543 Maybe Security Only 4074880 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055532 4041083; 4049016 11451-10047 Maybe Monthly Rollup 4054183 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055269 3122661 11451-10047 Maybe Security Only 4074880 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055532 4049016, 4041083 11451-10048 Maybe Monthly Rollup 4054183 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055269 3122661 11451-10048 Maybe Security Only 4055001 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055266 4049017, 4041085 11451-10481 Maybe Monthly Rollup 4054182 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055271 3122660 11451-10481 Maybe Security Only 4055001 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055266 4049017, 4041085 11451-10482 Maybe Monthly Rollup 4054182 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055271 3122660 11451-10482 Maybe Security Only 4074880 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055532 4049016, 4041083 11451-10051 Maybe Monthly Rollup 4054183 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055269 3122661 11451-10051 Maybe Security Only 4074880 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055532 4049016, 4041083 11451-10049 Maybe Monthly Rollup 4054183 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055269 3122661 11451-10049 Maybe Security Only 4055000 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055265 4049018, 4041084 11451-10378 Maybe Monthly Rollup 4054181 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055270 3122658 11451-10378 Maybe Security Only 4055000 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055265 4049018, 4041084 11451-10379 Maybe Monthly Rollup 4054181 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055270 3122658 11451-10379 Maybe Security Only 4055001 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055266 4049017, 4041085 11451-10483 Maybe Monthly Rollup 4054182 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055271 3122660 11451-10483 Maybe Security Only 4055001 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055266 4049017, 4041085 11451-10543 Maybe Monthly Rollup 4054182 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4055271 3122660 11451-10543 Maybe Security Only 2.0 2018-01-18T08:00:00Z <p>To address a regression issue after installing security update 4055002, Microsoft has released security update 4074880 for Microsoft .NET 4.6/4.6.1/4.6.2/4.7/4.7.1 installed on supported editions of Windows 7 and Windows Server 2008 R2. Customers who have already installed KB4055002 should install KB4074880 to be protected from this vulnerability.</p> 3.0 2018-01-25T08:00:00Z <p>Revised the Affected Products table to include PowerShell Core 6.0.0 because it is affected by CVE-2018-0764. See https://github.com/PowerShell/Announcements/issues/2 for more information.</p> 1.0 2018-01-09T08:00:00Z <p>Information published.</p> Scripting Engine Memory Corruption Vulnerability <p>A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Microsoft Edge (HTML-based). The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user. An attacker who successfully exploited the vulnerability could gain the same user rights as the current user. If the current user is logged on with administrative user rights, an attacker who successfully exploited the vulnerability could take control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.</p> <p>In a web-based attack scenario, an attacker could host a specially crafted website that is designed to exploit the vulnerability through Microsoft Edge (HTML-based) and then convince a user to view the website. The attacker could also take advantage of compromised websites and websites that accept or host user-provided content or advertisements. These websites could contain specially crafted content that could exploit the vulnerability.</p> <p>The security update addresses the vulnerability by modifying how the scripting engine handles objects in memory.</p> Microsoft Scripting Engine CVE-2018-0769 11447 10724-10951 10724-10952 10724-11453 10724-11454 10724-10729 10724-10735 10724-10789 10724-10788 10724-10852 10724-10853 10724-10816 Remote Code Execution 11447 Remote Code Execution 10724-10951 Remote Code Execution 10724-10952 Remote Code Execution 10724-11453 Remote Code Execution 10724-11454 Remote Code Execution 10724-10729 Remote Code Execution 10724-10735 Remote Code Execution 10724-10789 Remote Code Execution 10724-10788 Remote Code Execution 10724-10852 Remote Code Execution 10724-10853 Remote Code Execution 10724-10816 Critical 11447 Critical 10724-10951 Critical 10724-10952 Critical 10724-11453 Critical 10724-11454 Critical 10724-10729 Critical 10724-10735 Critical 10724-10789 Critical 10724-10788 Critical 10724-10852 Critical 10724-10853 Moderate 10724-10816 Publicly Disclosed:No;Exploited:No;Latest Software Release:Exploitation More Likely;Older Software Release:N/A;DOS:N/A 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 11447 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-10951 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-10952 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-11453 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-11454 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-10729 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-10735 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-10789 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-10788 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-10852 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-10853 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-10816 Commit https://github.com/Microsoft/ChakraCore/releases/tag/v1.7.6 11447 Yes Security Update 4056891 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056891 4053580 10724-10951 Yes Security Update 4056891 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056891 4053580 10724-10952 Yes Security Update 4056892 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056892 4054517 10724-11453 Yes Security Update 4056892 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056892 4054517 10724-11454 Yes Security Update 4056893 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056893 4053581 10724-10729 Yes Security Update 4056893 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056893 4053581 10724-10735 Yes Security Update 4056888 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056888 4053578 10724-10789 Yes Security Update 4056888 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056888 4053578 10724-10788 Yes Security Update 4056890 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056890 4053579 10724-10852 Yes Security Update 4056890 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056890 4053579 10724-10853 Yes Security Update 4056890 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056890 4053579 10724-10816 Yes Security Update Lokihardt of <a href="https://www.google.com/">Google Project Zero</a> 2.0 2018-01-05T08:00:00Z <p>Revised the Affected Products table to include ChakraCore for this vulnerability.</p> 1.0 2018-01-03T08:00:00Z <p>Information published.</p> Scripting Engine Memory Corruption Vulnerability <p>A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Microsoft Edge (HTML-based). The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user. An attacker who successfully exploited the vulnerability could gain the same user rights as the current user. If the current user is logged on with administrative user rights, an attacker who successfully exploited the vulnerability could take control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.</p> <p>In a web-based attack scenario, an attacker could host a specially crafted website that is designed to exploit the vulnerability through Microsoft Edge (HTML-based) and then convince a user to view the website. The attacker could also take advantage of compromised websites and websites that accept or host user-provided content or advertisements. These websites could contain specially crafted content that could exploit the vulnerability.</p> <p>The security update addresses the vulnerability by modifying how the scripting engine handles objects in memory.