100773

1039344

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8695

The remote Windows host is missing security update 4038781.
It is, therefore, affected by multiple vulnerabilities :

  - A remote code execution vulnerability exists when     Microsoft Windows PDF Library improperly handles objects     in memory. The vulnerability could corrupt memory in a     way that enables an attacker to execute arbitrary code     in the context of the current user. An attacker who     successfully exploited the vulnerability could gain the     same user rights as the current user. If the current     user is logged on with administrative user rights, an     attacker could take control of an affected system. An     attacker could then install programs; view, change, or     delete data; or create new accounts with full user     rights.  (CVE-2017-8728, CVE-2017-8737)

  - An information disclosure vulnerability exists when     Windows Hyper-V on a host operating system fails to     properly validate input from an authenticated user on a     guest operating system.  (CVE-2017-8706, CVE-2017-8707,     CVE-2017-8713)

  - An information disclosure vulnerability exists when the     Microsoft Windows Graphics Component improperly handles     objects in memory. An attacker who successfully     exploited the vulnerability could obtain information to     further compromise the users system.  (CVE-2017-8683)

  - An Information disclosure vulnerability exists in     Windows kernel that could allow an attacker to retrieve     information that could lead to a Kernel Address Space     Layout Randomization (KASLR) bypass. An attacker who     successfully exploited this vulnerability could retrieve     the memory address of a kernel object.  (CVE-2017-8687)

  - A remote code execution vulnerability exists when     Microsoft Edge improperly accesses objects in memory.
    The vulnerability could corrupt memory in such a way     that enables an attacker to execute arbitrary code in     the context of the current user. An attacker who     successfully exploited the vulnerability could gain the     same user rights as the current user.  (CVE-2017-8734)

  - An information disclosure vulnerability exists in the     way that the Windows Graphics Device Interface (GDI)     handles objects in memory, allowing an attacker to     retrieve information from a targeted system. By itself,     the information disclosure does not allow arbitrary code     execution; however, it could allow arbitrary code to be     run if the attacker uses it in combination with another     vulnerability.  (CVE-2017-8676)

  - A remote code execution vulnerability exists in the way     that Microsoft browser JavaScript engines render content     when handling objects in memory. The vulnerability could     corrupt memory in such a way that an attacker could     execute arbitrary code in the context of the current     user. In a web-based attack scenario, an attacker could     host a specially crafted website that is designed to     exploit the vulnerability through Microsoft browsers and     then convince a user to view the website. An attacker     could also embed an ActiveX control marked &quot;safe     for initialization&quot; in an application or Microsoft     Office document that hosts the related rendering engine.
    The attacker could also take advantage of compromised     websites, and websites that accept or host user-provided     content or advertisements. These websites could contain     specially crafted content that could exploit the     vulnerability. An attacker who successfully exploited     the vulnerability could gain the same user rights as the     current user.  (CVE-2017-8741, CVE-2017-8748)

  - A remote code execution vulnerability exists in the way     that the scripting engine handles objects in memory in     Microsoft Edge. The vulnerability could corrupt memory     in such a way that an attacker could execute arbitrary     code in the context of the current user. An attacker who     successfully exploited the vulnerability could gain the     same user rights as the current user.  (CVE-2017-8738,     CVE-2017-8753, CVE-2017-8756)

  - A race condition that could lead to a remote code     execution vulnerability exists in NetBT Session Services     when NetBT fails to maintain certain sequencing     requirements.  (CVE-2017-0161)

  - A remote code execution vulnerability exists in the way     Microsoft Edge handles objects in memory. The     vulnerability could corrupt memory in such a way that an     attacker could execute arbitrary code in the context of     the current user. An attacker who successfully exploited     the vulnerability could gain the same user rights as the     current user.  (CVE-2017-8757)

  - A remote code execution vulnerability exists when     Internet Explorer improperly accesses objects in memory.
    The vulnerability could corrupt memory in such a way     that an attacker could execute arbitrary code in the     context of the current user.  (CVE-2017-8747,     CVE-2017-8749)

  - An elevation of privilege vulnerability exists in     Windows when the Win32k component fails to properly     handle objects in memory. An attacker who successfully     exploited this vulnerability could run arbitrary code in     kernel mode. An attacker could then install programs;
    view, change, or delete data; or create new accounts     with full user rights.  (CVE-2017-8720)

  - An information disclosure vulnerability exists when     Windows Uniscribe improperly discloses the contents of     its memory. An attacker who successfully exploited the     vulnerability could obtain information to further     compromise the users system. There are multiple ways an     attacker could exploit the vulnerability, such as by     convincing a user to open a specially crafted document     or by convincing a user to visit an untrusted webpage.
    The update addresses the vulnerability by correcting how     Windows Uniscribe handles objects in memory.
    (CVE-2017-8695)

  - An information disclosure vulnerability exists when     Microsoft Edge improperly handles clipboard events. For     an attack to be successful, an attacker must persuade a     user to visit a malicious website and leave it open     during clipboard activities. The update addresses the     vulnerability by changing how Microsoft Edge handles     clipboard events in the browser. (CVE-2017-8643)

  - A spoofing vulnerability exists in Microsoft's     implementation of the Bluetooth stack. An attacker who     successfully exploited this vulnerability could perform     a man-in-the-middle attack and force a user's computer     to unknowingly route traffic through the attacker's     computer. The attacker can then monitor and read the     traffic before sending it on to the intended recipient.
    (CVE-2017-8628)

  - An information disclosure vulnerability exists in     Microsoft browsers due to improper parent domain     verification in certain functionality. An attacker who     successfully exploited the vulnerability could obtain     specific information that is used in the parent domain.
    (CVE-2017-8736)

  - An information disclosure vulnerability exists when the     Windows kernel improperly handles objects in memory. An     attacker who successfully exploited this vulnerability     could obtain information to further compromise the users     system.  (CVE-2017-8678, CVE-2017-8679, CVE-2017-8709,     CVE-2017-8719)

  - A vulnerability exists when Microsoft Edge improperly     accesses objects in memory. The vulnerability could     corrupt memory in such a way that an attacker could     execute arbitrary code in the context of the current     user.  (CVE-2017-11766)

  - A security feature bypass exists in Microsoft Edge when     the Edge Content Security Policy (CSP) fails to properly     validate certain specially crafted documents. An     attacker who exploited the bypass could trick a user     into loading a page containing malicious content.
    (CVE-2017-8723, CVE-2017-8754)

  - A remote code execution vulnerability exists when     Microsoft .NET Framework processes untrusted input. An     attacker who successfully exploited this vulnerability     in software using the .NET framework could take control     of an affected system. An attacker could then install     programs; view, change, or delete data; or create new     accounts with full user rights. Users whose accounts are     configured to have fewer user rights on the system could     be less impacted than users who operate with     administrative user rights.  (CVE-2017-8759)

  - A information disclosure vulnerability exists when the     Windows GDI+ component improperly discloses kernel     memory addresses. An attacker who successfully exploited     the vulnerability could obtain information to further     compromise the users system.  (CVE-2017-8677,     CVE-2017-8681)

  - An information disclosure vulnerability exists in the     way that the Windows Graphics Device Interface (GDI)     handles objects in memory, allowing an attacker to     retrieve information from a targeted system. By itself,     the information disclosure does not allow arbitrary code     execution; however, it could allow arbitrary code to be     run if the attacker uses it in combination with another     vulnerability.  (CVE-2017-8688)

  - A remote code execution vulnerability exists due to the     way Windows Uniscribe handles objects in memory. An     attacker who successfully exploited this vulnerability     could take control of the affected system. An attacker     could then install programs; view, change, or delete     data; or create new accounts with full user rights.
    (CVE-2017-8692)

  - An elevation of privilege vulnerability exists in     Windows when the Windows kernel-mode driver fails to     properly handle objects in memory. An attacker who     successfully exploited this vulnerability could run     arbitrary code in kernel mode. An attacker could then     install programs; view, change, or delete data; or     create new accounts with full user rights.
    (CVE-2017-8675)

  - A spoofing vulnerability exists when Microsoft Edge does     not properly parse HTTP content. An attacker who     successfully exploited this vulnerability could trick a     user by redirecting the user to a specially crafted     website. The specially crafted website could either     spoof content or serve as a pivot to chain an attack     with other vulnerabilities in web services.
    (CVE-2017-8735)

  - A spoofing vulnerability exists when Internet Explorer     improperly handles specific HTML content. An attacker     who successfully exploited this vulnerability could     trick a user into believing that the user was visiting a     legitimate website. The specially crafted website could     either spoof content or serve as a pivot to chain an     attack with other vulnerabilities in web services.
    (CVE-2017-8733)

  - A remote code execution vulnerability exists when     Microsoft browsers improperly access objects in memory.
    The vulnerability could corrupt memory in such a way     that an attacker could execute arbitrary code in the     context of the current user.  (CVE-2017-8750)

  - An information disclosure vulnerability exists when the     Windows kernel fails to properly initialize a memory     address, allowing an attacker to retrieve information     that could lead to a Kernel Address Space Layout     Randomization (KASLR) bypass. An attacker who     successfully exploited this vulnerability could retrieve     the base address of the kernel driver from a compromised     process.  (CVE-2017-8708)

  - A remote code execution vulnerability exists when the     Windows font library improperly handles specially     crafted embedded fonts. An attacker who successfully     exploited this vulnerability could take control of the     affected system. An attacker could then install     programs; view, change, or delete data; or create new     accounts with full user rights.  (CVE-2017-8682)

  - An elevation of privilege vulnerability exists in     Windows Error Reporting (WER) when WER handles and     executes files. The vulnerability could allow elevation     of privilege if an attacker can successfully exploit it.
    An attacker who successfully exploited the vulnerability     could gain greater access to sensitive information and     system functionality.  (CVE-2017-8702)

  - A remote code execution vulnerability exists when     Windows Shell does not properly validate file copy     destinations. An attacker who successfully exploited the     vulnerability could run arbitrary code in the context of     the current user. If the current user is logged on with     administrative user rights, an attacker could take     control of the affected system. An attacker could then     install programs; view, change, or delete data; or     create new accounts with full user rights. Users whose     accounts are configured to have fewer user rights on the     system could be less impacted than users who operate     with administrative user rights.  (CVE-2017-8699)     
  - An information disclosure vulnerability exists in     Microsoft browsers in the scripting engines due to     improper handling of objects in memory. An     unauthenticated, remote attacker can exploit this, by     convincing a user to visit a specially crafted website,     to disclose files on a user's computer. (CVE-2017-8529)

The remote Windows host is missing multiple security updates released on 2017/09/12. It is, therefore, affected by multiple vulnerabilities :

  - An information disclosure vulnerability exists when     Windows Hyper-V on a host operating system fails to     properly validate input from an authenticated user on a     guest operating system. To exploit the vulnerability, an     attacker on a guest operating system could run a     specially crafted application that could cause the     Hyper-V host operating system to disclose memory     information. An attacker who successfully exploited the     vulnerability could gain access to information on the     Hyper-V host operating system. The security update     addresses the vulnerability by correcting how Hyper-V     validates guest operating system user input.
    (CVE-2017-8707)

  - An information disclosure vulnerability exists in the     Windows System Information Console when it improperly     parses XML input containing a reference to an external     entity. An attacker who successfully exploited this     vulnerability could read arbitrary files via an XML     external entity (XXE) declaration. To exploit the     vulnerability, an attacker could create a file     containing specially crafted XML content and convince an     authenticated user to open the file. The update     addresses the vulnerability by modifying the way that     the Windows System Information Console parses XML input.
    (CVE-2017-8710)

