https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1048

http://packetstormsecurity.com/files/158222/Windows-Print-Spooler-Privilege-Escalation.html

http://packetstormsecurity.com/files/159217/Microsoft-Spooler-Local-Privilege-Elevation.html

The remote Windows host is missing security update 4556854 or cumulative update 4556860. It is, therefore, affected by multiple vulnerabilities :

  - A denial of service vulnerability exists when .NET Core     or .NET Framework improperly handles web requests. An     attacker who successfully exploited this vulnerability     could cause a denial of service against a .NET Core or     .NET Framework web application. The vulnerability can be     exploited remotely, without authentication. A remote     unauthenticated attacker could exploit this     vulnerability by issuing specially crafted requests to     the .NET Core or .NET Framework application. The update     addresses the vulnerability by correcting how the .NET     Core or .NET Framework web application handles web     requests. (CVE-2020-1108)

  - An information disclosure vulnerability exists in the     way that the Windows Graphics Device Interface (GDI)     handles objects in memory, allowing an attacker to     retrieve information from a targeted system. By itself,     the information disclosure does not allow arbitrary code     execution; however, it could allow arbitrary code to be     run if the attacker uses it in combination with another     vulnerability.  (CVE-2020-1141)

  - A denial of service vulnerability exists when Hyper-V on     a Windows Server fails to properly handle specially     crafted network packets.  (CVE-2020-0909)

  - An information disclosure vulnerability exists when the     Windows kernel improperly handles objects in memory. An     attacker who successfully exploited this vulnerability     could obtain information to further compromise the users     system.  (CVE-2020-1072)

  - A security feature bypass vulnerability exists in     Microsoft Windows when the Task Scheduler service fails     to properly verify client connections over RPC. An     attacker who successfully exploited this vulnerability     could run arbitrary code as an administrator. An     attacker could then install programs; view, change, or     delete data; or create new accounts with full user     rights.  (CVE-2020-1113)

  - An information disclosure vulnerability exists when the     Windows GDI component improperly discloses the contents     of its memory. An attacker who successfully exploited     the vulnerability could obtain information to further     compromise the users system. There are multiple ways an     attacker could exploit the vulnerability, such as by     convincing a user to open a specially crafted document,     or by convincing a user to visit an untrusted webpage.
    The security update addresses the vulnerability by     correcting how the Windows GDI component handles objects     in memory. (CVE-2020-0963)

  - An elevation of privilege vulnerability exists when the     Windows Print Spooler service improperly allows     arbitrary writing to the file system. An attacker who     successfully exploited this vulnerability could run     arbitrary code with elevated system privileges. An     attacker could then install programs; view, change, or     delete data; or create new accounts with full user     rights.  (CVE-2020-1048, CVE-2020-1070)

  - A remote code execution vulnerability exists when the     Windows Jet Database Engine improperly handles objects     in memory. An attacker who successfully exploited this     vulnerability could execute arbitrary code on a victim     system. An attacker could exploit this vulnerability by     enticing a victim to open a specially crafted file. The     update addresses the vulnerability by correcting the way     the Windows Jet Database Engine handles objects in     memory. (CVE-2020-1051, CVE-2020-1174, CVE-2020-1175,     CVE-2020-1176)

  - A remote code execution vulnerability exists when     Internet Explorer improperly accesses objects in memory.
    The vulnerability could corrupt memory in such a way     that an attacker could execute arbitrary code in the     context of the current user. An attacker who     successfully exploited the vulnerability could gain the     same user rights as the current user.  (CVE-2020-1062,     CVE-2020-1092)

  - An elevation of privilege vulnerability exists in .NET     Framework which could allow an attacker to elevate their     privilege level.  (CVE-2020-1066)

  - An elevation of privilege vulnerability exists in     Windows Installer because of the way Windows Installer     handles certain filesystem operations.  (CVE-2020-1078)

  - A remote code execution vulnerability exists in the way     that the MSHTML engine improperly validates input. An     attacker could execute arbitrary code in the context of     the current user.  (CVE-2020-1064)

  - A remote code execution vulnerability exists in the way     that Microsoft Graphics Components handle objects in     memory. An attacker who successfully exploited the     vulnerability could execute arbitrary code on a target     system.  (CVE-2020-1153)

  - An elevation of privilege vulnerability exists in     Windows when the Windows kernel-mode driver fails to     properly handle objects in memory. An attacker who     successfully exploited this vulnerability could run     arbitrary code in kernel mode. An attacker could then     install programs; view, change, or delete data; or     create new accounts with full user rights.
    (CVE-2020-1054, CVE-2020-1143)

  - A remote code execution vulnerability exists in the way     that Windows handles objects in memory. An attacker who     successfully exploited the vulnerability could execute     arbitrary code with elevated permissions on a target     system.  (CVE-2020-1067)