</p> Microsoft Scripting Engine CVE-2018-0770 11447 10724-10951 10724-10952 10724-10729 10724-10735 10724-10789 10724-10788 10724-10852 10724-10853 10724-10816 10724-11453 10724-11454 Remote Code Execution 11447 Remote Code Execution 10724-10951 Remote Code Execution 10724-10952 Remote Code Execution 10724-10729 Remote Code Execution 10724-10735 Remote Code Execution 10724-10789 Remote Code Execution 10724-10788 Remote Code Execution 10724-10852 Remote Code Execution 10724-10853 Remote Code Execution 10724-10816 Remote Code Execution 10724-11453 Remote Code Execution 10724-11454 Critical 11447 Critical 10724-10951 Critical 10724-10952 Critical 10724-10729 Critical 10724-10735 Critical 10724-10789 Critical 10724-10788 Critical 10724-10852 Critical 10724-10853 Moderate 10724-10816 Critical 10724-11453 Critical 10724-11454 Publicly Disclosed:No;Exploited:No;Latest Software Release:Exploitation More Likely;Older Software Release:N/A 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 11447 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-10951 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-10952 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-10729 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-10735 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-10789 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-10788 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-10852 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-10853 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-10816 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-11453 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-11454 Commit https://github.com/Microsoft/ChakraCore/releases/tag/v1.7.6 11447 Yes Security Update 4056891 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056891 4053580 10724-10951 Yes Security Update 4056891 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056891 4053580 10724-10952 Yes Security Update 4056893 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056893 4053581 10724-10729 Yes Security Update 4056893 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056893 4053581 10724-10735 Yes Security Update 4056888 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056888 4053578 10724-10789 Yes Security Update 4056888 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056888 4053578 10724-10788 Yes Security Update 4056890 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056890 4053579 10724-10852 Yes Security Update 4056890 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056890 4053579 10724-10853 Yes Security Update 4056890 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056890 4053579 10724-10816 Yes Security Update 4056892 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056892 4054517 10724-11453 Yes Security Update 4056892 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056892 4054517 10724-11454 Yes Security Update Lokihardt of <a href="https://www.google.com/">Google Project Zero</a> 2.0 2018-01-05T08:00:00Z <p>Revised the Affected Products table to include ChakraCore for this vulnerability.</p> 1.0 2018-01-03T08:00:00Z <p>Information published.</p> Scripting Engine Memory Corruption Vulnerability <p>A remote code execution vulnerability exists in the way the scripting engine handles objects in memory in Microsoft browsers. The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user. An attacker who successfully exploited the vulnerability could gain the same user rights as the current user. If the current user is logged on with administrative user rights, an attacker who successfully exploited the vulnerability could take control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.</p> <p>In a web-based attack scenario, an attacker could host a specially crafted website designed to exploit the vulnerability through a Microsoft browser and then convince a user to view the website. An attacker could also embed an ActiveX control marked &quot;safe for initialization&quot; in an application or Microsoft Office document that hosts the browser rendering engine. The attacker could also take advantage of compromised websites and websites that accept or host user-provided content or advertisements. These websites could contain specially crafted content that could exploit the vulnerability.</p> <p>The security update addresses the vulnerability by modifying how the scripting engine handles objects in memory.</p> Microsoft Browsers CVE-2018-0772 11447 10724-11453 10724-11454 10724-10951 10724-10952 10724-10729 10724-10735 10724-10789 10724-10788 10724-10852 10724-10853 10724-10816 10486-11453 10486-11454 10555-10378 10336-9312 10336-9318 10486-10951 10486-10952 10486-10729 10486-10735 10486-10789 10486-10788 10486-10852 10486-10853 10486-10816 10486-10047 10486-10048 10486-10481 10486-10482 10486-10484 10486-10051 10486-10483 Remote Code Execution 11447 Remote Code Execution 10724-11453 Remote Code Execution 10724-11454 Remote Code Execution 10724-10951 Remote Code Execution 10724-10952 Remote Code Execution 10724-10729 Remote Code Execution 10724-10735 Remote Code Execution 10724-10789 Remote Code Execution 10724-10788 Remote Code Execution 10724-10852 Remote Code Execution 10724-10853 Remote Code Execution 10724-10816 Remote Code Execution 10486-11453 Remote Code Execution 10486-11454 Remote Code Execution 10555-10378 Remote Code Execution 10336-9312 Remote Code Execution 10336-9318 Remote Code Execution 10486-10951 Remote Code Execution 10486-10952 Remote Code Execution 10486-10729 Remote Code Execution 10486-10735 Remote Code Execution 10486-10789 Remote Code Execution 10486-10788 Remote Code Execution 10486-10852 Remote Code Execution 10486-10853 Remote Code Execution 10486-10816 Remote Code Execution 10486-10047 Remote Code Execution 10486-10048 Remote Code Execution 10486-10481 Remote Code Execution 10486-10482 Remote Code Execution 10486-10484 Remote Code Execution 10486-10051 Remote Code Execution 10486-10483 Critical 11447 Critical 10724-11453 Critical 10724-11454 Critical 10724-10951 Critical 10724-10952 Critical 10724-10729 Critical 10724-10735 Critical 10724-10789 Critical 10724-10788 Critical 10724-10852 Critical 10724-10853 Moderate 10724-10816 Critical 10486-11453 Critical 10486-11454 Moderate 10555-10378 Moderate 10336-9312 Moderate 10336-9318 Critical 10486-10951 Critical 10486-10952 Critical 10486-10729 Critical 10486-10735 Critical 10486-10789 Critical 10486-10788 Critical 10486-10852 Critical 10486-10853 Moderate 10486-10816 Critical 10486-10047 Critical 10486-10048 Critical 10486-10481 Critical 10486-10482 Critical 10486-10484 Moderate 10486-10051 Moderate 10486-10483 Publicly Disclosed:No;Exploited:No;Latest Software Release:Exploitation More Likely;Older Software Release:N/A;DOS:N/A 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 11447 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-11453 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-11454 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-10951 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-10952 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-10729 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-10735 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-10789 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-10788 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-10852 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-10853 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-10816 7.5 6.7 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C 10486-11453 7.5 6.7 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C 10486-11454 6.4 5.8 CVSS:3.0/AV:N/AC:H/PR:H/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C 10555-10378 6.4 5.8 CVSS:3.0/AV:N/AC:H/PR:H/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C 10336-9312 6.4 5.8 CVSS:3.0/AV:N/AC:H/PR:H/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C 10336-9318 7.5 6.7 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C 10486-10951 7.5 6.7 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C 10486-10952 7.5 6.7 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C 10486-10729 7.5 6.7 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C 10486-10735 7.5 6.7 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C 10486-10789 7.5 6.7 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C 10486-10788 7.5 6.7 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C 10486-10852 7.5 6.7 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C 10486-10853 6.4 5.8 CVSS:3.0/AV:N/AC:H/PR:H/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C 10486-10816 7.5 6.7 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C 10486-10047 7.5 6.7 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C 10486-10048 7.5 6.7 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C 10486-10481 7.5 6.7 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C 10486-10482 7.5 6.7 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C 10486-10484 6.4 5.8 CVSS:3.0/AV:N/AC:H/PR:H/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C 10486-10051 6.4 5.8 CVSS:3.0/AV:N/AC:H/PR:H/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C 10486-10483 Commit https://github.com/Microsoft/ChakraCore/releases/tag/v1.7.6 11447 Yes Security Update 4056892 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056892 4054517 10724-11453 Yes Security Update 4056892 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056892 4054517 10724-11454 Yes Security Update 4056891 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056891 4053580 10724-10951 Yes Security Update 4056891 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056891 4053580 10724-10952 Yes Security Update 4056893 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056893 4053581 10724-10729 Yes Security Update 4056893 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056893 4053581 10724-10735 Yes Security Update 4056888 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056888 4053578 10724-10789 Yes Security Update 4056888 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056888 4053578 10724-10788 Yes Security Update 4056890 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056890 4053579 10724-10852 Yes Security Update 4056890 