  - An Information disclosure vulnerability exists in     Windows kernel that could allow an attacker to retrieve     information that could lead to a Kernel Address Space     Layout Randomization (KASLR) bypass. An attacker who     successfully exploited this vulnerability could retrieve     the memory address of a kernel object. To exploit this     vulnerability, an attacker would have to log on to an     affected system and run a specially crafted application.
    The security update addresses the vulnerability by     correcting how the Windows kernel handles memory     addresses. (CVE-2017-8687)

  - An information disclosure vulnerability exists when the     Microsoft Windows Graphics Component improperly handles     objects in memory. An attacker who successfully     exploited the vulnerability could obtain information to     further compromise the users system. To exploit this     vulnerability, an attacker would have to log on to an     affected system and run a specially crafted application.
    The vulnerability would not allow an attacker to execute     code or to elevate user rights directly, but it could be     used to obtain information that could be used to try to     further compromise the affected system. The update     addresses the vulnerability by correcting the way in     which the Windows Graphics Component handles objects in     memory. (CVE-2017-8683)

  - A remote code execution vulnerability exists when the     Windows font library improperly handles specially     crafted embedded fonts. An attacker who successfully     exploited this vulnerability could take control of the     affected system. An attacker could then install     programs; view, change, or delete data; or create new     accounts with full user rights. Users whose accounts are     configured to have fewer user rights on the system could     be less impacted than users who operate with     administrative user rights. There are multiple ways an     attacker could exploit this vulnerability. In a web-     based attack scenario, an attacker could host a     specially crafted website that is designed to exploit     this vulnerability and then convince a user to view the     website. An attacker would have no way to force users to     view the attacker-controlled content. Instead, an     attacker would have to convince users to take action,     typically by getting them to click a link in an email     message or in an Instant Messenger message that takes     users to the attacker's website, or by opening an     attachment sent through email. In a file sharing attack     scenario, an attacker could provide a specially crafted     document file that is designed to exploit this     vulnerability, and then convince a user to open the     document file. The security update addresses the     vulnerabilities by correcting how the Windows font     library handles embedded fonts. (CVE-2017-8682)

  - A remote code execution vulnerability exists when     Windows Shell does not properly validate file copy     destinations. An attacker who successfully exploited the     vulnerability could run arbitrary code in the context of     the current user. If the current user is logged on with     administrative user rights, an attacker could take     control of the affected system. An attacker could then     install programs; view, change, or delete data; or     create new accounts with full user rights. Users whose     accounts are configured to have fewer user rights on the     system could be less impacted than users who operate     with administrative user rights. To exploit the     vulnerability, a user must open a specially crafted     file. In an email attack scenario, an attacker could     exploit the vulnerability by sending the specially     crafted file to the user and then convincing the user to     open the file. In a web-based attack scenario, an     attacker could host a website (or leverage a compromised     website that accepts or hosts user-provided content)     that contains a specially crafted file designed to     exploit the vulnerability. An attacker would have no way     to force a user to visit the website. Instead, an     attacker would have to convince a user to click a link,     typically by way of an enticement in an email or Instant     Messenger message, and then convince the user to open     the specially crafted file. The security update     addresses the vulnerability by helping to ensure that     Windows Shell validates file copy destinations.
    (CVE-2017-8699)

  - An information disclosure vulnerability exists when the     Windows kernel fails to properly initialize a memory     address, allowing an attacker to retrieve information     that could lead to a Kernel Address Space Layout     Randomization (KASLR) bypass. An attacker who     successfully exploited this vulnerability could retrieve     the base address of the kernel driver from a compromised     process. To exploit this vulnerability, an attacker     would have to log on to an affected system and run a     specially crafted application. The security update     addresses the vulnerability by correcting how the     Windows kernel handles memory addresses. (CVE-2017-8708)

  - An information disclosure vulnerability exists when     Windows Uniscribe improperly discloses the contents of     its memory. An attacker who successfully exploited the     vulnerability could obtain information to further     compromise the users system. There are multiple ways an     attacker could exploit the vulnerability, such as by     convincing a user to open a specially crafted document     or by convincing a user to visit an untrusted webpage.
    The update addresses the vulnerability by correcting how     Windows Uniscribe handles objects in memory.
    (CVE-2017-8695)

  - An elevation of privilege vulnerability exists in     Windows when the Win32k component fails to properly     handle objects in memory. An attacker who successfully     exploited this vulnerability could run arbitrary code in     kernel mode. An attacker could then install programs;
    view, change, or delete data; or create new accounts     with full user rights. To exploit this vulnerability, an     attacker would first have to log on to the system. An     attacker could then run a specially crafted application     that could exploit the vulnerability and take control of     an affected system. The update addresses this     vulnerability by correcting how Win32k handles objects     in memory. (CVE-2017-8720)

  - A information disclosure vulnerability exists when the     Windows GDI+ component improperly discloses kernel     memory addresses. An attacker who successfully exploited     the vulnerability could obtain information to further     compromise the users system. To exploit this     vulnerability, an attacker would have to log on to an     affected system and run a specially crafted application.
    The vulnerability would not allow an attacker to execute     code or to elevate user rights directly, but it could be     used to obtain information that could be used to try to     further compromise the affected system. The security     update addresses the vulnerability by correcting how the     Windows GDI+ component handles objects in memory.
    (CVE-2017-8680, CVE-2017-8681, CVE-2017-8684,     CVE-2017-8685)

  - A remote code execution vulnerability exists due to the     way Windows Uniscribe handles objects in memory. An     attacker who successfully exploited this vulnerability     could take control of the affected system. An attacker     could then install programs; view, change, or delete     data; or create new accounts with full user rights.
    Users whose accounts are configured to have fewer user     rights on the system could be less impacted than users     who operate with administrative user rights. There are     multiple ways an attacker could exploit this     vulnerability: In a web-based attack scenario, an     attacker could host a specially crafted website designed     to exploit this vulnerability and then convince a user     to view the website. An attacker would have no way to     force users to view the attacker-controlled content.
    Instead, an attacker would have to convince users to     take action, typically by getting them to click a link     in an email or instant message that takes users to the     attacker's website, or by opening an attachment sent     through email. In a file-sharing attack scenario, an     attacker could provide a specially crafted document file     designed to exploit this vulnerability and then convince     a user to open the document file.The security update     addresses the vulnerability by correcting how Windows     Uniscribe handles objects in memory. (CVE-2017-8696)

  - An information disclosure vulnerability exists in the     way that the Windows Graphics Device Interface+ (GDI+)     handles objects in memory, allowing an attacker to     retrieve information from a targeted system. By itself,     the information disclosure does not allow arbitrary code     execution; however, it could allow arbitrary code to be     run if the attacker uses it in combination with another     vulnerability. To exploit this vulnerability, an     attacker would have to log on to an affected system and     run a specially crafted application. The security update     addresses the vulnerability by correcting how GDI+     handles memory addresses. (CVE-2017-8688)

  - An elevation of privilege vulnerability exists in     Windows when the Windows kernel-mode driver fails to     properly handle objects in memory. An attacker who     successfully exploited this vulnerability could run     arbitrary code in kernel mode. An attacker could then     install programs; view, change, or delete data; or     create new accounts with full user rights. To exploit     this vulnerability, an attacker would first have to log     on to the system. An attacker could then run a specially     crafted application that could exploit the vulnerability     and take control of an affected system. The update     addresses this vulnerability by correcting how the     Windows kernel-mode driver handles objects in memory.
    (CVE-2017-8675)

  - A spoofing vulnerability exists in Microsoft's     implementation of the Bluetooth stack. An attacker who     successfully exploited this vulnerability could perform     a man-in-the-middle attack and force a user's computer     to unknowingly route traffic through the attacker's     computer. The attacker can then monitor and read the     traffic before sending it on to the intended recipient.
    To exploit the vulnerability, the attacker needs to be     within the physical proximity of the targeted user, and     the user's computer needs to have Bluetooth enabled. The     attacker can then initiate a Bluetooth connection to the     target computer without the user's knowledge. The     security update addresses the vulnerability by     correcting how Windows handles Bluetooth requests.
    (CVE-2017-8628)

  - An information disclosure vulnerability exists when the     Windows kernel improperly handles objects in memory. An     attacker who successfully exploited this vulnerability     could obtain information to further compromise the users     system. To exploit this vulnerability, an attacker would     have to log on to an affected system and run a specially     crafted application. The vulnerability would not allow     an attacker to execute code or to elevate user rights     directly, but it could be used to obtain information     that could be used to try to further compromise the     affected system. The update addresses the vulnerability     by correcting how the Windows kernel handles objects in     memory. (CVE-2017-8678, CVE-2017-8679, CVE-2017-8709,     CVE-2017-8719)

  - An information disclosure vulnerability exists in the     way that the Windows Graphics Device Interface (GDI)     handles objects in memory, allowing an attacker to     retrieve information from a targeted system. By itself,     the information disclosure does not allow arbitrary code     execution; however, it could allow arbitrary code to be     run if the attacker uses it in combination with another     vulnerability. To exploit this vulnerability, an     attacker would have to log on to an affected system and     run a specially crafted application. Note that where the     severity is indicated as Critical in the Affected     Products table, the Preview Pane is an attack vector for     this vulnerability. The security update addresses the     vulnerability by correcting how GDI handles memory     addresses. (CVE-2017-8676)

The Microsoft Office Products are missing security updates.
It is, therefore, affected by multiple vulnerabilities :

  - A remote code execution vulnerability exists in     Microsoft Office software when it fails to properly     handle objects in memory. An attacker who successfully     exploited the vulnerability could use a specially     crafted file to perform actions in the security context     of the current user. For example, the file could then     take actions on behalf of the logged-on user with the     same permissions as the current user. Exploitation of     this vulnerability requires that a user open a specially     crafted file with an affected version of Microsoft     Office software. In an email attack scenario, an     attacker could exploit the vulnerability by sending the     specially crafted file to the user and convincing the     user to open the file. In a web-based attack scenario,     an attacker could host a website (or leverage a     compromised website that accepts or hosts user-provided     content) that contains a specially crafted file that is     designed to exploit the vulnerability. However, an     attacker would have no way to force the user to visit     the website. Instead, an attacker would have to convince     the user to click a link, typically by way of an     enticement in an email or Instant Messenger message, and     then convince the user to open the specially crafted     file. The security update addresses the vulnerability by     correcting how Microsoft Office handles files in memory.
    (CVE-2017-8631)

  - A remote code execution vulnerability exists when the     Windows font library improperly handles specially     crafted embedded fonts. An attacker who successfully     exploited this vulnerability could take control of the     affected system. An attacker could then install     programs; view, change, or delete data; or create new     accounts with full user rights. Users whose accounts are     configured to have fewer user rights on the system could     be less impacted than users who operate with     administrative user rights. There are multiple ways an     attacker could exploit this vulnerability. In a web-     based attack scenario, an attacker could host a     specially crafted website that is designed to exploit     this vulnerability and then convince a user to view the     website. An attacker would have no way to force users to     view the attacker-controlled content. Instead, an     attacker would have to convince users to take action,     typically by getting them to click a link in an email     message or in an Instant Messenger message that takes     users to the attacker's website, or by opening an     attachment sent through email. In a file sharing attack     scenario, an attacker could provide a specially crafted     document file that is designed to exploit this     vulnerability, and then convince a user to open the     document file. The security update addresses the     vulnerabilities by correcting how the Windows font     library handles embedded fonts. (CVE-2017-8682)