  - An information disclosure vulnerability exists when the     Windows Client Server Run-Time Subsystem (CSRSS) fails     to properly handle objects in memory. An attacker who     successfully exploited the vulnerability could obtain     information to further compromise the users system.
    (CVE-2020-1116)

  - An elevation of privilege vulnerability exists when the     Windows Background Intelligent Transfer Service (BITS)     IIS module improperly handles uploaded content. An     attacker who successfully exploited this vulnerability     could upload restricted file types to an IIS-hosted     folder.  (CVE-2020-1112)

  - An elevation of privilege vulnerability exists when the     Windows Printer Service improperly validates file paths     while loading printer drivers. An authenticated attacker     who successfully exploited this vulnerability could run     arbitrary code with elevated system privileges.
    (CVE-2020-1081)

  - A remote code execution vulnerability exists in the way     that the Microsoft Script Runtime handles objects in     memory. The vulnerability could corrupt memory in such a     way that an attacker could execute arbitrary code in the     context of the current user. An attacker who     successfully exploited the vulnerability could gain the     same user rights as the current user.  (CVE-2020-1061)

  - An elevation of privilege vulnerability exists when the     Windows kernel fails to properly handle objects in     memory. An attacker who successfully exploited this     vulnerability could run arbitrary code in kernel mode.
    An attacker could then install programs; view, change,     or delete data; or create new accounts with full user     rights.  (CVE-2020-1114)

  - An elevation of privilege vulnerability exists when the     Windows Common Log File System (CLFS) driver improperly     handles objects in memory. An attacker who successfully     exploited this vulnerability could run processes in an     elevated context.  (CVE-2020-1154)

  - A remote code execution vulnerability exists in the way     that the VBScript engine handles objects in memory. The     vulnerability could corrupt memory in such a way that an     attacker could execute arbitrary code in the context of     the current user. An attacker who successfully exploited     the vulnerability could gain the same user rights as the     current user.  (CVE-2020-1035, CVE-2020-1058,     CVE-2020-1060, CVE-2020-1093)

The remote Windows host is missing security update 4556853 or cumulative update 4556846. It is, therefore, affected by multiple vulnerabilities :

  - A denial of service vulnerability exists when .NET Core     or .NET Framework improperly handles web requests. An     attacker who successfully exploited this vulnerability     could cause a denial of service against a .NET Core or     .NET Framework web application. The vulnerability can be     exploited remotely, without authentication. A remote     unauthenticated attacker could exploit this     vulnerability by issuing specially crafted requests to     the .NET Core or .NET Framework application. The update     addresses the vulnerability by correcting how the .NET     Core or .NET Framework web application handles web     requests. (CVE-2020-1108)

  - An information disclosure vulnerability exists in the     way that the Windows Graphics Device Interface (GDI)     handles objects in memory, allowing an attacker to     retrieve information from a targeted system. By itself,     the information disclosure does not allow arbitrary code     execution; however, it could allow arbitrary code to be     run if the attacker uses it in combination with another     vulnerability.  (CVE-2020-1141)

  - A denial of service vulnerability exists when Hyper-V on     a Windows Server fails to properly handle specially     crafted network packets.  (CVE-2020-0909)

  - An information disclosure vulnerability exists when the     Windows kernel improperly handles objects in memory. An     attacker who successfully exploited this vulnerability     could obtain information to further compromise the users     system.  (CVE-2020-1072)

  - An information disclosure vulnerability exists when the     Windows Client Server Run-Time Subsystem (CSRSS) fails     to properly handle objects in memory. An attacker who     successfully exploited the vulnerability could obtain     information to further compromise the users system.
    (CVE-2020-1116)

  - An elevation of privilege vulnerability exists when the     Windows Print Spooler service improperly allows     arbitrary writing to the file system. An attacker who     successfully exploited this vulnerability could run     arbitrary code with elevated system privileges. An     attacker could then install programs; view, change, or     delete data; or create new accounts with full user     rights.  (CVE-2020-1048, CVE-2020-1070)

  - A denial of service vulnerability exists when Windows     improperly handles objects in memory. An attacker who     successfully exploited the vulnerability could cause a     target system to stop responding.  (CVE-2020-1076)

  - A remote code execution vulnerability exists when the     Windows Jet Database Engine improperly handles objects     in memory. An attacker who successfully exploited this     vulnerability could execute arbitrary code on a victim     system. An attacker could exploit this vulnerability by     enticing a victim to open a specially crafted file. The     update addresses the vulnerability by correcting the way     the Windows Jet Database Engine handles objects in     memory. (CVE-2020-1051, CVE-2020-1174, CVE-2020-1175,     CVE-2020-1176)