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056890 4053579 10724-10853 Yes Security Update 4056890 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056890 4053579 10724-10816 Yes Security Update 4056892 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056892 4054517 10486-11453 Yes Security Update 4056892 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056892 4054517 10486-11454 Yes Security Update 4056896 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056896 4054520 10555-10378 Yes Monthly Rollup 4056568 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056568 4052978 10555-10378 Yes IE Cumulative 4056568 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056568 4052978 10336-9312 Yes IE Cumulative 4056568 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056568 4052978 10336-9318 Yes IE Cumulative 4056891 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056891 4053580 10486-10951 Yes Security Update 4056891 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056891 4053580 10486-10952 Yes Security Update 4056893 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056893 4053581 10486-10729 Yes Security Update 4056893 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056893 4053581 10486-10735 Yes Security Update 4056888 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056888 4053578 10486-10789 Yes Security Update 4056888 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056888 4053578 10486-10788 Yes Security Update 4056890 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056890 4053579 10486-10852 Yes Security Update 4056890 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056890 4053579 10486-10853 Yes Security Update 4056890 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056890 4053579 10486-10816 Yes Security Update 4056894 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056894 4054518 10486-10047 Yes Monthly Rollup 4056568 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056568 4052978 10486-10047 Yes IE Cumulative 4056894 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056894 4054518 10486-10048 Yes Monthly Rollup 4056568 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056568 4052978 10486-10048 Yes IE Cumulative 4056895 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056895 4054519 10486-10481 Yes Monthly Rollup 4056568 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056568 4052978 10486-10481 Yes IE Cumulative 4056895 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056895 4054519 10486-10482 Yes Monthly Rollup 4056568 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056568 4052978 10486-10482 Yes IE Cumulative 4056895 4054519 10486-10484 Yes Monthly Rollup 4056894 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056894 4054518 10486-10051 Yes Monthly Rollup 4056568 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056568 4052978 10486-10051 Yes IE Cumulative 4056895 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056895 4054519 10486-10483 Yes Monthly Rollup 4056568 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056568 4052978 10486-10483 Yes IE Cumulative <a href="https://twitter.com/bo13oy">bo13oy</a> of <a href="https://www.360.com">Qihoo 360 Vulcan Team</a>​ Anonymous working with <a href="http://www.zerodayinitiative.com/">Trend Micro's Zero Day Initiative</a> 2.0 2018-01-05T08:00:00Z <p>Revised the Affected Products table to include ChakraCore for this vulnerability.</p> 1.0 2018-01-03T08:00:00Z <p>Information published.</p> Scripting Engine Memory Corruption Vulnerability <p>A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Microsoft Edge (HTML-based). The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user. An attacker who successfully exploited the vulnerability could gain the same user rights as the current user. If the current user is logged on with administrative user rights, an attacker who successfully exploited the vulnerability could take control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.</p> <p>In a web-based attack scenario, an attacker could host a specially crafted website that is designed to exploit the vulnerability through Microsoft Edge (HTML-based) and then convince a user to view the website. The attacker could also take advantage of compromised websites and websites that accept or host user-provided content or advertisements. These websites could contain specially crafted content that could exploit the vulnerability.</p> <p>The security update addresses the vulnerability by modifying how the scripting engine handles objects in memory.</p> Microsoft Scripting Engine CVE-2018-0775 11447 10724-11453 10724-11454 Remote Code Execution 11447 Remote Code Execution 10724-11453 Remote Code Execution 10724-11454 Critical 11447 Critical 10724-11453 Critical 10724-11454 Publicly Disclosed:No;Exploited:No;Latest Software Release:Exploitation More Likely;Older Software Release:N/A;DOS:N/A 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 11447 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-11453 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-11454 Commit https://github.com/Microsoft/ChakraCore/releases/tag/v1.7.6 11447 Yes Security Update 4056892 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056892 4054517 10724-11453 Yes Security Update 4056892 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056892 4054517 10724-11454 Yes Security Update Lokihardt of <a href="https://www.google.com/">Google Project Zero</a> 2.0 2018-01-05T08:00:00Z <p>Revised the Affected Products table to include ChakraCore for this vulnerability.</p> 1.0 2018-01-03T08:00:00Z <p>Information published.</p> Scripting Engine Memory Corruption Vulnerability <p>A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Microsoft Edge (HTML-based). The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user. An attacker who successfully exploited the vulnerability could gain the same user rights as the current user. If the current user is logged on with administrative user rights, an attacker who successfully exploited the vulnerability could take control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.</p> <p>In a web-based attack scenario, an attacker could host a specially crafted website that is designed to exploit the vulnerability through Microsoft Edge (HTML-based) and then convince a user to view the website. The attacker could also take advantage of compromised websites and websites that accept or host user-provided content or advertisements. These websites could contain specially crafted content that could exploit the vulnerability.</p> <p>The security update addresses the vulnerability by modifying how the scripting engine handles objects in memory.</p> Microsoft Scripting Engine CVE-2018-0776 11447 10724-10951 10724-10952 10724-11453 10724-11454 10724-10729 10724-10735 10724-10789 10724-10788 10724-10852 10724-10853 10724-10816 Remote Code Execution 11447 Remote Code Execution 10724-10951 Remote Code Execution 10724-10952 Remote Code Execution 10724-11453 Remote Code Execution 10724-11454 Remote Code Execution 10724-10729 Remote Code Execution 10724-10735 Remote Code Execution 10724-10789 Remote Code Execution 10724-10788 Remote Code Execution 10724-10852 Remote Code Execution 10724-10853 Remote Code Execution 10724-10816 Critical 11447 Critical 10724-10951 Critical 10724-10952 Critical 10724-11453 Critical 10724-11454 Critical 10724-10729 Critical 10724-10735 Critical 10724-10789 Critical 10724-10788 Critical 10724-10852 Critical 10724-10853 Moderate 10724-10816 Publicly Disclosed:No;Exploited:No;Latest Software Release:Exploitation More Likely;Older Software Release:N/A;DOS:N/A 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 11447 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-10951 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-10952 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-11453 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-11454 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-10729 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-10735 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-10789 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-10788 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-10852 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-10853 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-10816 Commit https://github.com/Microsoft/ChakraCore/releases/tag/v1.7.6 11447 Yes Security Update 4056891 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056891 4053580 10724-10951 Yes Security Update 4056891 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056891 4053580 10724-10952 Yes Security Update 4056892 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056892 4054517 10724-11453 Yes Security Update 4056892 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056892 4054517 10724-11454 Yes Security Update 4056893 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056893 4053581 10724-10729 Yes Security Update 4056893 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056893 4053581 10724-10735 Yes Security Update 4056888 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056888 4053578 10724-10789 Yes Security Update 4056888 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056888 4053578 10724-10788 Yes Security Update 4056890 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056890 4053579 10724-10852 Yes Security Update 4056890 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056890 4053579 10724-10853 Yes Security Update 4056890 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056890 4053579 10724-10816 Yes Security Update Lokihardt of <a href="https://www.google.com/">Google Project Zero</a> 2.0 2018-01-05T08:00:00Z <p>Revised the Affected Products table to include ChakraCore for this vulnerability.