  - An information disclosure vulnerability exists when     Windows Uniscribe improperly discloses the contents of     its memory. An attacker who successfully exploited the     vulnerability could obtain information to further     compromise the users system. There are multiple ways an     attacker could exploit the vulnerability, such as by     convincing a user to open a specially crafted document     or by convincing a user to visit an untrusted webpage.
    The update addresses the vulnerability by correcting how     Windows Uniscribe handles objects in memory.
    (CVE-2017-8695)

  - A remote code execution vulnerability exists due to the     way Windows Uniscribe handles objects in memory. An     attacker who successfully exploited this vulnerability     could take control of the affected system. An attacker     could then install programs; view, change, or delete     data; or create new accounts with full user rights.
    Users whose accounts are configured to have fewer user     rights on the system could be less impacted than users     who operate with administrative user rights. There are     multiple ways an attacker could exploit this     vulnerability: In a web-based attack scenario, an     attacker could host a specially crafted website designed     to exploit this vulnerability and then convince a user     to view the website. An attacker would have no way to     force users to view the attacker-controlled content.
    Instead, an attacker would have to convince users to     take action, typically by getting them to click a link     in an email or instant message that takes users to the     attacker's website, or by opening an attachment sent     through email. In a file-sharing attack scenario, an     attacker could provide a specially crafted document file     designed to exploit this vulnerability and then convince     a user to open the document file.The security update     addresses the vulnerability by correcting how Windows     Uniscribe handles objects in memory. (CVE-2017-8696)

  - A remote code execution vulnerability exists in     Microsoft Office software when the software fails to     properly handle objects in memory. An attacker who     successfully exploited the vulnerability could run     arbitrary code in the context of the current user. If     the current user is logged on with administrative user     rights, an attacker could take control of the affected     system. An attacker could then install programs; view,     change, or delete data; or create new accounts with full     user rights. Users whose accounts are configured to have     fewer user rights on the system could be less impacted     than users who operate with administrative user rights.
    Exploitation of the vulnerability requires that a user     open a specially crafted file with an affected version     of Microsoft Office software. In an email attack     scenario, an attacker could exploit the vulnerability by     sending the specially crafted file to the user and     convincing the user to open the file. In a web-based     attack scenario, an attacker could host a website (or     leverage a compromised website that accepts or hosts     user-provided content) that contains a specially crafted     file designed to exploit the vulnerability. An attacker     would have no way to force users to visit the website.
    Instead, an attacker would have to convince users to     click a link, typically by way of an enticement in an     email or instant message, and then convince them to open     the specially crafted file. Note that the Preview Pane     is not an attack vector for this vulnerability. The     security update addresses the vulnerability by     correcting how Office handles objects in memory.
    (CVE-2017-8742)

  - An information disclosure vulnerability exists in the     way that the Windows Graphics Device Interface (GDI)     handles objects in memory, allowing an attacker to     retrieve information from a targeted system. By itself,     the information disclosure does not allow arbitrary code     execution; however, it could allow arbitrary code to be     run if the attacker uses it in combination with another     vulnerability. To exploit this vulnerability, an     attacker would have to log on to an affected system and     run a specially crafted application. Note that where the     severity is indicated as Critical in the Affected     Products table, the Preview Pane is an attack vector for     this vulnerability. The security update addresses the     vulnerability by correcting how GDI handles memory     addresses. (CVE-2017-8676)

The Microsoft Office Products are missing security updates.
It is, therefore, affected by multiple vulnerabilities :

  - A remote code execution vulnerability exists in     Microsoft Office software when it fails to properly     handle objects in memory. An attacker who successfully     exploited the vulnerability could use a specially     crafted file to perform actions in the security context     of the current user. For example, the file could then     take actions on behalf of the logged-on user with the     same permissions as the current user. Exploitation of     this vulnerability requires that a user open a specially     crafted file with an affected version of Microsoft     Office software. In an email attack scenario, an     attacker could exploit the vulnerability by sending the     specially crafted file to the user and convincing the     user to open the file. In a web-based attack scenario,     an attacker could host a website (or leverage a     compromised website that accepts or hosts user-provided     content) that contains a specially crafted file that is     designed to exploit the vulnerability. However, an     attacker would have no way to force the user to visit     the website. Instead, an attacker would have to convince     the user to click a link, typically by way of an     enticement in an email or Instant Messenger message, and     then convince the user to open the specially crafted     file. The security update addresses the vulnerability by     correcting how Microsoft Office handles files in memory.
    (CVE-2017-8630, CVE-2017-8744)

  - A remote code execution vulnerability exists when the     Windows font library improperly handles specially     crafted embedded fonts. An attacker who successfully     exploited this vulnerability could take control of the     affected system. An attacker could then install     programs; view, change, or delete data; or create new     accounts with full user rights. Users whose accounts are     configured to have fewer user rights on the system could     be less impacted than users who operate with     administrative user rights. There are multiple ways an     attacker could exploit this vulnerability. In a web-     based attack scenario, an attacker could host a     specially crafted website that is designed to exploit     this vulnerability and then convince a user to view the     website. An attacker would have no way to force users to     view the attacker-controlled content. Instead, an     attacker would have to convince users to take action,     typically by getting them to click a link in an email     message or in an Instant Messenger message that takes     users to the attacker's website, or by opening an     attachment sent through email. In a file sharing attack     scenario, an attacker could provide a specially crafted     document file that is designed to exploit this     vulnerability, and then convince a user to open the     document file. The security update addresses the     vulnerabilities by correcting how the Windows font     library handles embedded fonts. (CVE-2017-8682)

  - An information disclosure vulnerability exists when     Windows Uniscribe improperly discloses the contents of     its memory. An attacker who successfully exploited the     vulnerability could obtain information to further     compromise the users system. There are multiple ways an     attacker could exploit the vulnerability, such as by     convincing a user to open a specially crafted document     or by convincing a user to visit an untrusted webpage.
    The update addresses the vulnerability by correcting how     Windows Uniscribe handles objects in memory.
    (CVE-2017-8695)

  - A remote code execution vulnerability exists due to the     way Windows Uniscribe handles objects in memory. An     attacker who successfully exploited this vulnerability     could take control of the affected system. An attacker     could then install programs; view, change, or delete     data; or create new accounts with full user rights.
    Users whose accounts are configured to have fewer user     rights on the system could be less impacted than users     who operate with administrative user rights. There are     multiple ways an attacker could exploit this     vulnerability: In a web-based attack scenario, an     attacker could host a specially crafted website designed     to exploit this vulnerability and then convince a user     to view the website. An attacker would have no way to     force users to view the attacker-controlled content.
    Instead, an attacker would have to convince users to     take action, typically by getting them to click a link     in an email or instant message that takes users to the     attacker's website, or by opening an attachment sent     through email. In a file-sharing attack scenario, an     attacker could provide a specially crafted document file     designed to exploit this vulnerability and then convince     a user to open the document file.The security update     addresses the vulnerability by correcting how Windows     Uniscribe handles objects in memory. (CVE-2017-8696)

  - A remote code execution vulnerability exists in     Microsoft Office software when the software fails to     properly handle objects in memory. An attacker who     successfully exploited the vulnerability could run     arbitrary code in the context of the current user. If     the current user is logged on with administrative user     rights, an attacker could take control of the affected     system. An attacker could then install programs; view,     change, or delete data; or create new accounts with full     user rights. Users whose accounts are configured to have     fewer user rights on the system could be less impacted     than users who operate with administrative user rights.
    Exploitation of the vulnerability requires that a user     open a specially crafted file with an affected version     of Microsoft Office software. In an email attack     scenario, an attacker could exploit the vulnerability by     sending the specially crafted file to the user and     convincing the user to open the file. In a web-based     attack scenario, an attacker could host a website (or     leverage a compromised website that accepts or hosts     user-provided content) that contains a specially crafted     file designed to exploit the vulnerability. An attacker     would have no way to force users to visit the website.
    Instead, an attacker would have to convince users to     click a link, typically by way of an enticement in an     email or instant message, and then convince them to open     the specially crafted file. Note that the Preview Pane     is not an attack vector for this vulnerability. The     security update addresses the vulnerability by     correcting how Office handles objects in memory.
    (CVE-2017-8742)

  - An information disclosure vulnerability exists in the     way that the Windows Graphics Device Interface (GDI)     handles objects in memory, allowing an attacker to     retrieve information from a targeted system. By itself,     the information disclosure does not allow arbitrary code     execution; however, it could allow arbitrary code to be     run if the attacker uses it in combination with another     vulnerability. To exploit this vulnerability, an     attacker would have to log on to an affected system and     run a specially crafted application. Note that where the     severity is indicated as Critical in the Affected     Products table, the Preview Pane is an attack vector for     this vulnerability. The security update addresses the     vulnerability by correcting how GDI handles memory     addresses. (CVE-2017-8676)

The remote Windows host is missing security update 4038786 or cumulative update 4038799. It is, therefore, affected by multiple vulnerabilities :

  - A race condition that could lead to a remote code     execution vulnerability exists in NetBT Session Services     when NetBT fails to maintain certain sequencing     requirements. (CVE-2017-0161)

  - An elevation of privilege vulnerability exists in     Windows when the Windows kernel-mode driver fails to     properly handle objects in memory. An attacker who     successfully exploited this vulnerability could run     arbitrary code in kernel mode. An attacker could then     install programs; view, change, or delete data; or     create new accounts with full user rights.
    (CVE-2017-8675)

  - An information disclosure vulnerability exists in the     way that the Windows Graphics Device Interface (GDI)     handles objects in memory, allowing an attacker to     retrieve information from a targeted system. By itself,     the information disclosure does not allow arbitrary code     execution; however, it could allow arbitrary code to be     run if the attacker uses it in combination with another     vulnerability. (CVE-2017-8676)

  - A remote code execution vulnerability exists when the     Windows font library improperly handles specially     crafted embedded fonts. An attacker who successfully     exploited this vulnerability could take control of the     affected system. An attacker could then install     programs; view, change, or delete data; or create new     accounts with full user rights. (CVE-2017-8682)

  - An information disclosure vulnerability exists when the     Microsoft Windows Graphics Component improperly handles     objects in memory. An attacker who successfully     exploited the vulnerability could obtain information to     further compromise the users system. (CVE-2017-8683)

  - A information disclosure vulnerability exists when the     Windows GDI+ component improperly discloses kernel     memory addresses. An attacker who successfully exploited     the vulnerability could obtain information to further     compromise the users system.     (CVE-2017-8677, CVE-2017-8680, CVE-2017-8681,     CVE-2017-8684)

  - A memory corruption vulnerability exists in the Windows     Server DHCP service when an attacker sends specially     crafted packets to a DHCP failover server. An attacker     who successfully exploited the vulnerability could     either run arbitrary code on the DHCP failover server or     cause the DHCP service to become nonresponsive. To     exploit the vulnerability, an attacker could send a     specially crafted packet to a DHCP server. However, the     DHCP server must be set to failover mode for the attack     to succeed. The security update addresses the     vulnerability by correcting how DHCP failover servers     handle network packets. (CVE-2017-8686)

  - An Information disclosure vulnerability exists in     Windows kernel that could allow an attacker to retrieve     information that could lead to a Kernel Address Space     Layout Randomization (KASLR) bypass. An attacker who     successfully exploited this vulnerability could retrieve     the memory address of a kernel object. (CVE-2017-8687)

  - An information disclosure vulnerability exists in the     way that the Windows Graphics Device Interface+ (GDI+)     handles objects in memory, allowing an attacker to     retrieve information from a targeted system. By itself,     the information disclosure does not allow arbitrary code     execution; however, it could allow arbitrary code to be     run if the attacker uses it in combination with another     vulnerability. (CVE-2017-8688)