  - An elevation of privilege vulnerability exists when the     Windows fails to properly handle objects in memory. An     attacker who successfully exploited this vulnerability     could run arbitrary code. An attacker could then install     programs; view, change, or delete data; or create new     accounts with full user rights.  (CVE-2020-1079)

  - An elevation of privilege vulnerability exists in     Windows Block Level Backup Engine Service (wbengine)     that allows file deletion in arbitrary locations.
    (CVE-2020-1010)

  - An information disclosure vulnerability exists when the     Windows GDI component improperly discloses the contents     of its memory. An attacker who successfully exploited     the vulnerability could obtain information to further     compromise the users system. There are multiple ways an     attacker could exploit the vulnerability, such as by     convincing a user to open a specially crafted document,     or by convincing a user to visit an untrusted webpage.
    The security update addresses the vulnerability by     correcting how the Windows GDI component handles objects     in memory. (CVE-2020-0963, CVE-2020-1179)

  - A remote code execution vulnerability exists when     Internet Explorer improperly accesses objects in memory.
    The vulnerability could corrupt memory in such a way     that an attacker could execute arbitrary code in the     context of the current user. An attacker who     successfully exploited the vulnerability could gain the     same user rights as the current user.  (CVE-2020-1062,     CVE-2020-1092)

  - An elevation of privilege vulnerability exists in     Windows Installer because of the way Windows Installer     handles certain filesystem operations.  (CVE-2020-1078)

  - A remote code execution vulnerability exists in the way     that the MSHTML engine improperly validates input. An     attacker could execute arbitrary code in the context of     the current user.  (CVE-2020-1064)

  - A remote code execution vulnerability exists in the way     that Microsoft Graphics Components handle objects in     memory. An attacker who successfully exploited the     vulnerability could execute arbitrary code on a target     system.  (CVE-2020-1153)

  - An elevation of privilege vulnerability exists in     Windows when the Windows kernel-mode driver fails to     properly handle objects in memory. An attacker who     successfully exploited this vulnerability could run     arbitrary code in kernel mode. An attacker could then     install programs; view, change, or delete data; or     create new accounts with full user rights.
    (CVE-2020-1054, CVE-2020-1143)

  - A memory corruption vulnerability exists when Windows     Media Foundation improperly handles objects in memory.
    An attacker who successfully exploited the vulnerability     could install programs; view, change, or delete data; or     create new accounts with full user rights. There are     multiple ways an attacker could exploit the     vulnerability, such as by convincing a user to open a     specially crafted document, or by convincing a user to     visit a malicious webpage. The security update addresses     the vulnerability by correcting how Windows Media     Foundation handles objects in memory. (CVE-2020-1136)

  - A remote code execution vulnerability exists in the way     that Windows handles objects in memory. An attacker who     successfully exploited the vulnerability could execute     arbitrary code with elevated permissions on a target     system.  (CVE-2020-1067)

  - A security feature bypass vulnerability exists in     Microsoft Windows when the Task Scheduler service fails     to properly verify client connections over RPC. An     attacker who successfully exploited this vulnerability     could run arbitrary code as an administrator. An     attacker could then install programs; view, change, or     delete data; or create new accounts with full user     rights.  (CVE-2020-1113)

  - An elevation of privilege vulnerability exists when the     Windows Background Intelligent Transfer Service (BITS)     IIS module improperly handles uploaded content. An     attacker who successfully exploited this vulnerability     could upload restricted file types to an IIS-hosted     folder.  (CVE-2020-1112)

  - An elevation of privilege vulnerability exists when the     Windows Printer Service improperly validates file paths     while loading printer drivers. An authenticated attacker     who successfully exploited this vulnerability could run     arbitrary code with elevated system privileges.
    (CVE-2020-1081)

  - A remote code execution vulnerability exists in the way     that the Microsoft Script Runtime handles objects in     memory. The vulnerability could corrupt memory in such a     way that an attacker could execute arbitrary code in the     context of the current user. An attacker who     successfully exploited the vulnerability could gain the     same user rights as the current user.  (CVE-2020-1061)

  - An elevation of privilege vulnerability exists when     Windows improperly handles errors tied to Remote Access     Common Dialog. An attacker who successfully exploited     the vulnerability could run arbitrary code with elevated     privileges.  (CVE-2020-1071)

  - An elevation of privilege vulnerability exists when the     Windows Runtime improperly handles objects in memory. An     attacker who successfully exploited this vulnerability     could run arbitrary code in an elevated context. An     attacker could exploit this vulnerability by running a     specially crafted application on the victim system. The     update addresses the vulnerability by correcting the way     the Windows Runtime handles objects in memory.
    (CVE-2020-1149)

  - An elevation of privilege vulnerability exists when the     Windows kernel fails to properly handle objects in     memory. An attacker who successfully exploited this     vulnerability could run arbitrary code in kernel mode.
    An attacker could then install programs; view, change,     or delete data; or create new accounts with full user     rights.  (CVE-2020-1114)