</p> 1.0 2018-01-03T08:00:00Z <p>Information published.</p> Scripting Engine Memory Corruption Vulnerability <p>A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Microsoft Edge (HTML-based). The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user. An attacker who successfully exploited the vulnerability could gain the same user rights as the current user. If the current user is logged on with administrative user rights, an attacker who successfully exploited the vulnerability could take control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.</p> <p>In a web-based attack scenario, an attacker could host a specially crafted website that is designed to exploit the vulnerability through Microsoft Edge (HTML-based) and then convince a user to view the website. The attacker could also take advantage of compromised websites and websites that accept or host user-provided content or advertisements. These websites could contain specially crafted content that could exploit the vulnerability.</p> <p>The security update addresses the vulnerability by modifying how the scripting engine handles objects in memory.</p> Microsoft Scripting Engine CVE-2018-0777 11447 10724-10951 10724-10952 10724-11453 10724-11454 10724-10729 10724-10735 10724-10789 10724-10788 10724-10852 10724-10853 10724-10816 Remote Code Execution 11447 Remote Code Execution 10724-10951 Remote Code Execution 10724-10952 Remote Code Execution 10724-11453 Remote Code Execution 10724-11454 Remote Code Execution 10724-10729 Remote Code Execution 10724-10735 Remote Code Execution 10724-10789 Remote Code Execution 10724-10788 Remote Code Execution 10724-10852 Remote Code Execution 10724-10853 Remote Code Execution 10724-10816 Critical 11447 Critical 10724-10951 Critical 10724-10952 Critical 10724-11453 Critical 10724-11454 Critical 10724-10729 Critical 10724-10735 Critical 10724-10789 Critical 10724-10788 Critical 10724-10852 Critical 10724-10853 Critical 10724-10816 Publicly Disclosed:No;Exploited:No;Latest Software Release:Exploitation More Likely;Older Software Release:N/A;DOS:N/A 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 11447 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-10951 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-10952 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-11453 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-11454 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-10729 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-10735 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-10789 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-10788 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-10852 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-10853 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-10816 Commit https://github.com/Microsoft/ChakraCore/releases/tag/v1.7.6 11447 Yes Security Update 4056891 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056891 4053580 10724-10951 Yes Security Update 4056891 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056891 4053580 10724-10952 Yes Security Update 4056892 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056892 4054517 10724-11453 Yes Security Update 4056892 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056892 4054517 10724-11454 Yes Security Update 4056893 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056893 4053581 10724-10729 Yes Security Update 4056893 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056893 4053581 10724-10735 Yes Security Update 4056888 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056888 4053578 10724-10789 Yes Security Update 4056888 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056888 4053578 10724-10788 Yes Security Update 4056890 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056890 4053579 10724-10852 Yes Security Update 4056890 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056890 4053579 10724-10853 Yes Security Update 4056890 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056890 4053579 10724-10816 Yes Security Update Lokihardt of <a href="https://www.google.com/">Google Project Zero</a> 2.0 2018-01-05T08:00:00Z <p>Revised the Affected Products table to include ChakraCore for this vulnerability.</p> 1.0 2018-01-03T08:00:00Z <p>Information published.</p> Scripting Engine Memory Corruption Vulnerability <p>A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Microsoft Edge (HTML-based). The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user. An attacker who successfully exploited the vulnerability could gain the same user rights as the current user. If the current user is logged on with administrative user rights, an attacker who successfully exploited the vulnerability could take control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.</p> <p>In a web-based attack scenario, an attacker could host a specially crafted website that is designed to exploit the vulnerability through Microsoft Edge (HTML-based) and then convince a user to view the website. The attacker could also take advantage of compromised websites and websites that accept or host user-provided content or advertisements. These websites could contain specially crafted content that could exploit the vulnerability.</p> <p>The security update addresses the vulnerability by modifying how the scripting engine handles objects in memory.</p> Microsoft Scripting Engine CVE-2018-0778 11447 10724-11453 10724-11454 Remote Code Execution 11447 Remote Code Execution 10724-11453 Remote Code Execution 10724-11454 Critical 11447 Critical 10724-11453 Critical 10724-11454 Publicly Disclosed:No;Exploited:No;Latest Software Release:Exploitation Unlikely;Older Software Release:Exploitation Unlikely;DOS:N/A 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 11447 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-11453 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-11454 Commit https://github.com/Microsoft/ChakraCore/releases/tag/v1.7.6 11447 Yes Security Update 4056892 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056892 4054517 10724-11453 Yes Security Update 4056892 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056892 4054517 10724-11454 Yes Security Update 2.0 2018-01-05T08:00:00Z <p>Revised the Affected Products table to include ChakraCore for this vulnerability.</p> 1.0 2018-01-03T08:00:00Z <p>Information published.</p> Chakra Scripting Engine Memory Corruption Vulnerability <p>A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge (HTML-based). The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user. An attacker who successfully exploited the vulnerability could gain the same user rights as the current user. If the current user is logged on with administrative user rights, an attacker who successfully exploited the vulnerability could take control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.</p> <p>In a web-based attack scenario, an attacker could host a specially crafted website that is designed to exploit the vulnerability through Microsoft Edge (HTML-based) and then convince a user to view the website. The attacker could also take advantage of compromised websites and websites that accept or host user-provided content or advertisements. These websites could contain specially crafted content that could exploit the vulnerability.</p> <p>The security update addresses the vulnerability by modifying how the Chakra scripting engine handles objects in memory.</p> Microsoft Scripting Engine CVE-2018-0780 11447 10724-10951 10724-10952 10724-11453 10724-11454 10724-10729 10724-10735 10724-10789 10724-10788 10724-10852 10724-10853 10724-10816 Information Disclosure 11447 Information Disclosure 10724-10951 Information Disclosure 10724-10952 Information Disclosure 10724-11453 Information Disclosure 10724-11454 Information Disclosure 10724-10729 Information Disclosure 10724-10735 Information Disclosure 10724-10789 Information Disclosure 10724-10788 Information Disclosure 10724-10852 Information Disclosure 10724-10853 Information Disclosure 10724-10816 Critical 11447 Critical 10724-10951 Critical 10724-10952 Critical 10724-11453 Critical 10724-11454 Critical 10724-10729 Critical 10724-10735 Critical 10724-10789 Critical 10724-10788 Critical 10724-10852 Critical 10724-10853 Moderate 10724-10816 Publicly Disclosed:No;Exploited:No;Latest Software Release:Exploitation More Likely;Older Software Release:N/A;DOS:N/A 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 11447 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-10951 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-10952 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-11453 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-11454 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-10729 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-10735 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-10789 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-10788 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-10852 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-10853 4.2 3.