  - A remote code execution vulnerability exists due to the     way Windows Uniscribe handles objects in memory. An     attacker who successfully exploited this vulnerability     could take control of the affected system. An attacker     could then install programs; view, change, or delete     data; or create new accounts with full user rights.
    (CVE-2017-8692)

  - An information disclosure vulnerability exists when     Windows Uniscribe improperly discloses the contents of     its memory. An attacker who successfully exploited the     vulnerability could obtain information to further     compromise the users system. There are multiple ways an     attacker could exploit the vulnerability, such as by     convincing a user to open a specially crafted document     or by convincing a user to visit an untrusted webpage.
    The update addresses the vulnerability by correcting how     Windows Uniscribe handles objects in memory.
    (CVE-2017-8695)

  - A remote code execution vulnerability exists when     Windows Shell does not properly validate file copy     destinations. An attacker who successfully exploited the     vulnerability could run arbitrary code in the context of     the current user.
    (CVE-2017-8699)

  - An information disclosure vulnerability exists when the     Windows kernel fails to properly initialize a memory     address, allowing an attacker to retrieve information     that could lead to a Kernel Address Space Layout     Randomization (KASLR) bypass. An attacker who     successfully exploited this vulnerability could retrieve     the base address of the kernel driver from a compromised     process. (CVE-2017-8708)

  - An information disclosure vulnerability exists when     Windows Hyper-V on a host operating system fails to     properly validate input from an authenticated user on a     guest operating system. (CVE-2017-8713)

  - A remote code execution vulnerability exists in the VM     Host Agent Service of Remote Desktop Virtual Host role     when it fails to properly validate input from an     authenticated user on a guest operating system. To     exploit the vulnerability, an attacker could issue a     specially crafted certificate on the guest operating     system that could cause the VM host agent service on the     host operating system to execute arbitrary code. The     Remote Desktop Virtual Host role is not enabled by     default. An attacker who successfully exploited the     vulnerability could execute arbitrary code on the host     operating system. The security update addresses the     vulnerability by correcting how VM host agent service     validates guest operating system user input.
    (CVE-2017-8714)

  - An information disclosure vulnerability exists when the     Windows kernel improperly handles objects in memory. An     attacker who successfully exploited this vulnerability     could obtain information to further compromise the users     system. (CVE-2017-8678, CVE-2017-8679, CVE-2017-8709,     CVE-2017-8719)

  - An elevation of privilege vulnerability exists in     Windows when the Win32k component fails to properly     handle objects in memory. An attacker who successfully     exploited this vulnerability could run arbitrary code in     kernel mode. An attacker could then install programs;
    view, change, or delete data; or create new accounts     with full user rights. (CVE-2017-8720)

  - A spoofing vulnerability exists when Internet Explorer     improperly handles specific HTML content. An attacker     who successfully exploited this vulnerability could     trick a user into believing that the user was visiting a     legitimate website. The specially crafted website could     either spoof content or serve as a pivot to chain an     attack with other vulnerabilities in web services. To     exploit the vulnerability, the user must either browse     to a malicious website or be redirected to it. In an     email attack scenario, an attacker could send an email     message in an attempt to convince the user to click a     link to the malicious website. (CVE-2017-8733)

  - A remote code execution vulnerability exists when     Microsoft Windows PDF Library improperly handles objects     in memory. The vulnerability could corrupt memory in a     way that enables an attacker to execute arbitrary code     in the context of the current user. An attacker who     successfully exploited the vulnerability could gain the     same user rights as the current user.     (CVE-2017-8728, CVE-2017-8737)

  - A remote code execution vulnerability exists in the way     that Microsoft browser JavaScript engines render content     when handling objects in memory. The vulnerability could     corrupt memory in such a way that an attacker could     execute arbitrary code in the context of the current     user. (CVE-2017-8741)

  - A remote code execution vulnerability exists when     Internet Explorer improperly accesses objects in memory.
    The vulnerability could corrupt memory in such a way     that an attacker could execute arbitrary code in the     context of the current user. (CVE-2017-8747)

  - A remote code execution vulnerability exists when     Internet Explorer improperly accesses objects in memory.
    The vulnerability could corrupt memory in such a way     that an attacker could execute arbitrary code in the     context of the current user. (CVE-2017-8747,     CVE-2017-8749)

  - A remote code execution vulnerability exists when     Microsoft .NET Framework processes untrusted input. An     attacker who successfully exploited this vulnerability     in software using the .NET framework could take control     of an affected system. An attacker could then install     programs; view, change, or delete data; or create new     accounts with full user rights. (CVE-2017-8759)     
  - An information disclosure vulnerability exists in     Microsoft browsers in the scripting engines due to     improper handling of objects in memory. An     unauthenticated, remote attacker can exploit this, by     convincing a user to visit a specially crafted website,     to disclose files on a user's computer. (CVE-2017-8529)

The remote Windows host is missing security update 4038793 or cumulative update 4038792. It is, therefore, affected by multiple vulnerabilities :

  - A race condition that could lead to a remote code     execution vulnerability exists in NetBT Session Services     when NetBT fails to maintain certain sequencing     requirements. (CVE-2017-0161)

  - A spoofing vulnerability exists in Microsoft's     implementation of the Bluetooth stack. An attacker who     successfully exploited this vulnerability could perform     a man-in-the-middle attack and force a user's computer     to unknowingly route traffic through the attacker's     computer. The attacker can then monitor and read the     traffic before sending it on to the intended recipient.
    (CVE-2017-8628)

  - An elevation of privilege vulnerability exists in     Windows when the Windows kernel-mode driver fails to     properly handle objects in memory. An attacker who     successfully exploited this vulnerability could run     arbitrary code in kernel mode. An attacker could then     install programs; view, change, or delete data; or     create new accounts with full user rights. To exploit     this vulnerability, an attacker would first have to log     on to the system. An attacker could then run a specially     crafted application that could exploit the vulnerability     and take control of an affected system. The update     addresses this vulnerability by correcting how the     Windows kernel-mode driver handles objects in memory.
    (CVE-2017-8675)

  - An information disclosure vulnerability exists in the     way that the Windows Graphics Device Interface (GDI)     handles objects in memory, allowing an attacker to     retrieve information from a targeted system. By itself,     the information disclosure does not allow arbitrary code     execution; however, it could allow arbitrary code to be     run if the attacker uses it in combination with another     vulnerability. (CVE-2017-8676)

  - A remote code execution vulnerability exists when the     Windows font library improperly handles specially     crafted embedded fonts. An attacker who successfully     exploited this vulnerability could take control of the     affected system. An attacker could then install     programs; view, change, or delete data; or create new     accounts with full user rights. (CVE-2017-8682)

  - An information disclosure vulnerability exists when the     Microsoft Windows Graphics Component improperly handles     objects in memory. An attacker who successfully     exploited the vulnerability could obtain information to     further compromise the users system. (CVE-2017-8683)

  - A information disclosure vulnerability exists when the     Windows GDI+ component improperly discloses kernel     memory addresses. An attacker who successfully exploited     the vulnerability could obtain information to further     compromise the users system.     (CVE-2017-8677, CVE-2017-8680, CVE-2017-8681,     CVE-2017-8684)

  - A memory corruption vulnerability exists in the Windows     Server DHCP service when an attacker sends specially     crafted packets to a DHCP failover server. An attacker     who successfully exploited the vulnerability could     either run arbitrary code on the DHCP failover server or     cause the DHCP service to become nonresponsive. To     exploit the vulnerability, an attacker could send a     specially crafted packet to a DHCP server. However, the     DHCP server must be set to failover mode for the attack     to succeed. The security update addresses the     vulnerability by correcting how DHCP failover servers     handle network packets. (CVE-2017-8686)

  - An Information disclosure vulnerability exists in     Windows kernel that could allow an attacker to retrieve     information that could lead to a Kernel Address Space     Layout Randomization (KASLR) bypass. An attacker who     successfully exploited this vulnerability could retrieve     the memory address of a kernel object. (CVE-2017-8687)

  - An information disclosure vulnerability exists in the     way that the Windows Graphics Device Interface+ (GDI+)     handles objects in memory, allowing an attacker to     retrieve information from a targeted system. By itself,     the information disclosure does not allow arbitrary code     execution; however, it could allow arbitrary code to be     run if the attacker uses it in combination with another     vulnerability. (CVE-2017-8688)

  - A remote code execution vulnerability exists due to the     way Windows Uniscribe handles objects in memory. An     attacker who successfully exploited this vulnerability     could take control of the affected system. An attacker     could then install programs; view, change, or delete     data; or create new accounts with full user rights.
    (CVE-2017-8692)

  - An information disclosure vulnerability exists when     Windows Uniscribe improperly discloses the contents of     its memory. An attacker who successfully exploited the     vulnerability could obtain information to further     compromise the users system. There are multiple ways an     attacker could exploit the vulnerability, such as by     convincing a user to open a specially crafted document     or by convincing a user to visit an untrusted webpage.
    The update addresses the vulnerability by correcting how     Windows Uniscribe handles objects in memory.
    (CVE-2017-8695)

  - A remote code execution vulnerability exists when     Windows Shell does not properly validate file copy     destinations. An attacker who successfully exploited the     vulnerability could run arbitrary code in the context of     the current user.
    (CVE-2017-8699)

  - An information disclosure vulnerability exists when the     Windows kernel fails to properly initialize a memory     address, allowing an attacker to retrieve information     that could lead to a Kernel Address Space Layout     Randomization (KASLR) bypass. An attacker who     successfully exploited this vulnerability could retrieve     the base address of the kernel driver from a compromised     process. (CVE-2017-8708)

  - An information disclosure vulnerability exists when     Windows Hyper-V on a host operating system fails to     properly validate input from an authenticated user on a     guest operating system. (CVE-2017-8707, CVE-2017-8713)

  - A remote code execution vulnerability exists in the VM     Host Agent Service of Remote Desktop Virtual Host role     when it fails to properly validate input from an     authenticated user on a guest operating system. To     exploit the vulnerability, an attacker could issue a     specially crafted certificate on the guest operating     system that could cause the VM host agent service on the     host operating system to execute arbitrary code. The     Remote Desktop Virtual Host role is not enabled by     default. An attacker who successfully exploited the     vulnerability could execute arbitrary code on the host     operating system. The security update addresses the     vulnerability by correcting how VM host agent service     validates guest operating system user input.
    (CVE-2017-8714)

  - An information disclosure vulnerability exists when the     Windows kernel improperly handles objects in memory. An     attacker who successfully exploited this vulnerability     could obtain information to further compromise the users     system. (CVE-2017-8678, CVE-2017-8679, CVE-2017-8709,     CVE-2017-8719)

  - An elevation of privilege vulnerability exists in     Windows when the Win32k component fails to properly     handle objects in memory. An attacker who successfully     exploited this vulnerability could run arbitrary code in     kernel mode. An attacker could then install programs;
    view, change, or delete data; or create new accounts     with full user rights. (CVE-2017-8720)

  - A spoofing vulnerability exists when Internet Explorer     improperly handles specific HTML content. An attacker     who successfully exploited this vulnerability could     trick a user into believing that the user was visiting a     legitimate website. The specially crafted website could     either spoof content or serve as a pivot to chain an     attack with other vulnerabilities in web services. To     exploit the vulnerability, the user must either browse     to a malicious website or be redirected to it. In an     email attack scenario, an attacker could send an email     message in an attempt to convince the user to click a     link to the malicious website. (CVE-2017-8733)