  - An elevation of privilege vulnerability exists when the     Windows Common Log File System (CLFS) driver improperly     handles objects in memory. An attacker who successfully     exploited this vulnerability could run processes in an     elevated context.  (CVE-2020-1154)

  - A remote code execution vulnerability exists in the way     that the VBScript engine handles objects in memory. The     vulnerability could corrupt memory in such a way that an     attacker could execute arbitrary code in the context of     the current user. An attacker who successfully exploited     the vulnerability could gain the same user rights as the     current user.  (CVE-2020-1035, CVE-2020-1058,     CVE-2020-1060, CVE-2020-1093)

The remote Windows host is missing security update 4556852 or cumulative update 4556840. It is, therefore, affected by multiple vulnerabilities :

  - A denial of service vulnerability exists when .NET Core     or .NET Framework improperly handles web requests. An     attacker who successfully exploited this vulnerability     could cause a denial of service against a .NET Core or     .NET Framework web application. The vulnerability can be     exploited remotely, without authentication. A remote     unauthenticated attacker could exploit this     vulnerability by issuing specially crafted requests to     the .NET Core or .NET Framework application. The update     addresses the vulnerability by correcting how the .NET     Core or .NET Framework web application handles web     requests. (CVE-2020-1108)

  - An information disclosure vulnerability exists in the     way that the Windows Graphics Device Interface (GDI)     handles objects in memory, allowing an attacker to     retrieve information from a targeted system. By itself,     the information disclosure does not allow arbitrary code     execution; however, it could allow arbitrary code to be     run if the attacker uses it in combination with another     vulnerability.  (CVE-2020-1141)

  - A denial of service vulnerability exists when Hyper-V on     a Windows Server fails to properly handle specially     crafted network packets.  (CVE-2020-0909)

  - An information disclosure vulnerability exists when the     Windows kernel improperly handles objects in memory. An     attacker who successfully exploited this vulnerability     could obtain information to further compromise the users     system.  (CVE-2020-1072)

  - An information disclosure vulnerability exists when the     Windows Client Server Run-Time Subsystem (CSRSS) fails     to properly handle objects in memory. An attacker who     successfully exploited the vulnerability could obtain     information to further compromise the users system.
    (CVE-2020-1116)

  - An elevation of privilege vulnerability exists when the     Windows Print Spooler service improperly allows     arbitrary writing to the file system. An attacker who     successfully exploited this vulnerability could run     arbitrary code with elevated system privileges. An     attacker could then install programs; view, change, or     delete data; or create new accounts with full user     rights.  (CVE-2020-1048, CVE-2020-1070)

  - A denial of service vulnerability exists when Windows     improperly handles objects in memory. An attacker who     successfully exploited the vulnerability could cause a     target system to stop responding.  (CVE-2020-1076)

  - A remote code execution vulnerability exists when the     Windows Jet Database Engine improperly handles objects     in memory. An attacker who successfully exploited this     vulnerability could execute arbitrary code on a victim     system. An attacker could exploit this vulnerability by     enticing a victim to open a specially crafted file. The     update addresses the vulnerability by correcting the way     the Windows Jet Database Engine handles objects in     memory. (CVE-2020-1051, CVE-2020-1174, CVE-2020-1175,     CVE-2020-1176)

  - An elevation of privilege vulnerability exists when the     Windows fails to properly handle objects in memory. An     attacker who successfully exploited this vulnerability     could run arbitrary code. An attacker could then install     programs; view, change, or delete data; or create new     accounts with full user rights.  (CVE-2020-1079)

  - An elevation of privilege vulnerability exists in     Windows Block Level Backup Engine Service (wbengine)     that allows file deletion in arbitrary locations.
    (CVE-2020-1010)

  - An information disclosure vulnerability exists when the     Windows GDI component improperly discloses the contents     of its memory. An attacker who successfully exploited     the vulnerability could obtain information to further     compromise the users system. There are multiple ways an     attacker could exploit the vulnerability, such as by     convincing a user to open a specially crafted document,     or by convincing a user to visit an untrusted webpage.
    The security update addresses the vulnerability by     correcting how the Windows GDI component handles objects     in memory. (CVE-2020-0963, CVE-2020-1179)

  - A remote code execution vulnerability exists when     Internet Explorer improperly accesses objects in memory.
    The vulnerability could corrupt memory in such a way     that an attacker could execute arbitrary code in the     context of the current user. An attacker who     successfully exploited the vulnerability could gain the     same user rights as the current user.  (CVE-2020-1062,     CVE-2020-1092)

  - An elevation of privilege vulnerability exists in     Windows Installer because of the way Windows Installer     handles certain filesystem operations.  (CVE-2020-1078)