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C 10724-10816 Commit https://github.com/Microsoft/ChakraCore/releases/tag/v1.7.6 11447 Yes Security Update 4056891 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056891 4053580 10724-10951 Yes Security Update 4056891 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056891 4053580 10724-10952 Yes Security Update 4056892 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056892 4054517 10724-11453 Yes Security Update 4056892 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056892 4054517 10724-11454 Yes Security Update 4056893 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056893 4053581 10724-10729 Yes Security Update 4056893 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056893 4053581 10724-10735 Yes Security Update 4056888 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056888 4053578 10724-10789 Yes Security Update 4056888 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056888 4053578 10724-10788 Yes Security Update 4056890 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056890 4053579 10724-10852 Yes Security Update 4056890 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056890 4053579 10724-10853 Yes Security Update 4056890 https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4056890 4053579 10724-10816 Yes Security Update Lokihardt of <a href="https://www.google.com/">Google Project Zero</a> 2.0 2018-01-05T08:00:00Z <p>Revised the Affected Products table to include ChakraCore for this vulnerability.</p> 1.0 2018-01-03T08:00:00Z <p>Information published.</p> ASP.NET Core Cross Site Request Forgery Vulnerabilty <p>A Cross Site Request Forgery (CSRF) vulnerability exists when a ASP.NET Core web application is created using vulnerable project templates.</p> <p>An attacker who successfully exploited this vulnerability could change the recovery codes associated with the victim's user account without his/her consent. As a result, a victim of this attack may be permanently locked out of his/her account after loosing access to his/her 2FA device, as the initial recovery codes would be no longer valid.</p> <p>The update corrects the ASP.NET Core project templates.</p> <p><strong>What does the update do?</strong> The update corrects the project templates for ####. The template updates only affect new applications. For this reason, Microsoft strongly recommends that developers who have built web applications using these templates take immediate action to evaluate their web applications for exposure to the vulnerability, and then use the workarounds in the Suggested Actions section to make code changes to update their applications to protect them from the vulnerability.</p> <p>If you are running Visual Studio 2013, you need to use the workaround steps listed in the Suggested Actions section to update your applications manually every time you use the affected templates.</p> <p><strong>How do I apply the update?</strong></p> <ol> <li>Start Visual Studio.</li> <li>Under the Tools menu, choose Extensions and Updates.</li> <li>Expand the Updates tree.</li> <li>Under Product Updates locate the following two entries: • Microsoft ASP.NET and Web Tools • Microsoft ASP.NET Web Frameworks and Tools</li> <li>Select each update and click Update.</li> </ol> <p><strong>Suggested Actions</strong> The following workaround information details the changes that you must make to existing applications created from the ASP.NET project templates. Visual Studio 2015 MVC 5 and Visual Studio 2013 MVC 5 For C#</p> ASP.NET CVE-2018-0785 11460 Tampering 11460 Moderate 11460 Publicly Disclosed:No;Exploited:No;Latest Software Release:Exploitation Unlikely;Older Software Release:Exploitation Unlikely Commit https://github.com/aspnet/Announcements/issues/284 11460 Yes Security Update <a href="http://kevinchalet.com/">Kévin Chalet</a> 1.0 2018-01-09T08:00:00Z <p>Information published.</p> Microsoft SharePoint Elevation of Privilege Vulnerability <p>An elevation of privilege vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server. An authenticated attacker could exploit the vulnerability by sending a specially crafted request to an affected SharePoint server.</p> <p>The attacker who successfully exploited the vulnerability could then perform cross-site scripting attacks on affected systems and run script in the security context of the current user. These attacks could allow the attacker to read content that the attacker is not authorized to read, use the victim's identity to take actions on the SharePoint site on behalf of the user, such as change permissions and delete content, and inject malicious content in the browser of the user.</p> <p>The security update addresses the vulnerability by helping to ensure that SharePoint Server properly sanitizes web requests.</p> Microsoft Office CVE-2018-0789 10120 10950 11099 Spoofing 10120 Spoofing 10950 Spoofing 11099 Important 10120 Important 10950 Important 11099 Publicly Disclosed:No;Exploited:No;Latest Software Release:Exploitation Less Likely;Older Software Release:Exploitation Less Likely 3114998 https://www.microsoft.com/downloads/details.aspx?familyid=946c97a8-f997-4366-b4e0-6c65f2cc029c 2956077 10120 Maybe Security Update 4011642 https://www.microsoft.com/downloads/details.aspx?familyid=8aead024-423a-453e-b444-34b08aa6a255 4011576 10950 Maybe Security Update 4011653 https://www.microsoft.com/downloads/details.aspx?familyid=6f0015d6-c52a-4feb-8c24-96a0667214b7 4011180 11099 Maybe Security Update <a href="https://twitter.com/soaj1664ashar">Ashar Javed</a> of <a href="https://www.hyundai-autoever.eu/">Hyundai AutoEver Europe GmbH</a> 1.0 2018-01-09T08:00:00Z <p>Information published.</p> Microsoft SharePoint Elevation of Privilege Vulnerability <p>An elevation of privilege vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server. An authenticated attacker could exploit the vulnerability by sending a specially crafted request to an affected SharePoint server.</p> <p>The attacker who successfully exploited the vulnerability could then perform cross-site scripting attacks on affected systems and run script in the security context of the current user. These attacks could allow the attacker to read content that the attacker is not authorized to read, use the victim's identity to take actions on the SharePoint site on behalf of the user, such as change permissions and delete content, and inject malicious content in the browser of the user.</p> <p>The security update addresses the vulnerability by helping to ensure that SharePoint Server properly sanitizes web requests.</p> Microsoft Office CVE-2018-0790 10950 10505 11099 Information Disclosure 10950 Information Disclosure 10505 Information Disclosure 11099 Important 10950 Important 10505 Important 11099 Publicly Disclosed:No;Exploited:No;Latest Software Release:Exploitation Less Likely;Older Software Release:Exploitation Less Likely 4011642 https://www.microsoft.com/downloads/details.aspx?familyid=8aead024-423a-453e-b444-34b08aa6a255 4011576 10950 Maybe Security Update 3141547 https://www.microsoft.com/downloads/details.aspx?familyid=11c90584-a7b0-43ce-badd-8a24845900b1 3114890 10505 Maybe Security Update 4011653 https://www.microsoft.com/downloads/details.aspx?familyid=6f0015d6-c52a-4feb-8c24-96a0667214b7 4011180 11099 Maybe Security Update 1.0 2018-01-09T08:00:00Z <p>Information published.</p> Microsoft Office Remote Code Execution Vulnerability <p>A remote code execution vulnerability exists in the way that Microsoft Offiice parses specially crafted email messages. An attacker who successfully exploited the vulnerability could take control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.</p> <p>Exploitation of this vulnerability requires that a user open a specially crafted file with an affected version of Microsoft Offiice. In an email attack scenario, an attacker could exploit the vulnerability by sending a specially crafted file to the user and then convincing the user to open the file.</p> <p>The security update addresses the vulnerability by correcting the way that Microsoft Offiice parses specially crafted email messages.