CVE-2017-0016

CVE: CVE-2017-0016
Published: 2017-03-17T00:59Z
Vendor: microsoft
Products: windows_10
Versions: 1607, 1511, -,
windows_server_2012
Versions: r2,
windows_8.1
Versions: *,
windows_server_2016
Versions: *,
windows_rt_8.1
Versions: *,
Description Language: en
Description: Microsoft Windows 10 Gold, 1511, and 1607; Windows 8.1; Windows RT 8.1; Windows Server 2012 R2, and Windows Server 2016 do not properly handle certain requests in SMBv2 and SMBv3 packets, which allows remote attackers to execute arbitrary code via a crafted SMBv2 or SMBv3 packet to the Server service, aka “SMBv2/SMBv3 Null Dereference Denial of Service Vulnerability.”
References:
http://www.securityfocus.com/bid/95969
http://www.securitytracker.com/id/1037767
http://www.securitytracker.com/id/1038001
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-0016

CVE-2017-0015

CVE: CVE-2017-0015
Published: 2017-03-17T00:59Z
Vendor: microsoft
Products: edge
Versions: -,
Description Language: en
Description: A remote code execution vulnerability exists in the way affected Microsoft scripting engines render when handling objects in memory in Microsoft browsers. These vulnerabilities could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user. An attacker who successfully exploited the vulnerability could gain the same user rights as the current user. If the current user is logged on with administrative user rights, an attacker who successfully exploited the vulnerability could take control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. This vulnerability is different from those described in CVE-2017-0010, CVE-2017-0032, CVE-2017-0035, CVE-2017-0067, CVE-2017-0070, CVE-2017-0071, CVE-2017-0094, CVE-2017-0131, CVE-2017-0132, CVE-2017-0133, CVE-2017-0134, CVE-2017-0136, CVE-2017-0137, CVE-2017-0138, CVE-2017-0141, CVE-2017-0150, and CVE-2017-0151.
References:
http://www.securityfocus.com/bid/96079
http://www.securitytracker.com/id/1038006
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-0015

CVE-2017-0014

CVE: CVE-2017-0014
Published: 2017-03-17T00:59Z
Vendor: microsoft
Products: windows_10
Versions: 1607, 1511, -,
windows_server_2012
Versions: r2, -,
office
Versions: 2010,
windows_8.1
Versions: *,
windows_server_2008
Versions: r2,
windows_server_2016
Versions: *,
windows_rt_8.1
Versions: *,
windows_7
Versions: *,
Description Language: en
Description: The Windows Graphics Component in Microsoft Office 2010 SP2; Windows Server 2008 R2 SP1; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; Windows 10 Gold, 1511, and 1607; and Windows Server 2016 allows remote attackers to execute arbitrary code via a crafted web site, aka “Windows Graphics Component Remote Code Execution Vulnerability.” This vulnerability is different from that described in CVE-2017-0108.
References:
http://www.securityfocus.com/bid/96013
http://www.securitytracker.com/id/1038002
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-0014

CVE-2017-0012

CVE: CVE-2017-0012
Published: 2017-03-17T00:59Z
Vendor: microsoft
Products: internet_explorer
Versions: 11,
edge
Versions: *,
Description Language: en
Description: Microsoft Internet Explorer 11 and Microsoft Edge allow remote attackers to spoof web content via a crafted web site, aka “Microsoft Browser Spoofing Vulnerability.” This vulnerability is different from those described in CVE-2017-0033 and CVE-2017-0069.
References:
http://www.securityfocus.com/bid/96085
http://www.securitytracker.com/id/1038006
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-0012

CVE-2017-0011

CVE: CVE-2017-0011
Published: 2017-03-17T00:59Z
Vendor: microsoft
Products: edge
Versions: *,
Description Language: en
Description: Microsoft Edge allows remote attackers to obtain sensitive information via a crafted web site, aka “Microsoft Edge Information Disclosure Vulnerability.” This vulnerability is different from those described in CVE-2017-0009, CVE-2017-0017, CVE-2017-0065, and CVE-2017-0068.
References:
http://www.securityfocus.com/bid/96064
http://www.securitytracker.com/id/1038006
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-0011

CVE-2017-0010

CVE: CVE-2017-0010
Published: 2017-03-17T00:59Z
Vendor: microsoft
Products: edge
Versions: -,
Description Language: en
Description: A remote code execution vulnerability exists in the way affected Microsoft scripting engines render when handling objects in memory in Microsoft browsers. These vulnerabilities could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user. An attacker who successfully exploited the vulnerability could gain the same user rights as the current user. If the current user is logged on with administrative user rights, an attacker who successfully exploited the vulnerability could take control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. This vulnerability is different from those described in CVE-2017-0015, CVE-2017-0032, CVE-2017-0035, CVE-2017-0067, CVE-2017-0070, CVE-2017-0071, CVE-2017-0094, CVE-2017-0131, CVE-2017-0132, CVE-2017-0133, CVE-2017-0134, CVE-2017-0136, CVE-2017-0137, CVE-2017-0138, CVE-2017-0141, CVE-2017-0150, and CVE-2017-0151.
References:
http://www.securityfocus.com/bid/96059
http://www.securitytracker.com/id/1038006
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-0010