  - A remote code execution vulnerability exists in the way     that the MSHTML engine improperly validates input. An     attacker could execute arbitrary code in the context of     the current user.  (CVE-2020-1064)

  - A remote code execution vulnerability exists in the way     that Microsoft Graphics Components handle objects in     memory. An attacker who successfully exploited the     vulnerability could execute arbitrary code on a target     system.  (CVE-2020-1153)

  - An elevation of privilege vulnerability exists in     Windows when the Windows kernel-mode driver fails to     properly handle objects in memory. An attacker who     successfully exploited this vulnerability could run     arbitrary code in kernel mode. An attacker could then     install programs; view, change, or delete data; or     create new accounts with full user rights.
    (CVE-2020-1054, CVE-2020-1143)

  - A remote code execution vulnerability exists in the way     that Windows handles objects in memory. An attacker who     successfully exploited the vulnerability could execute     arbitrary code with elevated permissions on a target     system.  (CVE-2020-1067)

  - A security feature bypass vulnerability exists in     Microsoft Windows when the Task Scheduler service fails     to properly verify client connections over RPC. An     attacker who successfully exploited this vulnerability     could run arbitrary code as an administrator. An     attacker could then install programs; view, change, or     delete data; or create new accounts with full user     rights.  (CVE-2020-1113)

  - An elevation of privilege vulnerability exists when the     Windows Background Intelligent Transfer Service (BITS)     IIS module improperly handles uploaded content. An     attacker who successfully exploited this vulnerability     could upload restricted file types to an IIS-hosted     folder.  (CVE-2020-1112)

  - An elevation of privilege vulnerability exists when the     Windows Printer Service improperly validates file paths     while loading printer drivers. An authenticated attacker     who successfully exploited this vulnerability could run     arbitrary code with elevated system privileges.
    (CVE-2020-1081)

  - A remote code execution vulnerability exists in the way     that the Microsoft Script Runtime handles objects in     memory. The vulnerability could corrupt memory in such a     way that an attacker could execute arbitrary code in the     context of the current user. An attacker who     successfully exploited the vulnerability could gain the     same user rights as the current user.  (CVE-2020-1061)

  - An elevation of privilege vulnerability exists when     Windows improperly handles errors tied to Remote Access     Common Dialog. An attacker who successfully exploited     the vulnerability could run arbitrary code with elevated     privileges.  (CVE-2020-1071)

  - An elevation of privilege vulnerability exists when the     Windows kernel fails to properly handle objects in     memory. An attacker who successfully exploited this     vulnerability could run arbitrary code in kernel mode.
    An attacker could then install programs; view, change,     or delete data; or create new accounts with full user     rights.  (CVE-2020-1114)

  - An elevation of privilege vulnerability exists when the     Windows Common Log File System (CLFS) driver improperly     handles objects in memory. An attacker who successfully     exploited this vulnerability could run processes in an     elevated context.  (CVE-2020-1154)

  - A remote code execution vulnerability exists in the way     that the VBScript engine handles objects in memory. The     vulnerability could corrupt memory in such a way that an     attacker could execute arbitrary code in the context of     the current user. An attacker who successfully exploited     the vulnerability could gain the same user rights as the     current user.  (CVE-2020-1035, CVE-2020-1058,     CVE-2020-1060, CVE-2020-1093)

The remote Windows host is missing security update 4556843 or cumulative update 4556836. It is, therefore, affected by multiple vulnerabilities :

  - A denial of service vulnerability exists when .NET Core     or .NET Framework improperly handles web requests. An     attacker who successfully exploited this vulnerability     could cause a denial of service against a .NET Core or     .NET Framework web application. The vulnerability can be     exploited remotely, without authentication. A remote     unauthenticated attacker could exploit this     vulnerability by issuing specially crafted requests to     the .NET Core or .NET Framework application. The update     addresses the vulnerability by correcting how the .NET     Core or .NET Framework web application handles web     requests. (CVE-2020-1108)

  - An information disclosure vulnerability exists in the     way that the Windows Graphics Device Interface (GDI)     handles objects in memory, allowing an attacker to     retrieve information from a targeted system. By itself,     the information disclosure does not allow arbitrary code     execution; however, it could allow arbitrary code to be     run if the attacker uses it in combination with another     vulnerability.  (CVE-2020-1141)

  - A denial of service vulnerability exists when Hyper-V on     a Windows Server fails to properly handle specially     crafted network packets.  (CVE-2020-0909)

  - An information disclosure vulnerability exists when the     Windows kernel improperly handles objects in memory. An     attacker who successfully exploited this vulnerability     could obtain information to further compromise the users     system.  (CVE-2020-1072)