  - An information disclosure vulnerability exists in     Microsoft browsers due to improper parent domain     verification in certain functionality. An attacker who     successfully exploited the vulnerability could obtain     specific information that is used in the parent domain.
    (CVE-2017-8736)

  - A remote code execution vulnerability exists when     Microsoft Windows PDF Library improperly handles objects     in memory. The vulnerability could corrupt memory in a     way that enables an attacker to execute arbitrary code     in the context of the current user. An attacker who     successfully exploited the vulnerability could gain the     same user rights as the current user.     (CVE-2017-8728, CVE-2017-8737)

  - A remote code execution vulnerability exists in the way     that Microsoft browser JavaScript engines render content     when handling objects in memory. The vulnerability could     corrupt memory in such a way that an attacker could     execute arbitrary code in the context of the current     user. (CVE-2017-8741, CVE-2017-8748)

  - A remote code execution vulnerability exists when     Internet Explorer improperly accesses objects in memory.
    The vulnerability could corrupt memory in such a way     that an attacker could execute arbitrary code in the     context of the current user. (CVE-2017-8747,     CVE-2017-8749)

  - A remote code execution vulnerability exists when     Microsoft browsers improperly access objects in memory.
    The vulnerability could corrupt memory in such a way     that an attacker could execute arbitrary code in the     context of the current user. (CVE-2017-8750)

  - A remote code execution vulnerability exists when     Microsoft .NET Framework processes untrusted input. An     attacker who successfully exploited this vulnerability     in software using the .NET framework could take control     of an affected system. An attacker could then install     programs; view, change, or delete data; or create new     accounts with full user rights. (CVE-2017-8759)     
  - An information disclosure vulnerability exists in     Microsoft browsers in the scripting engines due to     improper handling of objects in memory. An     unauthenticated, remote attacker can exploit this, by     convincing a user to visit a specially crafted website,     to disclose files on a user's computer. (CVE-2017-8529)

The remote Windows host is missing security update 4038788.
It is, therefore, affected by multiple vulnerabilities :

  - A race condition that could lead to a remote code     execution vulnerability exists in NetBT Session Services     when NetBT fails to maintain certain sequencing     requirements. (CVE-2017-0161)

  - A vulnerability exists when Microsoft Edge improperly     accesses objects in memory. The vulnerability could     corrupt memory in such a way that an attacker could     execute arbitrary code in the context of the current     user. (CVE-2017-11766)

  - An information disclosure vulnerability exists when     Microsoft Edge does not properly handle objects in     memory. An attacker who successfully exploited the     vulnerability could obtain information to further     compromise the user's system.
    (CVE-2017-8597)

  - A spoofing vulnerability exists in Microsoft's     implementation of the Bluetooth stack. An attacker who     successfully exploited this vulnerability could perform     a man-in-the-middle attack and force a user's computer     to unknowingly route traffic through the attacker's     computer. (CVE-2017-8628)

  - An information disclosure vulnerability exists when     Microsoft Edge improperly handles clipboard events. For     an attack to be successful, an attacker must persuade a     user to visit a malicious website and leave it open     during clipboard activities. The update addresses the     vulnerability by changing how Microsoft Edge handles     clipboard events in the browser. (CVE-2017-8643)

  - An information disclosure vulnerability exists when     Microsoft Edge improperly handles objects in memory. An     attacker who successfully exploited the vulnerability     could obtain information to further compromise the users     system. (CVE-2017-8648)

  - A remote code execution vulnerability exists in the way     that Microsoft browser JavaScript engines render content     when handling objects in memory. The vulnerability could     corrupt memory in such a way that an attacker could     execute arbitrary code in the context of the current     user. (CVE-2017-8649)

  - A remote code execution vulnerability exists in the way     that Microsoft browser JavaScript engines render content     when handling objects in memory. The vulnerability could     corrupt memory in such a way that an attacker could     execute arbitrary code in the context of the current     user. (CVE-2017-8649, CVE-2017-8660)

  - An elevation of privilege vulnerability exists in     Windows when the Windows kernel-mode driver fails to     properly handle objects in memory. An attacker who     successfully exploited this vulnerability could run     arbitrary code in kernel mode.
    (CVE-2017-8675)

  - An information disclosure vulnerability exists in the     way that the Windows Graphics Device Interface (GDI)     handles objects in memory, allowing an attacker to     retrieve information from a targeted system. By itself,     the information disclosure does not allow arbitrary code     execution; however, it could allow arbitrary code to be     run if the attacker uses it in combination with another     vulnerability. (CVE-2017-8676)

  - A information disclosure vulnerability exists when the     Windows GDI+ component improperly discloses kernel     memory addresses. An attacker who successfully exploited     the vulnerability could obtain information to further     compromise the users system.(CVE-2017-8677)

  - An information disclosure vulnerability exists when the     Windows kernel improperly handles objects in memory. An     attacker who successfully exploited this vulnerability     could obtain information to further compromise the users     system. (CVE-2017-8678)

  - An information disclosure vulnerability exists when the     Windows kernel improperly handles objects in memory. An     attacker who successfully exploited this vulnerability     could obtain information to further compromise the users     system. (CVE-2017-8678, CVE-2017-8679)

  - A information disclosure vulnerability exists when the     Windows GDI+ component improperly discloses kernel     memory addresses. An attacker who successfully exploited     the vulnerability could obtain information to further     compromise the users system.
    (CVE-2017-8677, CVE-2017-8681)

  - A remote code execution vulnerability exists when the     Windows font library improperly handles specially     crafted embedded fonts. An attacker who successfully     exploited this vulnerability could take control of the     affected system. An attacker could then install     programs; view, change, or delete data; or create new     accounts with full user rights. (CVE-2017-8682)

  - An information disclosure vulnerability exists when the     Microsoft Windows Graphics Component improperly handles     objects in memory. An attacker who successfully     exploited the vulnerability could obtain information to     further compromise the users system. (CVE-2017-8683)

  - An Information disclosure vulnerability exists in     Windows kernel that could allow an attacker to retrieve     information that could lead to a Kernel Address Space     Layout Randomization (KASLR) bypass. An attacker who     successfully exploited this vulnerability could retrieve     the memory address of a kernel object.(CVE-2017-8687)

  - An information disclosure vulnerability exists in the     way that the Windows Graphics Device Interface+ (GDI+)     handles objects in memory, allowing an attacker to     retrieve information from a targeted system. By itself,     the information disclosure does not allow arbitrary code     execution; however, it could allow arbitrary code to be     run if the attacker uses it in combination with another     vulnerability.(CVE-2017-8688)

  - A remote code execution vulnerability exists due to the     way Windows Uniscribe handles objects in memory. An     attacker who successfully exploited this vulnerability     could take control of the affected system. An attacker     could then install programs; view, change, or delete     data; or create new accounts with full user rights.
    (CVE-2017-8692)

  - An information disclosure vulnerability exists when     Windows Uniscribe improperly discloses the contents of     its memory. An attacker who successfully exploited the     vulnerability could obtain information to further     compromise the users system. (CVE-2017-8695)

  - A remote code execution vulnerability exists when     Windows Shell does not properly validate file copy     destinations. An attacker who successfully exploited the     vulnerability could run arbitrary code in the context of     the current user.
    (CVE-2017-8699)

  - An information disclosure vulnerability exists when     Windows Hyper-V on a host operating system fails to     properly validate input from an authenticated user on a     guest operating system.
    (CVE-2017-8706)

  - An information disclosure vulnerability exists when     Windows Hyper-V on a host operating system fails to     properly validate input from an authenticated user on a     guest operating system.
    (CVE-2017-8706, CVE-2017-8707)

  - An information disclosure vulnerability exists when the     Windows kernel fails to properly initialize a memory     address, allowing an attacker to retrieve information     that could lead to a Kernel Address Space Layout     Randomization (KASLR) bypass. (CVE-2017-8708)

  - An information disclosure vulnerability exists when the     Windows kernel improperly handles objects in memory. An     attacker who successfully exploited this vulnerability     could obtain information to further compromise the users     system. (CVE-2017-8678, CVE-2017-8679, CVE-2017-8709)

  - An information disclosure vulnerability exists when     Windows Hyper-V on a host operating system fails to     properly validate input from an authenticated user on a     guest operating system.
    (CVE-2017-8706, CVE-2017-8707, CVE-2017-8712)

  - An information disclosure vulnerability exists when     Windows Hyper-V on a host operating system fails to     properly validate input from an authenticated user on a     guest operating system. (CVE-2017-8706, CVE-2017-8707,     CVE-2017-8712,CVE-2017-8713)

  - A security feature bypass vulnerability exists when     Windows Control Flow Guard mishandles objects in memory.
    (CVE-2017-8716)

  - An information disclosure vulnerability exists when the     Windows kernel improperly handles objects in memory. An     attacker who successfully exploited this vulnerability     could obtain information to further compromise the users     system. (CVE-2017-8678, CVE-2017-8679, CVE-2017-8709,     CVE-2017-8719)

  - An elevation of privilege vulnerability exists in     Windows when the Win32k component fails to properly     handle objects in memory. (CVE-2017-8720)

  - A security feature bypass exists in Microsoft Edge when     the Edge Content Security Policy (CSP) fails to properly     validate certain specially crafted documents. An     attacker who exploited the bypass could trick a user     into loading a page containing malicious content.
    (CVE-2017-8723)

  - A spoofing vulnerability exists when Microsoft Edge does     not properly parse HTTP content. (CVE-2017-8724)

  - A remote code execution vulnerability exists when     Microsoft Windows PDF Library improperly handles objects     in memory. The vulnerability could corrupt memory in a     way that enables an attacker to execute arbitrary code     in the context of the current user. An attacker who     successfully exploited the vulnerability could gain the     same user rights as the current user.
    (CVE-2017-8728)

  - A spoofing vulnerability exists when Internet Explorer     improperly handles specific HTML content. An attacker     who successfully exploited this vulnerability could     trick a user into believing that the user was visiting a     legitimate website. The specially crafted website could     either spoof content or serve as a pivot to chain an     attack with other vulnerabilities in web services. To     exploit the vulnerability, the user must either browse     to a malicious website or be redirected to it.
    (CVE-2017-8733)

  - A remote code execution vulnerability exists when     Microsoft Edge improperly accesses objects in memory.
    The vulnerability could corrupt memory in such a way     that enables an attacker to execute arbitrary code in     the context of the current user. An attacker who     successfully exploited the vulnerability could gain the     same user rights as the current user. (CVE-2017-8734)

  - A spoofing vulnerability exists when Microsoft Edge does     not properly parse HTTP content. An attacker who     successfully exploited this vulnerability could trick a     user by redirecting the user to a specially crafted     website. The specially crafted website could either     spoof content or serve as a pivot to chain an attack     with other vulnerabilities in web services.
    (CVE-2017-8724, CVE-2017-8735)

  - An information disclosure vulnerability exists in     Microsoft browsers due to improper parent domain     verification in certain functionality. An attacker who     successfully exploited the vulnerability could obtain     specific information that is used in the parent domain.
    (CVE-2017-8736)

  - A remote code execution vulnerability exists when     Microsoft Windows PDF Library improperly handles objects     in memory. The vulnerability could corrupt memory in a     way that enables an attacker to execute arbitrary code     in the context of the current user. An attacker who     successfully exploited the vulnerability could gain the     same user rights as the current user.
    (CVE-2017-8728, CVE-2017-8737)

  - An information disclosure vulnerability exists when the     scripting engine does not properly handle objects in     memory in Microsoft Edge. (CVE-2017-8739)

  - A remote code execution vulnerability exists in the way     that Microsoft browser JavaScript engines render content     when handling objects in memory. The vulnerability could     corrupt memory in such a way that an attacker could     execute arbitrary code in the context of the current     user.(CVE-2017-8649, CVE-2017-8660, CVE-2017-8741)

