NVD

Id
86879  
Name
CVE-2017-0283  
Description
Uniscribe in Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, Windows Server 2016, Microsoft Office 2007 SP3, Microsoft Office 2010 SP2, Microsoft Office Word Viewer, Microsoft Lync 2013 SP1, Skype for Business 2016, Microsoft Silverlight 5 Developer Runtime when installed on Microsoft Windows, and Microsoft Silverlight 5 when installed on Microsoft Windows allows a remote code execution vulnerability due to the way it handles objects in memory, aka Windows Uniscribe Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2017-8528.  
Reject
 
CVSS Version
2  
CVSS Score
9.3  
Severity
High  
CVSS Base Score
9.3  
CVSS Impact Subscore
10  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:C/I:C/A:C)  
Pub Date
2017-07-18  
Published
2017-06-14  
Modified Date
2017-07-07  
Seq
2017-0283  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
421234 86879 CVE-2016-8724 http://www.talosintelligence.com/reports/TALOS-2016-0238/  View
426129 86879 CVE-2017-0009 http://www.security-assessment.com/files/documents/advisory/comparestring_infoleak.pdf  View
426130 86879 CVE-2017-0009 http://www.security-assessment.com/files/documents/advisory/comparestring_infoleak.pdf  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
68077 JVNDB-2017-004359 複数の Microsoft 製品の Uniscribe におけるリモートでコードを実行される脆弱性 複数の Microsoft 製品の Uniscribe には、Microsoft Windows にインストールされる場合、リモートでコードを実行される脆弱性が存在します。 CVE-2017-0283 0 CVE-2017-0283 86879 9.3 8.8 http://jvndb.jvn.jp/ja/contents/2017/JVNDB-2017-004359.html 2017-06-13 2017-06-23 View