106091

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8649

The remote Windows host is missing security update 4471332.
It is, therefore, affected by multiple vulnerabilities :

  - An information disclosure vulnerability exists when     DirectX improperly handles objects in memory. An     attacker who successfully exploited this vulnerability     could obtain information to further compromise the users     system. An authenticated attacker could exploit this     vulnerability by running a specially crafted     application. The update addresses the vulnerability by     correcting how DirectX handles objects in memory.
    (CVE-2018-8638)

  - A remote code execution vulnerability exists in the way     that the Chakra scripting engine handles objects in     memory in Microsoft Edge. The vulnerability could     corrupt memory in such a way that an attacker could     execute arbitrary code in the context of the current     user. An attacker who successfully exploited the     vulnerability could gain the same user rights as the     current user.  (CVE-2018-8583, CVE-2018-8617,     CVE-2018-8618, CVE-2018-8624, CVE-2018-8629)

  - A Denial Of Service vulnerability exists when Connected     User Experiences and Telemetry Service fails to validate     certain function values. An attacker who successfully     exploited this vulnerability could deny dependent     security feature functionality.  (CVE-2018-8612)

  - An information disclosure vulnerability exists when the     Windows GDI component improperly discloses the contents     of its memory. An attacker who successfully exploited     the vulnerability could obtain information to further     compromise the users system. There are multiple ways an     attacker could exploit the vulnerability, such as by     convincing a user to open a specially crafted document,     or by convincing a user to visit an untrusted webpage.
    The security update addresses the vulnerability by     correcting how the Windows GDI component handles objects     in memory. (CVE-2018-8595, CVE-2018-8596)

  - A remote code execution vulnerability exists when     Internet Explorer improperly accesses objects in memory.
    The vulnerability could corrupt memory in such a way     that an attacker could execute arbitrary code in the     context of the current user. An attacker who     successfully exploited the vulnerability could gain the     same user rights as the current user.  (CVE-2018-8631)

  - A remote code execution vulnerability exists in Windows     where Microsoft text-to-speech fails to properly handle     objects in the memory. An attacker who successfully     exploited this vulnerability could take control of the     affected system. An attacker could then install     programs; view, change, or delete data; or create new     accounts with full user rights.  (CVE-2018-8634)

  - A remote code execution vulnerability exists when the     Microsoft .NET Framework fails to validate input     properly. An attacker who successfully exploited this     vulnerability could take control of an affected system.
    An attacker could then install programs; view, change,     or delete data; or create new accounts with full user     rights. Users whose accounts are configured to have     fewer user rights on the system could be less impacted     than users who operate with administrative user rights.
    (CVE-2018-8540)

  - An information disclosure vulnerability exists when the     Windows kernel improperly handles objects in memory. An     attacker who successfully exploited this vulnerability     could obtain information to further compromise the users     system.  (CVE-2018-8477)

  - An elevation of privilege vulnerability exists when the     Diagnostics Hub Standard Collector Service improperly     impersonates certain file operations. An attacker who     successfully exploited this vulnerability could gain     elevated privileges. An attacker with unprivileged     access to a vulnerable system could exploit this     vulnerability. The security update addresses the     vulnerability by ensuring the Diagnostics Hub Standard     Collector Service properly impersonates file operations.
    (CVE-2018-8599)

  - A denial of service vulnerability exists when Windows     improperly handles objects in memory. An attacker who     successfully exploited the vulnerability could cause a     target system to stop responding.  (CVE-2018-8649)

  - An elevation of privilege vulnerability exists in     Windows when the Win32k component fails to properly     handle objects in memory. An attacker who successfully     exploited this vulnerability could run arbitrary code in     kernel mode. An attacker could then install programs;
    view, change, or delete data; or create new accounts     with full user rights.  (CVE-2018-8639)

  - An information disclosure vulnerability exists when     Remote Procedure Call runtime improperly initializes     objects in memory.  (CVE-2018-8514)

  - An elevation of privilege vulnerability exists when the     Windows kernel fails to properly handle objects in     memory. An attacker who successfully exploited this     vulnerability could run arbitrary code in kernel mode.
    An attacker could then install programs; view, change,     or delete data; or create new accounts with full user     rights.  (CVE-2018-8611)

  - An information disclosure vulnerability exists in     Windows kernel that could allow an attacker to retrieve     information that could lead to a Kernel Address Space     Layout Randomization (KASLR) bypass. An attacker who     successfully exploited this vulnerability could retrieve     the memory address of a kernel object.  (CVE-2018-8637)

  - A remote code execution vulnerability exists in the way     that the VBScript engine handles objects in memory. The     vulnerability could corrupt memory in such a way that an     attacker could execute arbitrary code in the context of     the current user. An attacker who successfully exploited     the vulnerability could gain the same user rights as the     current user.  (CVE-2018-8625)

  - A remote code execution vulnerability exists when the     Internet Explorer VBScript execution policy does not     properly restrict VBScript under specific conditions. An     attacker who exploited the vulnerability could run     arbitrary code with medium-integrity level privileges     (the permissions of the current user).  (CVE-2018-8619)

  - A remote code execution vulnerability exists in the way     that the scripting engine handles objects in memory in     Internet Explorer. The vulnerability could corrupt     memory in such a way that an attacker could execute     arbitrary code in the context of the current user. An     attacker who successfully exploited the vulnerability     could gain the same user rights as the current user.
    (CVE-2018-8643)

  - A denial of service vulnerability exists when .NET     Framework improperly handles special web requests. An     attacker who successfully exploited this vulnerability     could cause a denial of service against an .NET     Framework web application. The vulnerability can be     exploited remotely, without authentication. A remote     unauthenticated attacker could exploit this     vulnerability by issuing specially crafted requests to     the .NET Framework application. The update addresses the     vulnerability by correcting how the .NET Framework web     application handles web requests. (CVE-2018-8517)

  - An elevation of privilege vulnerability exists in     Windows when the Windows kernel-mode driver fails to     properly handle objects in memory. An attacker who     successfully exploited this vulnerability could run     arbitrary code in kernel mode. An attacker could then     install programs; view, change, or delete data; or     create new accounts with full user rights.
    (CVE-2018-8641)

  - A remote code execution vulnerability exists in Windows     Domain Name System (DNS) servers when they fail to     properly handle requests. An attacker who successfully     exploited the vulnerability could run arbitrary code in     the context of the Local System Account. Windows servers     that are configured as DNS servers are at risk from this     vulnerability.  (CVE-2018-8626)

CVE-2018-8649

Description

References

Details

Risk Information

CVSS v2.0

CVSS v3.0

Vulnerable Software

Configuration 1

Tenable Plugins