  - A security feature bypass vulnerability exists in Device     Guard that could allow an attacker to inject malicious     code into a Windows PowerShell session. An attacker who     successfully exploited this vulnerability could inject     code into a trusted PowerShell process to bypass the     Device Guard Code Integrity policy on the local machine.
    (CVE-2017-8746)

  - A remote code execution vulnerability exists when     Internet Explorer improperly accesses objects in memory.
    The vulnerability could corrupt memory in such a way     that an attacker could execute arbitrary code in the     context of the current user.(CVE-2017-8747)

  - A remote code execution vulnerability exists in the way     that Microsoft browser JavaScript engines render content     when handling objects in memory. The vulnerability could     corrupt memory in such a way that an attacker could     execute arbitrary code in the context of the current     user. (CVE-2017-8649, CVE-2017-8660, CVE-2017-8741,     CVE-2017-8748)

  - A remote code execution vulnerability exists when     Internet Explorer improperly accesses objects in memory.
    The vulnerability could corrupt memory in such a way     that an attacker could execute arbitrary code in the     context of the current user.(CVE-2017-8747,     CVE-2017-8749)

  - A remote code execution vulnerability exists when     Microsoft browsers improperly access objects in memory.
    The vulnerability could corrupt memory in such a way     that an attacker could execute arbitrary code in the     context of the current user. (CVE-2017-8750)

  - A remote code execution vulnerability exists when     Microsoft Edge improperly accesses objects in memory.
    The vulnerability could corrupt memory in such a way     that enables an attacker to execute arbitrary code in     the context of the current user. An attacker who     successfully exploited the vulnerability could gain the     same user rights as the current user.
    (CVE-2017-8734, CVE-2017-8751)

  - A security feature bypass exists in Microsoft Edge when     the Edge Content Security Policy (CSP) fails to properly     validate certain specially crafted documents. An     attacker who exploited the bypass could trick a user     into loading a page containing malicious content. To     exploit the bypass, an attacker must trick a user into     either loading a page containing malicious content or     visiting a malicious website. The attacker could also     inject the malicious page into either a compromised     website or an advertisement network. The update     addresses the bypass by correcting how the Edge CSP     validates documents. (CVE-2017-8723, CVE-2017-8754)

  - A remote code execution vulnerability exists in the way     that the scripting engine handles objects in memory in     Microsoft Edge. The vulnerability could corrupt memory     in such a way that an attacker could execute arbitrary     code in the context of the current user. An attacker who     successfully exploited the vulnerability could gain the     same user rights as the current user.
    (CVE-2017-11764, CVE-2017-8729, CVE-2017-8740,     CVE-2017-8752, CVE-2017-8753, CVE-2017-8755,     CVE-2017-8756)

  - A remote code execution vulnerability exists in the way     Microsoft Edge handles objects in memory. The     vulnerability could corrupt memory in such a way that an     attacker could execute arbitrary code in the context of     the current user. (CVE-2017-8757)

  - A remote code execution vulnerability exists when     Microsoft .NET Framework processes untrusted input. An     attacker who successfully exploited this vulnerability     in software using the .NET framework could take control     of an affected system. An attacker could then install     programs; view, change, or delete data; or create new     accounts with full user rights.
    (CVE-2017-8759)     
  - An information disclosure vulnerability exists in     Microsoft browsers in the scripting engines due to     improper handling of objects in memory. An     unauthenticated, remote attacker can exploit this, by     convincing a user to visit a specially crafted website,     to disclose files on a user's computer. (CVE-2017-8529)

The remote Windows host is missing security update 4038783.
It is, therefore, affected by multiple vulnerabilities :

  - A race condition that could lead to a remote code     execution vulnerability exists in NetBT Session Services     when NetBT fails to maintain certain sequencing     requirements. (CVE-2017-0161)

  - A vulnerability exists when Microsoft Edge improperly     accesses objects in memory. The vulnerability could     corrupt memory in such a way that an attacker could     execute arbitrary code in the context of the current     user. (CVE-2017-11766)

  - A spoofing vulnerability exists in Microsoft's     implementation of the Bluetooth stack. An attacker who     successfully exploited this vulnerability could perform     a man-in-the-middle attack and force a user's computer     to unknowingly route traffic through the attacker's     computer. The attacker can then monitor and read the     traffic before sending it on to the intended recipient.
    (CVE-2017-8628)

  - An information disclosure vulnerability exists when     Microsoft Edge improperly handles clipboard events. For     an attack to be successful, an attacker must persuade a     user to visit a malicious website and leave it open     during clipboard activities. The update addresses the     vulnerability by changing how Microsoft Edge handles     clipboard events in the browser. (CVE-2017-8643)

  - An elevation of privilege vulnerability exists in     Windows when the Windows kernel-mode driver fails to     properly handle objects in memory. An attacker who     successfully exploited this vulnerability could run     arbitrary code in kernel mode. An attacker could then     install programs; view, change, or delete data; or     create new accounts with full user rights. To exploit     this vulnerability, an attacker would first have to log     on to the system. An attacker could then run a specially     crafted application that could exploit the vulnerability     and take control of an affected system. The update     addresses this vulnerability by correcting how the     Windows kernel-mode driver handles objects in memory.
    (CVE-2017-8675)

  - An information disclosure vulnerability exists in the     way that the Windows Graphics Device Interface (GDI)     handles objects in memory, allowing an attacker to     retrieve information from a targeted system. By itself,     the information disclosure does not allow arbitrary code     execution; however, it could allow arbitrary code to be     run if the attacker uses it in combination with another     vulnerability. (CVE-2017-8676)

  - A information disclosure vulnerability exists when the     Windows GDI+ component improperly discloses kernel     memory addresses. An attacker who successfully exploited     the vulnerability could obtain information to further     compromise the users system.
    (CVE-2017-8677, CVE-2017-8681)

  - A remote code execution vulnerability exists when the     Windows font library improperly handles specially     crafted embedded fonts. An attacker who successfully     exploited this vulnerability could take control of the     affected system. An attacker could then install     programs; view, change, or delete data; or create new     accounts with full user rights.(CVE-2017-8682)

  - An information disclosure vulnerability exists when the     Microsoft Windows Graphics Component improperly handles     objects in memory. An attacker who successfully     exploited the vulnerability could obtain information to     further compromise the users system.
    (CVE-2017-8683)

  - An Information disclosure vulnerability exists in     Windows kernel that could allow an attacker to retrieve     information that could lead to a Kernel Address Space     Layout Randomization (KASLR) bypass. An attacker who     successfully exploited this vulnerability could retrieve     the memory address of a kernel object.     (CVE-2017-8687)

  - An information disclosure vulnerability exists in the     way that the Windows Graphics Device Interface+ (GDI+)     handles objects in memory, allowing an attacker to     retrieve information from a targeted system.
    (CVE-2017-8688)

  - A remote code execution vulnerability exists due to the     way Windows Uniscribe handles objects in memory. An     attacker who successfully exploited this vulnerability     could take control of the affected system. An attacker     could then install programs; view, change, or delete     data; or create new accounts with full user rights.
    (CVE-2017-8692)

  - An information disclosure vulnerability exists when     Windows Uniscribe improperly discloses the contents of     its memory. An attacker who successfully exploited the     vulnerability could obtain information to further     compromise the users system.
    (CVE-2017-8695)

  - A remote code execution vulnerability exists when     Windows Shell does not properly validate file copy     destinations. An attacker who successfully exploited the     vulnerability could run arbitrary code in the context of     the current user. (CVE-2017-8699)

  - An elevation of privilege vulnerability exists in     Windows Error Reporting (WER) when WER handles and     executes files. The vulnerability could allow elevation     of privilege if an attacker can successfully exploit it.
    An attacker who successfully exploited the vulnerability     could gain greater access to sensitive information and     system functionality.
    (CVE-2017-8702)

  - An information disclosure vulnerability exists when     Windows Hyper-V on a host operating system fails to     properly validate input from an authenticated user on a     guest operating system.
    (CVE-2017-8706, CVE-2017-8707)

  - An information disclosure vulnerability exists when the     Windows kernel fails to properly initialize a memory     address, allowing an attacker to retrieve information     that could lead to a Kernel Address Space Layout     Randomization (KASLR) bypass. An attacker who     successfully exploited this vulnerability could retrieve     the base address of the kernel driver from a compromised     process. (CVE-2017-8708)

  - An information disclosure vulnerability exists when     Windows Hyper-V on a host operating system fails to     properly validate input from an authenticated user on a     guest operating system.
    (CVE-2017-8706, CVE-2017-8707, CVE-2017-8713)

  - An information disclosure vulnerability exists when the     Windows kernel improperly handles objects in memory. An     attacker who successfully exploited this vulnerability     could obtain information to further compromise the users     system.(CVE-2017-8678, CVE-2017-8679, CVE-2017-8709,     CVE-2017-8719)

  - An elevation of privilege vulnerability exists in     Windows when the Win32k component fails to properly     handle objects in memory. An attacker who successfully     exploited this vulnerability could run arbitrary code in     kernel mode. An attacker could then install programs;
    view, change, or delete data; or create new accounts     with full user rights.(CVE-2017-8720)

  - A spoofing vulnerability exists when Internet Explorer     improperly handles specific HTML content. An attacker     who successfully exploited this vulnerability could     trick a user into believing that the user was visiting a     legitimate website. The specially crafted website could     either spoof content or serve as a pivot to chain an     attack with other vulnerabilities in web services.
    (CVE-2017-8733)

  - A remote code execution vulnerability exists when     Microsoft Edge improperly accesses objects in memory.
    The vulnerability could corrupt memory in such a way     that enables an attacker to execute arbitrary code in     the context of the current user. An attacker who     successfully exploited the vulnerability could gain the     same user rights as the current user.(CVE-2017-8734)

  - A spoofing vulnerability exists when Microsoft Edge does     not properly parse HTTP content. An attacker who     successfully exploited this vulnerability could trick a     user by redirecting the user to a specially crafted     website. The specially crafted website could either     spoof content or serve as a pivot to chain an attack     with other vulnerabilities in web services.
    (CVE-2017-8735)

  - An information disclosure vulnerability exists in     Microsoft browsers due to improper parent domain     verification in certain functionality. An attacker who     successfully exploited the vulnerability could obtain     specific information that is used in the parent domain.
    (CVE-2017-8736)

  - A remote code execution vulnerability exists when     Microsoft Windows PDF Library improperly handles objects     in memory. The vulnerability could corrupt memory in a     way that enables an attacker to execute arbitrary code     in the context of the current user. An attacker who     successfully exploited the vulnerability could gain the     same user rights as the current user.
    (CVE-2017-8728, CVE-2017-8737)

  - A remote code execution vulnerability exists in the way     that Microsoft browser JavaScript engines render content     when handling objects in memory. The vulnerability could     corrupt memory in such a way that an attacker could     execute arbitrary code in the context of the current     user. (CVE-2017-8660, CVE-2017-8741, CVE-2017-8748)

  - A remote code execution vulnerability exists when     Internet Explorer improperly accesses objects in memory.
    The vulnerability could corrupt memory in such a way     that an attacker could execute arbitrary code in the     context of the current user. (CVE-2017-8747,     CVE-2017-8749)

  - A remote code execution vulnerability exists when     Microsoft browsers improperly access objects in memory.
    The vulnerability could corrupt memory in such a way     that an attacker could execute arbitrary code in the     context of the current user. (CVE-2017-8750)