</p> Microsoft Office CVE-2018-0791 10765 10766 10810 10811 10156 10527 10528 10407 10905 10906 Remote Code Execution 10765 Remote Code Execution 10766 Remote Code Execution 10810 Remote Code Execution 10811 Remote Code Execution 10156 Remote Code Execution 10527 Remote Code Execution 10528 Remote Code Execution 10407 Remote Code Execution 10905 Remote Code Execution 10906 Important 10765 Important 10766 Important 10810 Important 10811 Important 10156 Important 10527 Important 10528 Important 10407 Important 10905 Important 10906 Publicly Disclosed:No;Exploited:No;Latest Software Release:Exploitation Less Likely;Older Software Release:Exploitation Less Likely 4011626 https://www.microsoft.com/downloads/details.aspx?familyid=2ca9f5db-962e-4e15-9228-fa65f97238b9 4011162 10765 Maybe Security Update 4011626 https://www.microsoft.com/downloads/details.aspx?familyid=06920838-15d8-41bd-9b36-daeaf8d7eb9b 4011162 10766 Maybe Security Update 4011637 https://www.microsoft.com/downloads/details.aspx?familyid=8979392e-46e6-4822-b5ba-e1c0bcfdd725 4011178 10810 Maybe Security Update 4011637 https://www.microsoft.com/downloads/details.aspx?familyid=192a2f1b-076e-4907-9d10-785298ffed50 4011178 10811 Maybe Security Update 4011213 https://www.microsoft.com/downloads/details.aspx?familyid=35620999-fe58-4ada-a4be-22b83e92b793 4011110 10156 Maybe Security Update 4011273 https://www.microsoft.com/downloads/details.aspx?familyid=257ddf9c-ed35-4237-9e73-39f8e0f972b9 4011196 10527 Maybe Security Update 4011273 https://www.microsoft.com/downloads/details.aspx?familyid=a8c42a4a-bab0-42d6-ad8a-be153168254a 4011196 10528 Maybe Security Update 4011637 4011178 10407 Maybe Security Update Click to Run 10905 Maybe Security Update Click to Run 10906 No Security Update <a href=https://twitter.com/n_joly>Nicolas Joly</a> of Microsoft Corporation 1.0 2018-01-09T08:00:00Z <p>Information published.</p> Microsoft Office Remote Code Execution Vulnerability <p>A remote code execution vulnerability exists in Microsoft Office software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on with administrative user rights, an attacker could take control of the affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.</p> <p>Exploitation of the vulnerability requires that a user open a specially crafted file with an affected version of Microsoft Office. In an email attack scenario, an attacker could exploit the vulnerability by sending the specially crafted file to the user and convincing the user to open the file. In a web-based attack scenario, an attacker could host a website (or leverage a compromised website that accepts or hosts user-provided content) containing a specially crafted file designed to exploit the vulnerability. An attacker would have no way to force users to visit the website. Instead, an attacker would have to convince users to click a link, typically by way of an enticement in an email or instant message, and then convince them to open the specially crafted file.</p> <p>The security update addresses the vulnerability by correcting how Microsoft Office handles objects in memory.</p> Microsoft Office CVE-2018-0792 10950 10748 10746 10747 10734 10905 10906 Remote Code Execution 10950 Remote Code Execution 10748 Remote Code Execution 10746 Remote Code Execution 10747 Remote Code Execution 10734 Remote Code Execution 10905 Remote Code Execution 10906 Important 10950 Important 10748 Important 10746 Important 10747 Important 10734 Important 10905 Important 10906 Publicly Disclosed:No;Exploited:No;Latest Software Release:Exploitation Less Likely;Older Software Release:Exploitation Less Likely 4011642 https://www.microsoft.com/downloads/details.aspx?familyid=8aead024-423a-453e-b444-34b08aa6a255 4011576 10950 Maybe Security Update 4011022 https://www.microsoft.com/downloads/details.aspx?familyid=ec6462a7-5165-4610-90c4-9c846f90fa02 4011021 10748 Maybe Security Update 4011643 https://www.microsoft.com/downloads/details.aspx?familyid=919fcd04-b72d-4dc5-9afa-a6fa30125e3f 4011575 10746 Maybe Security Update 4011643 https://www.microsoft.com/downloads/details.aspx?familyid=4cc2a1b6-6b5d-47b4-a463-81081dfc41c1 4011575 10747 Maybe Security Update Release Notes https://go.microsoft.com/fwlink/p/?linkid=831049 10734 No Security Update Click to Run 10905 Maybe Security Update Click to Run 10906 No Security Update <a href=http://www.twitter.com/debasishm89>Debasish Mandal</a> of <a href=https://www.mcafee.com>McAfee</a> 1.1 2018-01-10T08:00:00Z <p>The update for Microsoft Office 2016 for Mac will be available on 1/16/2018. Customers running affected Mac software should install the update at that time to be protected from this vulnerability. Customers running other Microsoft Office software do not need to take any action. See the <a href="https://go.microsoft.com/fwlink/p/?linkid=831049">Release Notes</a> for more information.</p> 2.0 2018-01-18T08:00:00Z <p>To address a known issue with installing security update 4011021, Microsoft is announcing the availability of security update 4011022 as a replacement. Customers who experienced problems installing 4011021 should install 4011022.</p> 3.0 2018-01-18T08:00:00Z <p>Microsoft is announcing the availability of the 16.9.18011602 update for Microsoft Office 2016 for Mac. Customers running affected Mac software should install the update for their product to be protected from this vulnerability. Customers running other Microsoft Office software do not need to take any action. See the <a href="https://go.microsoft.com/fwlink/p/?linkid=831049">Release Notes</a> for more information and download links.</p> 1.2 2018-01-17T08:00:00Z <p>Microsoft is working to provide an update for Microsoft Office 2016 for Mac as soon as possible. Customers running affected Mac software are encouraged to install the update when it is released to be protected from this vulnerability. Customers running other Microsoft Office software do not need to take any action.</p> 1.0 2018-01-09T08:00:00Z <p>Information published.</p> Microsoft Office Remote Code Execution Vulnerability <p>A remote code execution vulnerability exists in the way that Microsoft Offiice parses specially crafted email messages. An attacker who successfully exploited the vulnerability could take control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.</p> <p>Exploitation of this vulnerability requires that a user open a specially crafted file with an affected version of Microsoft Offiice. In an email attack scenario, an attacker could exploit the vulnerability by sending a specially crafted file to the user and then convincing the user to open the file.</p> <p>The security update addresses the vulnerability by correcting the way that Microsoft Offiice parses specially crafted email messages.</p> <p><strong>I have Microsoft Word 2010 installed. Why am I not being offered the 4011658 update?</strong> The 4011658 update only applies to systems running specific configurations of Microsoft Office 2010. Some configurations will not be offered the update.</p> <p><strong>I am being offered this update for software that is not specifically indicated as being affected in the Affected Software and Vulnerability Severity Ratings table. Why am I being offered this update?</strong> When updates address vulnerable code that exists in a component that is shared between multiple Microsoft Office products or shared between multiple versions of the same Microsoft Office product, the update is considered to be applicable to all supported products and versions that contain the vulnerable component.</p> <p>For example, when an update applies to Microsoft Office 2007 products, only Microsoft Office 2007 may be specifically listed in the Affected Software table. However, the update could apply to Microsoft Word 2007, Microsoft Excel 2007, Microsoft Visio 2007, Microsoft Compatibility Pack, Microsoft Excel Viewer, or any other Microsoft Office 2007 product that is not specifically listed in the Affected Software table. Furthermore, when an update applies to Microsoft Office 2010 products, only Microsoft Office 2010 may be specifically listed in the Affected Software table. However, the update could apply to Microsoft Word 2010, Microsoft Excel 2010, Microsoft Visio 2010, Microsoft Visio Viewer, or any other Microsoft Office 2010 product that is not specifically listed in the Affected Software table.</p> <p>For more information on this behavior and recommended actions, see <a href="https://support.microsoft.com/kb/830335">Microsoft Knowledge Base Article 830335</a>. For a list of Microsoft Office products that an update may apply to, refer to the Microsoft Knowledge Base Article associated with the specific update.</p> <p><strong>Why is there a separate update for Word Viewer</strong> The Word Viewer update (4011641) is only supported, and will only install from Microsoft Update, if it’s on Windows Embedded POSReady 2009. This is because Word Viewer ships pre-installed in Windows Embedded POSReady 2009, which is still in support. For other platforms, Word Viewer is no longer supported.