  - An information disclosure vulnerability exists when the     Windows Client Server Run-Time Subsystem (CSRSS) fails     to properly handle objects in memory. An attacker who     successfully exploited the vulnerability could obtain     information to further compromise the users system.
    (CVE-2020-1116)

  - An elevation of privilege vulnerability exists when the     Windows Print Spooler service improperly allows     arbitrary writing to the file system. An attacker who     successfully exploited this vulnerability could run     arbitrary code with elevated system privileges. An     attacker could then install programs; view, change, or     delete data; or create new accounts with full user     rights.  (CVE-2020-1048, CVE-2020-1070)

  - A remote code execution vulnerability exists when the     Windows Jet Database Engine improperly handles objects     in memory. An attacker who successfully exploited this     vulnerability could execute arbitrary code on a victim     system. An attacker could exploit this vulnerability by     enticing a victim to open a specially crafted file. The     update addresses the vulnerability by correcting the way     the Windows Jet Database Engine handles objects in     memory. (CVE-2020-1051, CVE-2020-1174, CVE-2020-1175,     CVE-2020-1176)

  - An elevation of privilege vulnerability exists in     Windows Block Level Backup Engine Service (wbengine)     that allows file deletion in arbitrary locations.
    (CVE-2020-1010)

  - An elevation of privilege vulnerability exists in .NET     Framework which could allow an attacker to elevate their     privilege level.  (CVE-2020-1066)

  - An information disclosure vulnerability exists when the     Windows GDI component improperly discloses the contents     of its memory. An attacker who successfully exploited     the vulnerability could obtain information to further     compromise the users system. There are multiple ways an     attacker could exploit the vulnerability, such as by     convincing a user to open a specially crafted document,     or by convincing a user to visit an untrusted webpage.
    The security update addresses the vulnerability by     correcting how the Windows GDI component handles objects     in memory. (CVE-2020-0963, CVE-2020-1179)

  - A remote code execution vulnerability exists when     Internet Explorer improperly accesses objects in memory.
    The vulnerability could corrupt memory in such a way     that an attacker could execute arbitrary code in the     context of the current user. An attacker who     successfully exploited the vulnerability could gain the     same user rights as the current user.  (CVE-2020-1062,     CVE-2020-1092)

  - An elevation of privilege vulnerability exists in     Windows Installer because of the way Windows Installer     handles certain filesystem operations.  (CVE-2020-1078)

  - A remote code execution vulnerability exists in the way     that the MSHTML engine improperly validates input. An     attacker could execute arbitrary code in the context of     the current user.  (CVE-2020-1064)

  - A remote code execution vulnerability exists in the way     that Microsoft Graphics Components handle objects in     memory. An attacker who successfully exploited the     vulnerability could execute arbitrary code on a target     system.  (CVE-2020-1153)

  - An elevation of privilege vulnerability exists in     Windows when the Windows kernel-mode driver fails to     properly handle objects in memory. An attacker who     successfully exploited this vulnerability could run     arbitrary code in kernel mode. An attacker could then     install programs; view, change, or delete data; or     create new accounts with full user rights.
    (CVE-2020-1054, CVE-2020-1143)

  - A memory corruption vulnerability exists when Windows     Media Foundation improperly handles objects in memory.
    An attacker who successfully exploited the vulnerability     could install programs; view, change, or delete data; or     create new accounts with full user rights. There are     multiple ways an attacker could exploit the     vulnerability, such as by convincing a user to open a     specially crafted document, or by convincing a user to     visit a malicious webpage. The security update addresses     the vulnerability by correcting how Windows Media     Foundation handles objects in memory. (CVE-2020-1150)

  - A remote code execution vulnerability exists in the way     that Windows handles objects in memory. An attacker who     successfully exploited the vulnerability could execute     arbitrary code with elevated permissions on a target     system.  (CVE-2020-1067)

  - A security feature bypass vulnerability exists in     Microsoft Windows when the Task Scheduler service fails     to properly verify client connections over RPC. An     attacker who successfully exploited this vulnerability     could run arbitrary code as an administrator. An     attacker could then install programs; view, change, or     delete data; or create new accounts with full user     rights.  (CVE-2020-1113)

  - An elevation of privilege vulnerability exists when the     Windows Background Intelligent Transfer Service (BITS)     IIS module improperly handles uploaded content. An     attacker who successfully exploited this vulnerability     could upload restricted file types to an IIS-hosted     folder.  (CVE-2020-1112)

  - An elevation of privilege vulnerability exists when the     Windows Printer Service improperly validates file paths     while loading printer drivers. An authenticated attacker     who successfully exploited this vulnerability could run     arbitrary code with elevated system privileges.
    (CVE-2020-1081)

  - A remote code execution vulnerability exists in the way     that the Microsoft Script Runtime handles objects in     memory. The vulnerability could corrupt memory in such a     way that an attacker could execute arbitrary code in the     context of the current user. An attacker who     successfully exploited the vulnerability could gain the     same user rights as the current user.  (CVE-2020-1061)