  - A security feature bypass exists in Microsoft Edge when     the Edge Content Security Policy (CSP) fails to properly     validate certain specially crafted documents. An     attacker who exploited the bypass could trick a user     into loading a page containing malicious content.
    (CVE-2017-8723, CVE-2017-8754)

  - A remote code execution vulnerability exists in the way     that the scripting engine handles objects in memory in     Microsoft Edge. The vulnerability could corrupt memory     in such a way that an attacker could execute arbitrary     code in the context of the current user. An attacker who     successfully exploited the vulnerability could gain the     same user rights as the current user.
    (CVE-2017-8738, CVE-2017-8752, CVE-2017-8753,     CVE-2017-8755, CVE-2017-8756)

  - A remote code execution vulnerability exists in the way     Microsoft Edge handles objects in memory. The     vulnerability could corrupt memory in such a way that an     attacker could execute arbitrary code in the context of     the current user. An attacker who successfully exploited     the vulnerability could gain the same user rights as the     current user. (CVE-2017-8757)

  - A remote code execution vulnerability exists when     Microsoft .NET Framework processes untrusted input. An     attacker who successfully exploited this vulnerability     in software using the .NET framework could take control     of an affected system. An attacker could then install     programs; view, change, or delete data; or create new     accounts with full user rights. (CVE-2017-8759)     
  - An information disclosure vulnerability exists in     Microsoft browsers in the scripting engines due to     improper handling of objects in memory. An     unauthenticated, remote attacker can exploit this, by     convincing a user to visit a specially crafted website,     to disclose files on a user's computer. (CVE-2017-8529)

The remote Windows host is missing security update 4038782.
It is, therefore, affected by multiple vulnerabilities :

  - A race condition that could lead to a remote code     execution vulnerability exists in NetBT Session Services     when NetBT fails to maintain certain sequencing     requirements. (CVE-2017-0161)

  - A vulnerability exists when Microsoft Edge improperly     accesses objects in memory. The vulnerability could     corrupt memory in such a way that an attacker could     execute arbitrary code in the context of the current     user. (CVE-2017-11766)

  - A spoofing vulnerability exists in Microsoft's     implementation of the Bluetooth stack. An attacker who     successfully exploited this vulnerability could perform     a man-in-the-middle attack and force a user's computer     to unknowingly route traffic through the attacker's     computer. The attacker can then monitor and read the     traffic before sending it on to the intended recipient.
    (CVE-2017-8628)

  - An information disclosure vulnerability exists when     Microsoft Edge improperly handles clipboard events. For     an attack to be successful, an attacker must persuade a     user to visit a malicious website and leave it open     during clipboard activities. The update addresses the     vulnerability by changing how Microsoft Edge handles     clipboard events in the browser. (CVE-2017-8643)

  - An elevation of privilege vulnerability exists in     Windows when the Windows kernel-mode driver fails to     properly handle objects in memory. An attacker who     successfully exploited this vulnerability could run     arbitrary code in kernel mode. An attacker could then     install programs; view, change, or delete data; or     create new accounts with full user rights. To exploit     this vulnerability, an attacker would first have to log     on to the system. An attacker could then run a specially     crafted application that could exploit the vulnerability     and take control of an affected system. The update     addresses this vulnerability by correcting how the     Windows kernel-mode driver handles objects in memory.
    (CVE-2017-8675)

  - An information disclosure vulnerability exists in the     way that the Windows Graphics Device Interface (GDI)     handles objects in memory, allowing an attacker to     retrieve information from a targeted system. By itself,     the information disclosure does not allow arbitrary code     execution; however, it could allow arbitrary code to be     run if the attacker uses it in combination with another     vulnerability. (CVE-2017-8676)

  - A information disclosure vulnerability exists when the     Windows GDI+ component improperly discloses kernel     memory addresses. An attacker who successfully exploited     the vulnerability could obtain information to further     compromise the users system.
    (CVE-2017-8677, CVE-2017-8681)

  - A remote code execution vulnerability exists when the     Windows font library improperly handles specially     crafted embedded fonts. An attacker who successfully     exploited this vulnerability could take control of the     affected system. An attacker could then install     programs; view, change, or delete data; or create new     accounts with full user rights.(CVE-2017-8682)

  - An information disclosure vulnerability exists when the     Microsoft Windows Graphics Component improperly handles     objects in memory. An attacker who successfully     exploited the vulnerability could obtain information to     further compromise the users system.(CVE-2017-8683)

  - A memory corruption vulnerability exists in the Windows     Server DHCP service when an attacker sends specially     crafted packets to a DHCP failover server. An attacker     who successfully exploited the vulnerability could     either run arbitrary code on the DHCP failover server or     cause the DHCP service to become nonresponsive.
    (CVE-2017-8686)

  - An Information disclosure vulnerability exists in     Windows kernel that could allow an attacker to retrieve     information that could lead to a Kernel Address Space     Layout Randomization (KASLR) bypass. An attacker who     successfully exploited this vulnerability could retrieve     the memory address of a kernel object.(CVE-2017-8687)

  - An information disclosure vulnerability exists in the     way that the Windows Graphics Device Interface+ (GDI+)     handles objects in memory, allowing an attacker to     retrieve information from a targeted system. By itself,     the information disclosure does not allow arbitrary code     execution; however, it could allow arbitrary code to be     run if the attacker uses it in combination with another     vulnerability.(CVE-2017-8688)

  - A remote code execution vulnerability exists due to the     way Windows Uniscribe handles objects in memory. An     attacker who successfully exploited this vulnerability     could take control of the affected system. An attacker     could then install programs; view, change, or delete     data; or create new accounts with full user rights.
    (CVE-2017-8692)

  - An information disclosure vulnerability exists when     Windows Uniscribe improperly discloses the contents of     its memory. An attacker who successfully exploited the     vulnerability could obtain information to further     compromise the users system.
    (CVE-2017-8695)

  - A remote code execution vulnerability exists when     Windows Shell does not properly validate file copy     destinations. An attacker who successfully exploited the     vulnerability could run arbitrary code in the context of     the current user. If the current user is logged on with     administrative user rights, an attacker could take     control of the affected system.
    (CVE-2017-8699)

  - An elevation of privilege vulnerability exists in     Windows Error Reporting (WER) when WER handles and     executes files. The vulnerability could allow elevation     of privilege if an attacker can successfully exploit it.
    An attacker who successfully exploited the vulnerability     could gain greater access to sensitive information and     system functionality.
    (CVE-2017-8702)

  - A denial of service vulnerability exists when Microsoft     Hyper-V Virtual PCI on a host server fails to properly     validate input from a privileged user on a guest     operating system.
    input. (CVE-2017-8704)

  - An information disclosure vulnerability exists when the     Windows kernel fails to properly initialize a memory     address, allowing an attacker to retrieve information     that could lead to a Kernel Address Space Layout     Randomization (KASLR) bypass. An attacker who     successfully exploited this vulnerability could retrieve     the base address of the kernel driver from a compromised     process. (CVE-2017-8708)

  - An information disclosure vulnerability exists when     Windows Hyper-V on a host operating system fails to     properly validate input from an authenticated user on a     guest operating system.
    (CVE-2017-8706, CVE-2017-8707, CVE-2017-8711,     CVE-2017-8712, CVE-2017-8713)

  - A remote code execution vulnerability exists in the VM     Host Agent Service of Remote Desktop Virtual Host role     when it fails to properly validate input from an     authenticated user on a guest operating system.
    (CVE-2017-8714)

  - An information disclosure vulnerability exists when the     Windows kernel improperly handles objects in memory. An     attacker who successfully exploited this vulnerability     could obtain information to further compromise the users     system. (CVE-2017-8678, CVE-2017-8679, CVE-2017-8709,     CVE-2017-8719)

  - An elevation of privilege vulnerability exists in     Windows when the Win32k component fails to properly     handle objects in memory. An attacker who successfully     exploited this vulnerability could run arbitrary code in     kernel mode. An attacker could then install programs;
    view, change, or delete data; or create new accounts     with full user rights.(CVE-2017-8720)

  - A spoofing vulnerability exists when Internet Explorer     improperly handles specific HTML content. An attacker     who successfully exploited this vulnerability could     trick a user into believing that the user was visiting a     legitimate website.
    (CVE-2017-8733)

  - A remote code execution vulnerability exists when     Microsoft Edge improperly accesses objects in memory.
    The vulnerability could corrupt memory in such a way     that enables an attacker to execute arbitrary code in     the context of the current user. An attacker who     successfully exploited the vulnerability could gain the     same user rights as the current user.
    (CVE-2017-8731, CVE-2017-8734)

  - A spoofing vulnerability exists when Microsoft Edge does     not properly parse HTTP content. An attacker who     successfully exploited this vulnerability could trick a     user by redirecting the user to a specially crafted     website. The specially crafted website could either     spoof content or serve as a pivot to chain an attack     with other vulnerabilities in web services.
    (CVE-2017-8735)

  - An information disclosure vulnerability exists in     Microsoft browsers due to improper parent domain     verification in certain functionality. An attacker who     successfully exploited the vulnerability could obtain     specific information that is used in the parent domain.
    (CVE-2017-8736)

  - A remote code execution vulnerability exists when     Microsoft Windows PDF Library improperly handles objects     in memory. The vulnerability could corrupt memory in a     way that enables an attacker to execute arbitrary code     in the context of the current user. An attacker who     successfully exploited the vulnerability could gain the     same user rights as the current user.
    (CVE-2017-8728, CVE-2017-8737)

  - A security feature bypass vulnerability exists in Device     Guard that could allow an attacker to inject malicious     code into a Windows PowerShell session.(CVE-2017-8746)

  - A remote code execution vulnerability exists in the way     that Microsoft browser JavaScript engines render content     when handling objects in memory. The vulnerability could     corrupt memory in such a way that an attacker could     execute arbitrary code in the context of the current     user. (CVE-2017-8649, CVE-2017-8660, CVE-2017-8741,     CVE-2017-8748)

  - A remote code execution vulnerability exists when     Internet Explorer improperly accesses objects in memory.
    The vulnerability could corrupt memory in such a way     that an attacker could execute arbitrary code in the     context of the current user. (CVE-2017-8747,     CVE-2017-8749)

  - A remote code execution vulnerability exists when     Microsoft browsers improperly access objects in memory.
    The vulnerability could corrupt memory in such a way     that an attacker could execute arbitrary code in the     context of the current user.(CVE-2017-8750)

  - A security feature bypass exists in Microsoft Edge when     the Edge Content Security Policy (CSP) fails to properly     validate certain specially crafted documents. An     attacker who exploited the bypass could trick a user     into loading a page containing malicious content.
    (CVE-2017-8723, CVE-2017-8754)

  - A remote code execution vulnerability exists in the way     that the scripting engine handles objects in memory in     Microsoft Edge. The vulnerability could corrupt memory     in such a way that an attacker could execute arbitrary     code in the context of the current user. An attacker who     successfully exploited the vulnerability could gain the     same user rights as the current user.
    (CVE-2017-11764, CVE-2017-8738, CVE-2017-8752,     CVE-2017-8753, CVE-2017-8755, CVE-2017-8756)

  - A remote code execution vulnerability exists in the way     Microsoft Edge handles objects in memory. The     vulnerability could corrupt memory in such a way that an     attacker could execute arbitrary code in the context of     the current user. An attacker who successfully exploited     the vulnerability could gain the same user rights as the     current user. (CVE-2017-8757)