</p> Microsoft Office CVE-2018-0793 10746 10747 10734 10905 10521 10522 4497 10162 10513 10514 10606 10604 10605 Remote Code Execution 10746 Remote Code Execution 10747 Remote Code Execution 10734 Remote Code Execution 10905 Remote Code Execution 10521 Remote Code Execution 10522 Remote Code Execution 4497 Remote Code Execution 10162 Remote Code Execution 10513 Remote Code Execution 10514 Remote Code Execution 10606 Remote Code Execution 10604 Remote Code Execution 10605 Important 10746 Important 10747 Important 10734 Important 10905 Important 10521 Important 10522 Important 4497 Important 10162 Important 10513 Important 10514 Important 10606 Important 10604 Important 10605 Publicly Disclosed:No;Exploited:No;Latest Software Release:Exploitation Less Likely;Older Software Release:Exploitation Less Likely 4011643 https://www.microsoft.com/downloads/details.aspx?familyid=919fcd04-b72d-4dc5-9afa-a6fa30125e3f 4011575 10746 Maybe Security Update 4011643 https://www.microsoft.com/downloads/details.aspx?familyid=4cc2a1b6-6b5d-47b4-a463-81081dfc41c1 4011575 10747 Maybe Security Update Release Notes https://go.microsoft.com/fwlink/p/?linkid=831049 10734 No Security Update Click to Run 10905 Maybe Security Update 4011658 https://www.microsoft.com/downloads/details.aspx?familyid=1b55fa1c-27a9-48f7-bfa9-a3945dc5f828 4011612 10521 Maybe Security Update 4011658 https://www.microsoft.com/downloads/details.aspx?familyid=11048fae-2735-48c9-9fbe-e10f29f5af89 4011612 10522 Maybe Security Update 4011607 https://www.microsoft.com/downloads/details.aspx?familyid=8a1593a2-62b7-4ac3-9c5c-e64e70edf7e5 4011265 4497 Maybe Security Update 4011657 https://www.microsoft.com/downloads/details.aspx?familyid=7e67f7a4-7838-4019-a894-939d8b7e0b7b 4011608 10162 Maybe Security Update 4011659 https://www.microsoft.com/downloads/details.aspx?familyid=2a266bf5-20d3-4a81-a447-3ba52cf10c0d 4011614 10513 Maybe Security Update 4011659 https://www.microsoft.com/downloads/details.aspx?familyid=7c7e1022-7a6e-44aa-8cae-5069a6d4aa76 4011614 10514 Maybe Security Update 4011651 10606 Maybe Security Update 4011651 https://www.microsoft.com/downloads/details.aspx?familyid=95bc77f3-0845-4af2-84cf-436070a6e8a1 4011590 10604 Maybe Security Update 4011651 https://www.microsoft.com/downloads/details.aspx?familyid=3e5b5dc2-cff0-48ae-9955-b1e0abc7e57c 4011590 10605 Maybe Security Update <a href="https://twitter.com/n_joly">Nicolas Joly</a> of Microsoft Corporation 1.1 2018-01-10T08:00:00Z <p>The update for Microsoft Office 2016 for Mac will be available on 1/16/2018. Customers running affected Mac software should install the update at that time to be protected from this vulnerability. Customers running other Microsoft Office software do not need to take any action. See the <a href="https://go.microsoft.com/fwlink/p/?linkid=831049">Release Notes</a> for more information.</p> 2.0 2018-01-18T08:00:00Z <p>Microsoft is announcing the availability of the 16.9.18011602 update for Microsoft Office 2016 for Mac. Customers running affected Mac software should install the update for their product to be protected from this vulnerability. Customers running other Microsoft Office software do not need to take any action. See the <a href="https://go.microsoft.com/fwlink/p/?linkid=831049">Release Notes</a> for more information and download links.</p> 1.2 2018-01-17T08:00:00Z <p>Microsoft is working to provide an update for Microsoft Office 2016 for Mac as soon as possible. Customers running affected Mac software are encouraged to install the update when it is released to be protected from this vulnerability. Customers running other Microsoft Office software do not need to take any action.</p> 1.0 2018-01-09T08:00:00Z <p>Information published.</p> Microsoft Office Remote Code Execution Vulnerability <p>A remote code execution vulnerability exists in Microsoft Office software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on with administrative user rights, an attacker could take control of the affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.</p> <p>Exploitation of the vulnerability requires that a user open a specially crafted file with an affected version of Microsoft Office. In an email attack scenario, an attacker could exploit the vulnerability by sending the specially crafted file to the user and convincing the user to open the file. In a web-based attack scenario, an attacker could host a website (or leverage a compromised website that accepts or hosts user-provided content) containing a specially crafted file designed to exploit the vulnerability. An attacker would have no way to force users to visit the website. Instead, an attacker would have to convince users to click a link, typically by way of an enticement in an email or instant message, and then convince them to open the specially crafted file.</p> <p>The security update addresses the vulnerability by correcting how Microsoft Office handles objects in memory.</p> <p><strong>I have Microsoft Word 2010 installed. Why am I not being offered the 4011658 update?</strong> The 4011658 update only applies to systems running specific configurations of Microsoft Office 2010. Some configurations will not be offered the update.</p> <p><strong>I am being offered this update for software that is not specifically indicated as being affected in the Affected Software and Vulnerability Severity Ratings table. Why am I being offered this update?</strong> When updates address vulnerable code that exists in a component that is shared between multiple Microsoft Office products or shared between multiple versions of the same Microsoft Office product, the update is considered to be applicable to all supported products and versions that contain the vulnerable component.</p> <p>For example, when an update applies to Microsoft Office 2007 products, only Microsoft Office 2007 may be specifically listed in the Affected Software table. However, the update could apply to Microsoft Word 2007, Microsoft Excel 2007, Microsoft Visio 2007, Microsoft Compatibility Pack, Microsoft Excel Viewer, or any other Microsoft Office 2007 product that is not specifically listed in the Affected Software table. Furthermore, when an update applies to Microsoft Office 2010 products, only Microsoft Office 2010 may be specifically listed in the Affected Software table. However, the update could apply to Microsoft Word 2010, Microsoft Excel 2010, Microsoft Visio 2010, Microsoft Visio Viewer, or any other Microsoft Office 2010 product that is not specifically listed in the Affected Software table.</p> <p>For more information on this behavior and recommended actions, see <a href="https://support.microsoft.com/kb/830335">Microsoft Knowledge Base Article 830335</a>. For a list of Microsoft Office products that an update may apply to, refer to the Microsoft Knowledge Base Article associated with the specific update.</p> <p><strong>Why is there a separate update for Word Viewer</strong> The Word Viewer update (4011641) is only supported, and will only install from Microsoft Update, if it’s on Windows Embedded POSReady 2009. This is because Word Viewer ships pre-installed in Windows Embedded POSReady 2009, which is still in support. For other platforms, Word Viewer is no longer supported.</p> Microsoft Office CVE-2018-0794 10746 10747 10734 10905 10906 10521 10522 4497 10162 10513 10514 10606 10604 10605 Remote Code Execution 10746 Remote Code Execution 10747 Remote Code Execution 10734 Remote Code Execution 10905 Remote Code Execution 10906 Remote Code Execution 10521 Remote Code Execution 10522 Remote Code Execution 4497 Remote Code Execution 10162 Remote Code Execution 10513 Remote Code Execution 10514 Remote Code Execution 10606 Remote Code Execution 10604 Remote Code Execution 10605 Important 10746 Important 10747 Important 10734 Important 10905 Important 10906 Important 10521 Important 10522 Important 4497 Important 10162 Important 10513 Important 10514 Important 10606 Important 10604 Important 10605 Publicly Disclosed:No;Exploited:No;Latest Software Release:Exploitation More Likely;Older Software Release:Exploitation More Likely 4011643 https://www.microsoft.com/downloads/details.aspx?familyid=919fcd04-b72d-4dc5-9afa-a6fa30125e3f 4011575 10746 Maybe Security Update 4011643 https://www.microsoft.com/downloads/details.aspx?familyid=4cc2a1b6-6b5d-47b4-a463-81081dfc41c1 4011575 10747 Maybe Security Update Release Notes https://go.microsoft.com/fwlink/p/?linkid=831049 10734 No Security Update Click to Run 10905 Maybe Security Update Click to Run 10906 No Security Update 4011658 https://www.microsoft.com/downloads/details.aspx?familyid=1b55fa1c-27a9-48f7-bfa9-a3945dc5f828 4011612 10521 Maybe Security Update 4011658 https://www.microsoft.com/downloads/details.aspx?familyid=11048fae-2735-48c9-9fbe-e10f29f5af89 4011612 10522 Maybe Security Update 4011607 https://www.microsoft.com/downloads/details.aspx?familyid=8a1593a2-62b7-4ac3-9c5c-e64e70edf7e5 4011265 4497 Maybe Security Update 4011657 https://www.microsoft.com/downloads/details.aspx?familyid=7e67f7a4-7838-4019-a894-939d8b7e0b7b 4011608 10162 Maybe Security Update 4011659 https://www.microsoft.com/downloads/details.aspx?familyid=2a266bf5-20d3-4a81-a447-3ba52cf10c0d 4011614 10513 Maybe Security Update 4011659 https://www.microsoft.com/downloads/details.aspx?familyid=7c7e1022-7a6e-44aa-8cae-5069a6d4aa76 4011614 10514 Maybe Security Update 4011651 10606 Maybe Security Update 4011651 https://www.microsoft.com/downloads/details.aspx?familyid=95bc77f3-0845-4af2-84cf-436070a6e8a1 4011590 10604 Maybe Security Update 4011651 https://www.microsoft.com/downloads/details.aspx?familyid=3e5b5dc2-cff0-48ae-9955-b1e0abc7e57c 4011590 10605 Maybe Security Update <a href=https://twitter.com/n_joly>Nicolas Joly</a> of Microsoft Corporation 1.1 2018-01-10T08:00:00Z <p>The update for Microsoft Office 2016 for Mac will be available on 1/16/2018. Customers running affected Mac software should install the update at that time to be protected from this vulnerability. Customers running other Microsoft Office software do not need to take any action. See the <a href="https://go.microsoft.com/fwlink/p/?linkid=831049">Release Notes</a> for more information.