104034

1040849

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8120

45653

The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities :

  - A remote code execution vulnerability exists in the Credential     Security Support Provider protocol (CredSSP). An attacker who     successfully exploits this vulnerability could relay user     credentials and use them to execute code on the target host.
    (CVE-2018-0886)

  - An elevation of privilege vulnerability exists when the     Windows kernel fails to properly handle objects in     memory. An attacker who successfully exploited this     vulnerability could run arbitrary code in kernel mode.
    An attacker could then install programs; view, change,     or delete data; or create new accounts with full user     rights.  (CVE-2018-8897)

  - An elevation of privilege vulnerability exists when the     Windows Common Log File System (CLFS) driver improperly     handles objects in memory. An attacker who successfully     exploited this vulnerability could run processes in an     elevated context.  (CVE-2018-8167)

  - An elevation of privilege vulnerability exists in     Windows when the Win32k component fails to properly     handle objects in memory. An attacker who successfully     exploited this vulnerability could run arbitrary code in     kernel mode. An attacker could then install programs;
    view, change, or delete data; or create new accounts     with full user rights.  (CVE-2018-8120, CVE-2018-8124,     CVE-2018-8164, CVE-2018-8166)

  - A remote code execution vulnerability exists in     &quot;Microsoft COM for Windows&quot; when it fails to     properly handle serialized objects. An attacker who     successfully exploited the vulnerability could use a     specially crafted file or script to perform actions. In     an email attack scenario, an attacker could exploit the     vulnerability by sending the specially crafted file to     the user and convincing the user to open the file.
    (CVE-2018-0824)

  - A remote code execution vulnerability exists in the way     that the VBScript engine handles objects in memory. The     vulnerability could corrupt memory in such a way that an     attacker could execute arbitrary code in the context of     the current user. An attacker who successfully exploited     the vulnerability could gain the same user rights as the     current user.  (CVE-2018-8174)

  - A remote code execution vulnerability exists when     Windows Hyper-V on a host server fails to properly     validate input from an authenticated user on a guest     operating system.  (CVE-2018-0959)

The remote Windows host is missing security update 4103712 or cumulative update 4103718. It is, therefore, affected by multiple vulnerabilities :

  - An elevation of privilege vulnerability exists when the     Windows kernel fails to properly handle objects in     memory. An attacker who successfully exploited this     vulnerability could run arbitrary code in kernel mode.
    An attacker could then install programs; view, change,     or delete data; or create new accounts with full user     rights.  (CVE-2018-8897)

  - A remote code execution vulnerability exists in the way     that Microsoft browsers access objects in memory. The     vulnerability could corrupt memory in a way that could     allow an attacker to execute arbitrary code in the     context of the current user. An attacker who     successfully exploited the vulnerability could gain the     same user rights as the current user.  (CVE-2018-8178)

  - An elevation of privilege vulnerability exists in     Windows when the Win32k component fails to properly     handle objects in memory. An attacker who successfully     exploited this vulnerability could run arbitrary code in     kernel mode. An attacker could then install programs;
    view, change, or delete data; or create new accounts     with full user rights.  (CVE-2018-8120, CVE-2018-8124,     CVE-2018-8164, CVE-2018-8166)

  - A remote code execution vulnerability exists in the way     the scripting engine handles objects in memory in     Microsoft browsers. The vulnerability could corrupt     memory in such a way that an attacker could execute     arbitrary code in the context of the current user. An     attacker who successfully exploited the vulnerability     could gain the same user rights as the current user.
    (CVE-2018-0954, CVE-2018-1022)

  - A security feature bypass vulnerability exists in .Net     Framework which could allow an attacker to bypass Device     Guard. An attacker who successfully exploited this     vulnerability could circumvent a User Mode Code     Integrity (UMCI) policy on the machine.  (CVE-2018-1039)

  - An information disclosure vulnerability exists when     Chakra improperly discloses the contents of its memory,     which could provide an attacker with information to     further compromise the users computer or data.
    (CVE-2018-8145)

  - A remote code execution vulnerability exists in the way     that Windows handles objects in memory. An attacker who     successfully exploited the vulnerability could execute     arbitrary code with elevated permissions on a target     system.  (CVE-2018-8136)

  - An information disclosure vulnerability exists when the     Windows kernel improperly handles objects in memory. An     attacker who successfully exploited this vulnerability     could obtain information to further compromise the users     system.  (CVE-2018-8127)

  - An elevation of privilege vulnerability exists when the     Windows Common Log File System (CLFS) driver improperly     handles objects in memory. An attacker who successfully     exploited this vulnerability could run processes in an     elevated context.  (CVE-2018-8167)

  - A remote code execution vulnerability exists when     Windows Hyper-V on a host server fails to properly     validate input from an authenticated user on a guest     operating system.  (CVE-2018-0959)

  - An information disclosure vulnerability exists when     affected Microsoft browsers improperly handle objects in     memory. An attacker who successfully exploited this     vulnerability could obtain information to further     compromise the users system.  (CVE-2018-1025)

  - A remote code execution vulnerability exists in     Microsoft COM for Windows when it fails to     properly handle serialized objects. An attacker who     successfully exploited the vulnerability could use a     specially crafted file or script to perform actions. In     an email attack scenario, an attacker could exploit the     vulnerability by sending the specially crafted file to     the user and convincing the user to open the file.
    (CVE-2018-0824)

  - A remote code execution vulnerability exists in the way     that the scripting engine handles objects in memory in     Internet Explorer. The vulnerability could corrupt     memory in such a way that an attacker could execute     arbitrary code in the context of the current user. An     attacker who successfully exploited the vulnerability     could gain the same user rights as the current user.
    (CVE-2018-0955, CVE-2018-8114, CVE-2018-8122)

  - A remote code execution vulnerability exists in the way     that the VBScript engine handles objects in memory. The     vulnerability could corrupt memory in such a way that an     attacker could execute arbitrary code in the context of     the current user. An attacker who successfully exploited     the vulnerability could gain the same user rights as the     current user.  (CVE-2018-8174)

  - A denial of service vulnerability exists when .NET and     .NET Core improperly process XML documents. An attacker     who successfully exploited this vulnerability could     cause a denial of service against a .NET application. A     remote unauthenticated attacker could exploit this     vulnerability by issuing specially crafted requests to a     .NET (or .NET core) application. The update addresses     the vulnerability by correcting how .NET and .NET Core     applications handle XML document processing.
    (CVE-2018-0765)

ID	Name	Product	Family	Severity
109651	Security Updates for Windows Server 2008 (May 2018)	Nessus	Windows : Microsoft Bulletins	high
109604	KB4103712: Windows 7 and Windows Server 2008 R2 May 2018 Security Update	Nessus	Windows : Microsoft Bulletins	high

CVE-2018-8120

HIGH

Description

References

Details

Risk Information

CVSS v2.0

CVSS v3.0

Vulnerable Software

Configuration 1

Tenable Plugins

high

high