  - An elevation of privilege vulnerability exists when     Windows improperly handles errors tied to Remote Access     Common Dialog. An attacker who successfully exploited     the vulnerability could run arbitrary code with elevated     privileges.  (CVE-2020-1071)

  - An elevation of privilege vulnerability exists when the     Windows kernel fails to properly handle objects in     memory. An attacker who successfully exploited this     vulnerability could run arbitrary code in kernel mode.
    An attacker could then install programs; view, change,     or delete data; or create new accounts with full user     rights.  (CVE-2020-1114)

  - An elevation of privilege vulnerability exists when the     Windows Common Log File System (CLFS) driver improperly     handles objects in memory. An attacker who successfully     exploited this vulnerability could run processes in an     elevated context.  (CVE-2020-1154)

  - A remote code execution vulnerability exists in the way     that the VBScript engine handles objects in memory. The     vulnerability could corrupt memory in such a way that an     attacker could execute arbitrary code in the context of     the current user. An attacker who successfully exploited     the vulnerability could gain the same user rights as the     current user.  (CVE-2020-1035, CVE-2020-1058,     CVE-2020-1060, CVE-2020-1093)

The remote Windows host is missing security update 4556826.
It is, therefore, affected by multiple vulnerabilities :

  - A denial of service vulnerability exists when .NET Core     or .NET Framework improperly handles web requests. An     attacker who successfully exploited this vulnerability     could cause a denial of service against a .NET Core or     .NET Framework web application. The vulnerability can be     exploited remotely, without authentication. A remote     unauthenticated attacker could exploit this     vulnerability by issuing specially crafted requests to     the .NET Core or .NET Framework application. The update     addresses the vulnerability by correcting how the .NET     Core or .NET Framework web application handles web     requests. (CVE-2020-1108)

  - An information disclosure vulnerability exists in the     way that the Windows Graphics Device Interface (GDI)     handles objects in memory, allowing an attacker to     retrieve information from a targeted system. By itself,     the information disclosure does not allow arbitrary code     execution; however, it could allow arbitrary code to be     run if the attacker uses it in combination with another     vulnerability.  (CVE-2020-1141)

  - An elevation of privilege vulnerability exists in     Windows Error Reporting (WER) when WER handles and     executes files. The vulnerability could allow elevation     of privilege if an attacker can successfully exploit it.
    An attacker who successfully exploited the vulnerability     could gain greater access to sensitive information and     system functionality.  (CVE-2020-1021, CVE-2020-1082,     CVE-2020-1088)

  - A denial of service vulnerability exists when Hyper-V on     a Windows Server fails to properly handle specially     crafted network packets.  (CVE-2020-0909)

  - An information disclosure vulnerability exists when the     Windows kernel improperly handles objects in memory. An     attacker who successfully exploited this vulnerability     could obtain information to further compromise the users     system.  (CVE-2020-1072)

  - A denial of service vulnerability exists when Connected     User Experiences and Telemetry Service improperly     handles file operations. An attacker who successfully     exploited this vulnerability could cause a system to     stop responding.  (CVE-2020-1123)

  - A Denial Of Service vulnerability exists when Connected     User Experiences and Telemetry Service fails to validate     certain function values. An attacker who successfully     exploited this vulnerability could deny dependent     security feature functionality.  (CVE-2020-1084)

  - An elevation of privilege vulnerability exists when the     Windows Print Spooler service improperly allows     arbitrary writing to the file system. An attacker who     successfully exploited this vulnerability could run     arbitrary code with elevated system privileges. An     attacker could then install programs; view, change, or     delete data; or create new accounts with full user     rights.  (CVE-2020-1048, CVE-2020-1070)

  - A denial of service vulnerability exists when Windows     improperly handles objects in memory. An attacker who     successfully exploited the vulnerability could cause a     target system to stop responding.  (CVE-2020-1076)

  - A remote code execution vulnerability exists when the     Windows Jet Database Engine improperly handles objects     in memory. An attacker who successfully exploited this     vulnerability could execute arbitrary code on a victim     system. An attacker could exploit this vulnerability by     enticing a victim to open a specially crafted file. The     update addresses the vulnerability by correcting the way     the Windows Jet Database Engine handles objects in     memory. (CVE-2020-1051, CVE-2020-1174, CVE-2020-1175,     CVE-2020-1176)

  - An elevation of privilege vulnerability exists when the     Windows fails to properly handle objects in memory. An     attacker who successfully exploited this vulnerability     could run arbitrary code. An attacker could then install     programs; view, change, or delete data; or create new     accounts with full user rights.  (CVE-2020-1079)