</p> 2.0 2018-01-18T08:00:00Z <p>Microsoft is announcing the availability of the 16.9.18011602 update for Microsoft Office 2016 for Mac. Customers running affected Mac software should install the update for their product to be protected from this vulnerability. Customers running other Microsoft Office software do not need to take any action. See the <a href="https://go.microsoft.com/fwlink/p/?linkid=831049">Release Notes</a> for more information and download links.</p> 1.2 2018-01-17T08:00:00Z <p>Microsoft is working to provide an update for Microsoft Office 2016 for Mac as soon as possible. Customers running affected Mac software are encouraged to install the update when it is released to be protected from this vulnerability. Customers running other Microsoft Office software do not need to take any action.</p> 1.0 2018-01-09T08:00:00Z <p>Information published.</p> Microsoft Excel Remote Code Execution Vulnerability <p>A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on with administrative user rights, an attacker could take control of the affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.</p> <p>Exploitation of the vulnerability requires that a user open a specially crafted file with an affected version of Microsoft Excel. In an email attack scenario, an attacker could exploit the vulnerability by sending the specially crafted file to the user and convincing the user to open the file. In a web-based attack scenario, an attacker could host a website (or leverage a compromised website that accepts or hosts user-provided content) containing a specially crafted file designed to exploit the vulnerability. An attacker would have no way to force users to visit the website. Instead, an attacker would have to convince users to click a link, typically by way of an enticement in an email or instant message, and then convince them to open the specially crafted file.</p> <p>The security update addresses the vulnerability by correcting how Microsoft Excel handles objects in memory.</p> Microsoft Office CVE-2018-0796 10739 10740 10902 10925 10152 10489 10490 10656 10654 10655 10279 4497 Remote Code Execution 10739 Remote Code Execution 10740 Remote Code Execution 10902 Remote Code Execution 10925 Remote Code Execution 10152 Remote Code Execution 10489 Remote Code Execution 10490 Remote Code Execution 10656 Remote Code Execution 10654 Remote Code Execution 10655 Remote Code Execution 10279 Remote Code Execution 4497 Important 10739 Important 10740 Important 10902 Important 10925 Important 10152 Important 10489 Important 10490 Important 10656 Important 10654 Important 10655 Important 10279 Important 4497 Publicly Disclosed:No;Exploited:No;Latest Software Release:Exploitation Less Likely;Older Software Release:Exploitation Less Likely 4011627 https://www.microsoft.com/downloads/details.aspx?familyid=6d682358-aaba-411e-adb6-884283abf193 4011220 10739 Maybe Security Update 4011627 https://www.microsoft.com/downloads/details.aspx?familyid=eb27e943-afc0-4df0-8ea8-0962f04ef2b7 4011220 10740 Maybe Security Update Click to Run 10902 Maybe Security Update Click to Run 10925 No Security Update 4011602 https://www.microsoft.com/downloads/details.aspx?familyid=f1afffcc-b6d4-4c0a-9961-e19a965d80c4 4011199 10152 Maybe Security Update 4011660 https://www.microsoft.com/downloads/details.aspx?familyid=d0623e9e-d97d-4337-8b9e-5e123b0c1cec 4011197 10489 Maybe Security Update 4011660 https://www.microsoft.com/downloads/details.aspx?familyid=45767755-c58e-4c2e-834e-f9dfc41c9a7b 4011197 10490 Maybe Security Update 4011639 4011233 10656 Maybe Security Update 4011639 https://www.microsoft.com/downloads/details.aspx?familyid=5b6a745f-59af-4475-ab9a-8695ce52f838 4011233 10654 Maybe Security Update 4011639 https://www.microsoft.com/downloads/details.aspx?familyid=47582b44-ec8a-4efe-967c-51980cdf47ef 4011233 10655 Maybe Security Update 4011606 https://www.microsoft.com/downloads/details.aspx?familyid=37f29c56-64a0-472e-bd09-793208a6466c 4011206 10279 Maybe Security Update 4011605 https://www.microsoft.com/downloads/details.aspx?familyid=b2552319-092b-4f63-9baa-c4175a8815d2 4011205 4497 Maybe Security Update Omair working with T<a href="http://www.zerodayinitiative.com/">Trend Micro's Zero Day Initiative</a> 1.1 2018-02-06T08:00:00Z <p>Updated CVE description. This is an informational change only.</p> 1.0 2018-01-09T08:00:00Z <p>Information published.</p> Microsoft Office Memory Corruption Vulnerability <p>A remote code execution vulnerability exists in Microsoft Office software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on with administrative user rights, an attacker could take control of the affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.</p> <p>Exploitation of the vulnerability requires that a user open a specially crafted file with an affected version of Microsoft Office or Microsoft WordPad software. In an email attack scenario, an attacker could exploit the vulnerability by sending the specially crafted file to the user and convincing the user to open the file. In a web-based attack scenario, an attacker could host a website (or leverage a compromised website that accepts or hosts user-provided content) containing a specially crafted file designed to exploit the vulnerability. An attacker would have no way to force users to visit the website. Instead, an attacker would have to convince users to click a link, typically by way of an enticement in an email or instant message, and then convince them to open the specially crafted file.</p> <p>The security update addresses the vulnerability by removing Equation Editor functionality. For more information on this change, please refer to the following article: <a href="https://support.microsoft.com/en-us/help/4057882">https://support.microsoft.com/en-us/help/4057882</a></p> Microsoft Office CVE-2018-0798 10753 10754 10746 10747 10905 10906 10150 10521 10522 10601 10602 4497 10162 10513 10606 10604 10605 Remote Code Execution 10753 Remote Code Execution 10754 Remote Code Execution 10746 Remote Code Execution 10747 Remote Code Execution 10905 Remote Code Execution 10906 Remote Code Execution 10150 Remote Code Execution 10521 Remote Code Execution 10522 Remote Code Execution 10601 Remote Code Execution 10602 Remote Code Execution 4497 Remote Code Execution 10162 Remote Code Execution 10513 Remote Code Execution 10606 Remote Code Execution 10604 Remote Code Execution 10605 Important 10753 Important 10754 Important 10746 Important 10747 Important 10905 Important 10906 Important 10150 Important 10521 Important 10522 Important 10601 Important 10602 Important 4497 Important 10162 Important 10513 Important 10606 Important 10604 Important 10605 Publicly Disclosed:No;Exploited:No;Latest Software Release:Exploitation Unlikely;Older Software Release:Exploitation Unlikely 4011574 https://www.microsoft.com/downloads/details.aspx?familyid=b0a99a51-599c-4b33-aa49-ceb75f4520f7 4011262 10753 Maybe Security Update 4011574 https://www.microsoft.com/downloads/details.aspx?familyid=163108fd-18ee-4610-b0cf-bc722f9655e1 4011262 10754 Maybe Security Update 4011643 https://www.microsoft.com/downloads/details.aspx?familyid=919fcd04-b72d-4dc5-9afa-a6fa30125e3f 4011575 10746 Maybe Security Update 4011643 https://www.microsoft.com/downloads/details.aspx?familyid=4cc2a1b6-6b5d-47b4-a463-81081dfc41c1 4011575 10747 Maybe Security Update Click to Run 10905 Maybe Security Update Click to Run 10906 No Security Update 4011656 https://www.microsoft.com/downloads/details.aspx?familyid=456bea44-8229-4bb0-bf67-321ac6b4a2e5 4011604 10150 Maybe Security Update 4011610 https://www.microsoft.com/downloads/details.aspx?familyid=982129f7-f445-4b72-89b5-751ac9896f6a 4011618 10521 Maybe Security Update 4011610 https://www.microsoft.com/downloads/details.aspx?familyid=47b29c72-b2a6-4b9b-a1d0-9dbbde948540 4011618 10522 Maybe Security Update 4011580 https://www.microsoft.com/downloads/details.aspx?familyid=65ccd6a9-246e-47ad-b059-c596ba50aa59 3162047 10601 Maybe Security Update 4011580 https://www.microsoft.com/downloads/details.aspx?familyid=13eebd26-08aa-4ea0-8926-cf32bf561cc7 3162047 10602 Maybe Security Update 4011607 https://www.microsoft.com/downloads/details.aspx?familyid=8a1593a2-62b7-4ac3-9c5c-e64e70edf7e5 4011265 4497 Maybe Security Update 4011657 https://www.microsoft.com/downloads/details.aspx?familyid=7e67f7a4-7838-4019-a894-939d8b7e0b7b 4011608 10162 Maybe Security Update 4011659 https://www.microsoft.com/downloads/details.aspx?familyid=2a266bf5-20d3-4a81-a447-3ba52cf10c0d 4011614 10513 Maybe Security Update 4011651 10606 Maybe Security Update 4011651 https://www.microsoft.com/downloads/details.aspx?familyid=95bc77f3-0845-4af2-84cf-436070a6e8a1 4011590 10604 Maybe Security Update 4011651 https://www.microsoft.com/downloads/details.aspx?familyid=3e5b5dc2-cff0-48ae-9955-b1e0abc7e57c 4011590 10605 Maybe Security Update <a href="https://twitter.com/n_joly">Nicolas Joly</a> of Microsoft Corporation Gal De Leon of <a href="https://www.paloaltonetworks.com">Palo Alto Networks</a> <a href=https://twitter.com/bee13oy>bee13oy</a> of <a href=https://www.360.com/>Qihoo 360 Vulcan Team</a> Huang Yi of <a href="https://www.360.com/">Qihoo 360 Core Security</a> Yuki Chen of <a href="http://www.360.com/">Qihoo 360 Vulcan Team</a> 1.0 2018-01-09T08:00:00Z <p>Information published.</p>