CVE-2017-0009

CVE: CVE-2017-0009
Published: 2017-03-17T00:59Z
Vendor: microsoft
Products: internet_explorer
Versions: 9, 11, 10,
Description Language: en
Description: Microsoft Internet Explorer 9 through 11 allow remote attackers to obtain sensitive information from process memory via a crafted web site, aka “Microsoft Browser Memory Corruption Vulnerability.” This vulnerability is different from those described in CVE-2017-0011, CVE-2017-0017, CVE-2017-0065, and CVE-2017-0068.
References:
http://www.security-assessment.com/files/documents/advisory/comparestring_infoleak.pdf
http://www.securityfocus.com/bid/96077
http://www.securitytracker.com/id/1038006
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-0009

CVE-2017-0008

CVE: CVE-2017-0008
Published: 2017-03-17T00:59Z
Vendor: microsoft
Products: internet_explorer
Versions: 9, 11, 10,
Description Language: en
Description: Microsoft Internet Explorer 9 through 11 allow remote attackers to obtain sensitive information from process memory via a crafted web site, aka “Internet Explorer Information Disclosure Vulnerability.” This vulnerability is different from those described in CVE-2017-0009 and CVE-2017-0059.
References:
http://www.securityfocus.com/bid/96073
http://www.securitytracker.com/id/1038008
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-0008

CVE-2017-0007

CVE: CVE-2017-0007
Published: 2017-03-17T00:59Z
Vendor: microsoft
Products: windows_10
Versions: 1607, 1511, -,
windows_server_2016
Versions: *,
Description Language: en
Description: Device Guard in Microsoft Windows 10 Gold, 1511, 1607, and Windows Server 2016 allows remote attackers to modify PowerShell script without invalidating associated signatures, aka “PowerShell Security Feature Bypass Vulnerability.”
References:
http://www.securityfocus.com/bid/96018
http://www.securitytracker.com/id/1038001
Defeating Device Guard: A look into CVE-2017-0007
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-0007

CVE-2017-0006

CVE: CVE-2017-0006
Published: 2017-03-17T00:59Z
Vendor: microsoft
Products: office_compatibility_pack
Versions: *,
excel_viewer
Versions: *,
sharepoint_server
Versions: 2007,
excel
Versions: 2007,
Description Language: en
Description: Microsoft Excel 2007 SP3, Office Compatibility Pack SP3, Excel Viewer, and Excel Services on SharePoint Server 2007 SP3 allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted document, aka “Microsoft Office Memory Corruption Vulnerability.” This vulnerability is different from those described in CVE-2017-0019, CVE-2017-0020, CVE-2017-0030, CVE-2017-0031, CVE-2017-0052, and CVE-2017-0053.
References:
http://www.securityfocus.com/bid/96740
http://www.securitytracker.com/id/1038010
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-0006

CVE-2017-0005

CVE: CVE-2017-0005
Published: 2017-03-17T00:59Z
Vendor: microsoft
Products: windows_10
Versions: 1607, 1511, -,
windows_server_2012
Versions: r2, -,
windows_vista
Versions: *,
windows_8.1
Versions: *,
windows_server_2008
Versions: r2, *,
windows_rt_8.1
Versions: *,
windows_7
Versions: *,
Description Language: en
Description: The Graphics Device Interface (GDI) in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; and Windows 10 Gold, 1511, and 1607 allows local users to gain privileges via a crafted application, aka “Windows GDI Elevation of Privilege Vulnerability.” This vulnerability is different from those described in CVE-2017-0001, CVE-2017-0025, and CVE-2017-0047.
References:
http://www.securityfocus.com/bid/96033
http://www.securitytracker.com/id/1038002
https://blogs.technet.microsoft.com/mmpc/2017/03/27/detecting-and-mitigating-elevation-of-privilege-exploit-for-cve-2017-0005/
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-0005

CVE-2017-0001

CVE: CVE-2017-0001
Published: 2017-03-17T00:59Z
Vendor: microsoft
Products: windows_10
Versions: 1607, 1511, -,
windows_server_2012
Versions: r2, -,
windows_vista
Versions: *,
windows_8.1
Versions: *,
windows_server_2008
Versions: r2, *,
windows_rt_8.1
Versions: *,
windows_7
Versions: *,
Description Language: en
Description: The Graphics Device Interface (GDI) in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; and Windows 10 Gold, 1511, and 1607 allows local users to gain privileges via a crafted application, aka “Windows GDI Elevation of Privilege Vulnerability.” This vulnerability is different from those described in CVE-2017-0005, CVE-2017-0025, and CVE-2017-0047.
References:
http://www.securityfocus.com/bid/96057
http://www.securitytracker.com/id/1038002
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-0001

