NVD

Id
83024  
Name
CVE-2017-0118  
Description
Uniscribe in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, and 1607, and Windows Server 2016 allows remote attackers to obtain sensitive information from process memory via a crafted web site, aka Uniscribe Information Disclosure Vulnerability. CVE-2017-0085, CVE-2017-0091, CVE-2017-0092, CVE-2017-0111, CVE-2017-0112, CVE-2017-0113, CVE-2017-0114, CVE-2017-0115, CVE-2017-0116, CVE-2017-0117, CVE-2017-0119, CVE-2017-0120, CVE-2017-0121, CVE-2017-0122, CVE-2017-0123, CVE-2017-0124, CVE-2017-0125, CVE-2017-0126, CVE-2017-0127, and CVE-2017-0128.  
Reject
 
CVSS Version
2  
CVSS Score
4.3  
Severity
Medium  
CVSS Base Score
4.3  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:P/I:N/A:N)  
Pub Date
2017-07-18  
Published
2017-03-16  
Modified Date
2017-07-17  
Seq
2017-0118  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
410842 83024 CVE-2017-0113 96660  View
410843 83024 CVE-2017-0113 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-0113  View
410844 83024 CVE-2017-0113 96660  View
410845 83024 CVE-2017-0113 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-0113  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
65588 JVNDB-2017-001951 複数の Microsoft Windows 製品の Uniscribe におけるプロセスメモリから重要な情報を取得される脆弱性 複数の Microsoft Windows 製品の Uniscribe には、プロセスメモリから重要な情報を取得される脆弱性が存在します。 CVE-2017-0118 CVE-2017-0118 83024 4.3 4.3 http://jvndb.jvn.jp/ja/contents/2017/JVNDB-2017-001951.html 2017-03-14 2017-03-24 View