  - A remote code execution vulnerability exists when     Microsoft .NET Framework processes untrusted input. An     attacker who successfully exploited this vulnerability     in software using the .NET framework could take control     of an affected system.
    (CVE-2017-8759)     
  - An information disclosure vulnerability exists in     Microsoft browsers in the scripting engines due to     improper handling of objects in memory. An     unauthenticated, remote attacker can exploit this, by     convincing a user to visit a specially crafted website,     to disclose files on a user's computer. (CVE-2017-8529)

The remote Windows host is missing security update 4038779 or cumulative update 4038777. It is, therefore, affected by multiple vulnerabilities :

  - A race condition that could lead to a remote code     execution vulnerability exists in NetBT Session Services     when NetBT fails to maintain certain sequencing     requirements. (CVE-2017-0161)

  - A spoofing vulnerability exists in Microsoft's     implementation of the Bluetooth stack. An attacker who     successfully exploited this vulnerability could perform     a man-in-the-middle attack and force a user's computer     to unknowingly route traffic through the attacker's     computer. The attacker can then monitor and read the     traffic before sending it on to the intended recipient.
    (CVE-2017-8628)

  - An elevation of privilege vulnerability exists in     Windows when the Windows kernel-mode driver fails to     properly handle objects in memory. An attacker who     successfully exploited this vulnerability could run     arbitrary code in kernel mode. An attacker could then     install programs; view, change, or delete data; or     create new accounts with full user rights. To exploit     this vulnerability, an attacker would first have to log     on to the system. An attacker could then run a specially     crafted application that could exploit the vulnerability     and take control of an affected system. The update     addresses this vulnerability by correcting how the     Windows kernel-mode driver handles objects in memory.
    (CVE-2017-8675)

  - An information disclosure vulnerability exists in the     way that the Windows Graphics Device Interface (GDI)     handles objects in memory, allowing an attacker to     retrieve information from a targeted system. By itself,     the information disclosure does not allow arbitrary code     execution; however, it could allow arbitrary code to be     run if the attacker uses it in combination with another     vulnerability. (CVE-2017-8676)

  - A remote code execution vulnerability exists when the     Windows font library improperly handles specially     crafted embedded fonts. An attacker who successfully     exploited this vulnerability could take control of the     affected system. An attacker could then install     programs; view, change, or delete data; or create new     accounts with full user rights. (CVE-2017-8682)

  - An information disclosure vulnerability exists when the     Microsoft Windows Graphics Component improperly handles     objects in memory. An attacker who successfully     exploited the vulnerability could obtain information to     further compromise the users system. (CVE-2017-8683)

  - A information disclosure vulnerability exists when the     Windows GDI+ component improperly discloses kernel     memory addresses. An attacker who successfully exploited     the vulnerability could obtain information to further     compromise the users system.
    (CVE-2017-8677, CVE-2017-8680, CVE-2017-8681,     CVE-2017-8684, CVE-2017-8685)

  - An Information disclosure vulnerability exists in     Windows kernel that could allow an attacker to retrieve     information that could lead to a Kernel Address Space     Layout Randomization (KASLR) bypass. An attacker who     successfully exploited this vulnerability could retrieve     the memory address of a kernel object. (CVE-2017-8687)

  - An information disclosure vulnerability exists in the     way that the Windows Graphics Device Interface+ (GDI+)     handles objects in memory, allowing an attacker to     retrieve information from a targeted system. By itself,     the information disclosure does not allow arbitrary code     execution; however, it could allow arbitrary code to be     run if the attacker uses it in combination with another     vulnerability. (CVE-2017-8688)

  - An information disclosure vulnerability exists when     Windows Uniscribe improperly discloses the contents of     its memory. An attacker who successfully exploited the     vulnerability could obtain information to further     compromise the users system. There are multiple ways an     attacker could exploit the vulnerability, such as by     convincing a user to open a specially crafted document     or by convincing a user to visit an untrusted webpage.
    The update addresses the vulnerability by correcting how     Windows Uniscribe handles objects in memory.
    (CVE-2017-8695)

  - A remote code execution vulnerability exists due to the     way Windows Uniscribe handles objects in memory. An     attacker who successfully exploited this vulnerability     could take control of the affected system. An attacker     could then install programs; view, change, or delete     data; or create new accounts with full user rights.
    (CVE-2017-8696)

  - A remote code execution vulnerability exists when     Windows Shell does not properly validate file copy     destinations. An attacker who successfully exploited the     vulnerability could run arbitrary code in the context of     the current user.
    (CVE-2017-8699)

  - An information disclosure vulnerability exists when     Windows Hyper-V on a host operating system fails to     properly validate input from an authenticated user on a     guest operating system. (CVE-2017-8707)

  - An information disclosure vulnerability exists when the     Windows kernel fails to properly initialize a memory     address, allowing an attacker to retrieve information     that could lead to a Kernel Address Space Layout     Randomization (KASLR) bypass. An attacker who     successfully exploited this vulnerability could retrieve     the base address of the kernel driver from a compromised     process. (CVE-2017-8708)

  - An information disclosure vulnerability exists in the     Windows System Information Console when it improperly     parses XML input containing a reference to an external     entity. An attacker who successfully exploited this     vulnerability could read arbitrary files via an XML     external entity (XXE) declaration. To exploit the     vulnerability, an attacker could create a file     containing specially crafted XML content and convince an     authenticated user to open the file. The update     addresses the vulnerability by modifying the way that     the Windows System Information Console parses XML input.
    (CVE-2017-8710)

  - An information disclosure vulnerability exists when the     Windows kernel improperly handles objects in memory. An     attacker who successfully exploited this vulnerability     could obtain information to further compromise the users     system. (CVE-2017-8678, CVE-2017-8679, CVE-2017-8709,     CVE-2017-8719)

  - An elevation of privilege vulnerability exists in     Windows when the Win32k component fails to properly     handle objects in memory. An attacker who successfully     exploited this vulnerability could run arbitrary code in     kernel mode. An attacker could then install programs;
    view, change, or delete data; or create new accounts     with full user rights. (CVE-2017-8720)

  - A spoofing vulnerability exists when Internet Explorer     improperly handles specific HTML content. An attacker     who successfully exploited this vulnerability could     trick a user into believing that the user was visiting a     legitimate website. The specially crafted website could     either spoof content or serve as a pivot to chain an     attack with other vulnerabilities in web services. To     exploit the vulnerability, the user must either browse     to a malicious website or be redirected to it. In an     email attack scenario, an attacker could send an email     message in an attempt to convince the user to click a     link to the malicious website. (CVE-2017-8733)

  - An information disclosure vulnerability exists in     Microsoft browsers due to improper parent domain     verification in certain functionality. An attacker who     successfully exploited the vulnerability could obtain     specific information that is used in the parent domain.
    (CVE-2017-8736)

  - A remote code execution vulnerability exists in the way     that Microsoft browser JavaScript engines render content     when handling objects in memory. The vulnerability could     corrupt memory in such a way that an attacker could     execute arbitrary code in the context of the current     user. (CVE-2017-8741, CVE-2017-8748)

  - A remote code execution vulnerability exists when     Internet Explorer improperly accesses objects in memory.
    The vulnerability could corrupt memory in such a way     that an attacker could execute arbitrary code in the     context of the current user. (CVE-2017-8747,     CVE-2017-8749)

  - A remote code execution vulnerability exists when     Microsoft browsers improperly access objects in memory.
    The vulnerability could corrupt memory in such a way     that an attacker could execute arbitrary code in the     context of the current user. (CVE-2017-8750)

  - An information disclosure vulnerability exists in     Microsoft browsers in the scripting engines due to     improper handling of objects in memory. An     unauthenticated, remote attacker can exploit this, by     convincing a user to visit a specially crafted website,     to disclose files on a user's computer. (CVE-2017-8529)

The Microsoft Skype for Business or Microsoft Lync or Microsoft Live Meeting installation on the remote host is missing security updates. It is, therefore, affected by multiple vulnerabilities :

  - An information disclosure vulnerability exists when     Windows Uniscribe improperly discloses the contents of     its memory. An attacker who successfully exploited the     vulnerability could obtain information to further     compromise the users system. There are multiple ways an     attacker could exploit the vulnerability, such as by     convincing a user to open a specially crafted document     or by convincing a user to visit an untrusted webpage.
    The update addresses the vulnerability by correcting how     Windows Uniscribe handles objects in memory.
    (CVE-2017-8695)

  - An information disclosure vulnerability exists in the     way that the Windows Graphics Device Interface (GDI)     handles objects in memory, allowing an attacker to     retrieve information from a targeted system. By itself,     the information disclosure does not allow arbitrary code     execution; however, it could allow arbitrary code to be     run if the attacker uses it in combination with another     vulnerability. To exploit this vulnerability, an     attacker would have to log on to an affected system and     run a specially crafted application. Note that where the     severity is indicated as Critical in the Affected     Products table, the Preview Pane is an attack vector for     this vulnerability. The security update addresses the     vulnerability by correcting how GDI handles memory     addresses. (CVE-2017-8676)

  - A remote code execution vulnerability exists due to the     way Windows Uniscribe handles objects in memory. An     attacker who successfully exploited this vulnerability     could take control of the affected system. An attacker     could then install programs; view, change, or delete     data; or create new accounts with full user rights.
    Users whose accounts are configured to have fewer user     rights on the system could be less impacted than users     who operate with administrative user rights. There are     multiple ways an attacker could exploit this     vulnerability: In a web-based attack scenario, an     attacker could host a specially crafted website designed     to exploit this vulnerability and then convince a user     to view the website. An attacker would have no way to     force users to view the attacker-controlled content.
    Instead, an attacker would have to convince users to     take action, typically by getting them to click a link     in an email or instant message that takes users to the     attacker's website, or by opening an attachment sent     through email. In a file-sharing attack scenario, an     attacker could provide a specially crafted document file     designed to exploit this vulnerability and then convince     a user to open the document file.The security update     addresses the vulnerability by correcting how Windows     Uniscribe handles objects in memory. (CVE-2017-8696)

ID	Name	Product	Family	Severity
104385	KB4038781: Windows 10 September 2017 Cumulative Update	Nessus	Windows : Microsoft Bulletins	high
103140	Windows 2008 September 2017 Multiple Security Updates	Nessus	Windows : Microsoft Bulletins	high
103135	Security Updates for Microsoft Office Viewers (September 2017)	Nessus	Windows : Microsoft Bulletins	high
103133	Security Updates for Microsoft Office Products (September 2017)	Nessus	Windows : Microsoft Bulletins	high
103132	Windows Server 2012 September 2017 Security Updates	Nessus	Windows : Microsoft Bulletins	high
103131	Windows 8.1 and Windows Server 2012 R2 September 2017 Security Updates	Nessus	Windows : Microsoft Bulletins	high
103130	KB4038788: Windows 10 Version 1703 September 2017 Cumulative Update	Nessus	Windows : Microsoft Bulletins	high
103129	KB4038783: Windows 10 Version 1511 September 2017 Cumulative Update	Nessus	Windows : Microsoft Bulletins	high
103128	KB4038782: Windows 10 Version 1607 and Windows Server 2016 September 2017 Cumulative Update	Nessus	Windows : Microsoft Bulletins	high
103127	Windows 7 and Windows Server 2008 R2 September 2017 Security Updates	Nessus	Windows : Microsoft Bulletins	high
103123	Security Updates for Microsoft Skype for Business and Microsoft Lync and Microsoft Live Meeting (September 2017)	Nessus	Windows : Microsoft Bulletins	high

CVE-2017-8695

LOW

Description

References

Details

Risk Information

CVSS v2.0

CVSS v3.0

Vulnerable Software

Configuration 1

Tenable Plugins

high

high

high

high

high

high

high

high

high

high

high