CVE-2017-0001

CVE: CVE-2017-0001
Published: 2017-03-17T00:59Z
Vendor: microsoft
Products: windows_10
Versions: 1607, 1511, -,
windows_server_2012
Versions: r2, -,
windows_vista
Versions: *,
windows_8.1
Versions: *,
windows_server_2008
Versions: r2, *,
windows_rt_8.1
Versions: *,
windows_7
Versions: *,
Description Language: en
Description: The Graphics Device Interface (GDI) in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; and Windows 10 Gold, 1511, and 1607 allows local users to gain privileges via a crafted application, aka “Windows GDI Elevation of Privilege Vulnerability.” This vulnerability is different from those described in CVE-2017-0005, CVE-2017-0025, and CVE-2017-0047.
References:
http://www.securityfocus.com/bid/96057
http://www.securitytracker.com/id/1038002
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-0001

CVE-2017-0037

CVE: CVE-2017-0037
Published: 2017-02-26T23:59Z
Vendor: microsoft
Products: internet_explorer
Versions: 11,
edge
Versions: *,
Description Language: en
Description: Microsoft Internet Explorer 10 and 11 and Microsoft Edge have a type confusion issue in the Layout::MultiColumnBoxBuilder::HandleColumnBreakOnColumnSpanningElement function in mshtml.dll, which allows remote attackers to execute arbitrary code via vectors involving a crafted Cascading Style Sheets (CSS) token sequence and crafted JavaScript code that operates on a TH element.
References:
http://www.securityfocus.com/bid/96088
http://www.securitytracker.com/id/1037905
http://www.securitytracker.com/id/1037906
https://0patch.blogspot.si/2017/03/0patching-another-0-day-internet.html
https://bugs.chromium.org/p/project-zero/issues/detail?id=1011
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-0037
https://www.exploit-db.com/exploits/41454/
https://www.exploit-db.com/exploits/42354/

CVE-2017-0038

CVE: CVE-2017-0038
Published: 2017-02-20T16:59Z
Vendor: microsoft
Products: windows_10
Versions: 1607, 1511, -,
windows_server_2012
Versions: r2, -,
windows_vista
Versions: *,
windows_8.1
Versions: *,
windows_server_2008
Versions: r2, *,
windows_server_2016
Versions: *,
windows_rt_8.1
Versions: *,
windows_7
Versions: *,
Description Language: en
Description: gdi32.dll in Graphics Device Interface (GDI) in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold, 1511, and 1607 allows remote attackers to obtain sensitive information from process heap memory via a crafted EMF file, as demonstrated by an EMR_SETDIBITSTODEVICE record with modified Device Independent Bitmap (DIB) dimensions. NOTE: this vulnerability exists because of an incomplete fix for CVE-2016-3216, CVE-2016-3219, and/or CVE-2016-3220.
References:
http://www.securityfocus.com/bid/96023
http://www.securitytracker.com/id/1037845
https://0patch.blogspot.com/2017/02/0patching-0-day-windows-gdi32dll-memory.html
https://bugs.chromium.org/p/project-zero/issues/detail?id=992
https://github.com/k0keoyo/CVE-2017-0038-EXP-C-JS
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-0038
https://www.exploit-db.com/exploits/41363/

CVE-2017-0004

CVE: CVE-2017-0004
Published: 2017-01-10T21:59Z
Vendor: microsoft
Products: windows_vista
Versions: -,
windows_server_2008
Versions: r2, -,
windows_7
Versions: -,
Description Language: en
Description: The Local Security Authority Subsystem Service (LSASS) in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, and Windows 7 SP1 allows remote attackers to cause a denial of service (reboot) via a crafted authentication request, aka “Local Security Authority Subsystem Service Denial of Service Vulnerability.”
References:
http://technet.microsoft.com/security/bulletin/MS17-004
http://www.securityfocus.com/bid/95318
http://www.securitytracker.com/id/1037571

CVE-2017-0003

CVE: CVE-2017-0003
Published: 2017-01-10T21:59Z
Vendor: microsoft
Products: sharepoint_enterprise_server
Versions: 2016,
word
Versions: 2016,
Description Language: en
Description: Microsoft Word 2016 and SharePoint Enterprise Server 2016 allow remote attackers to execute arbitrary code via a crafted document, aka “Microsoft Office Memory Corruption Vulnerability.”
References:
http://fortiguard.com/advisory/FG-VD-16-079
http://technet.microsoft.com/security/bulletin/MS17-002
http://www.securityfocus.com/bid/95287
http://www.securitytracker.com/id/1037568
http://www.securitytracker.com/id/1037569

CVE-2017-0002

CVE: CVE-2017-0002
Published: 2017-01-10T21:59Z
Vendor: microsoft
Products: edge
Versions: *,
Description Language: en
Description: Microsoft Edge allows remote attackers to bypass the Same Origin Policy via vectors involving the about:blank URL and data: URLs, aka “Microsoft Edge Elevation of Privilege Vulnerability.”
References:
http://technet.microsoft.com/security/bulletin/MS17-001
http://www.securityfocus.com/bid/95284
http://www.securitytracker.com/id/1037573