  - An elevation of privilege vulnerability exists when the     Windows State Repository Service improperly handles     objects in memory. An attacker who successfully     exploited this vulnerability could run arbitrary code in     an elevated context. An attacker could exploit this     vulnerability by running a specially crafted application     on the victim system. The update addresses the     vulnerability by correcting the way the Windows State     Repository Service handles objects in memory.
    (CVE-2020-1124, CVE-2020-1131, CVE-2020-1134,     CVE-2020-1144)

  - An elevation of privilege vulnerability exists in     Windows Block Level Backup Engine Service (wbengine)     that allows file deletion in arbitrary locations.
    (CVE-2020-1010)

  - An information disclosure vulnerability exists when the     Windows GDI component improperly discloses the contents     of its memory. An attacker who successfully exploited     the vulnerability could obtain information to further     compromise the users system. There are multiple ways an     attacker could exploit the vulnerability, such as by     convincing a user to open a specially crafted document,     or by convincing a user to visit an untrusted webpage.
    The security update addresses the vulnerability by     correcting how the Windows GDI component handles objects     in memory. (CVE-2020-0963, CVE-2020-1179)

  - A remote code execution vulnerability exists when     Internet Explorer improperly accesses objects in memory.
    The vulnerability could corrupt memory in such a way     that an attacker could execute arbitrary code in the     context of the current user. An attacker who     successfully exploited the vulnerability could gain the     same user rights as the current user.  (CVE-2020-1062,     CVE-2020-1092)

  - An elevation of privilege vulnerability exists in     Windows Installer because of the way Windows Installer     handles certain filesystem operations.  (CVE-2020-1078)

  - A remote code execution vulnerability exists in the way     that the MSHTML engine improperly validates input. An     attacker could execute arbitrary code in the context of     the current user.  (CVE-2020-1064)

  - A remote code execution vulnerability exists in the way     that Microsoft Graphics Components handle objects in     memory. An attacker who successfully exploited the     vulnerability could execute arbitrary code on a target     system.  (CVE-2020-1153)

  - An elevation of privilege vulnerability exists in     Windows when the Windows kernel-mode driver fails to     properly handle objects in memory. An attacker who     successfully exploited this vulnerability could run     arbitrary code in kernel mode. An attacker could then     install programs; view, change, or delete data; or     create new accounts with full user rights.
    (CVE-2020-1054, CVE-2020-1143)

  - A memory corruption vulnerability exists when Windows     Media Foundation improperly handles objects in memory.
    An attacker who successfully exploited the vulnerability     could install programs; view, change, or delete data; or     create new accounts with full user rights. There are     multiple ways an attacker could exploit the     vulnerability, such as by convincing a user to open a     specially crafted document, or by convincing a user to     visit a malicious webpage. The security update addresses     the vulnerability by correcting how Windows Media     Foundation handles objects in memory. (CVE-2020-1136)

  - A remote code execution vulnerability exists in the way     that Windows handles objects in memory. An attacker who     successfully exploited the vulnerability could execute     arbitrary code with elevated permissions on a target     system.  (CVE-2020-1067)

  - An elevation of privilege vulnerability exists when     Windows Error Reporting manager improperly handles file     and folder links. An attacker who successfully exploited     this vulnerability could overwrite a targeted file     leading to an elevated status.  (CVE-2020-1132)

  - A security feature bypass vulnerability exists in     Microsoft Windows when the Task Scheduler service fails     to properly verify client connections over RPC. An     attacker who successfully exploited this vulnerability     could run arbitrary code as an administrator. An     attacker could then install programs; view, change, or     delete data; or create new accounts with full user     rights.  (CVE-2020-1113)

  - An elevation of privilege vulnerability exists when the     Windows Background Intelligent Transfer Service (BITS)     IIS module improperly handles uploaded content. An     attacker who successfully exploited this vulnerability     could upload restricted file types to an IIS-hosted     folder.  (CVE-2020-1112)

  - An elevation of privilege vulnerability exists when the     Windows Printer Service improperly validates file paths     while loading printer drivers. An authenticated attacker     who successfully exploited this vulnerability could run     arbitrary code with elevated system privileges.
    (CVE-2020-1081)

  - A remote code execution vulnerability exists in the way     that the Microsoft Script Runtime handles objects in     memory. The vulnerability could corrupt memory in such a     way that an attacker could execute arbitrary code in the     context of the current user. An attacker who     successfully exploited the vulnerability could gain the     same user rights as the current user.  (CVE-2020-1061)

  - An elevation of privilege vulnerability exists when     Windows improperly handles errors tied to Remote Access     Common Dialog. An attacker who successfully exploited     the vulnerability could run arbitrary code with elevated     privileges.  (CVE-2020-1071)

  - A remote code execution vulnerability exists in the way     that the Chakra scripting engine handles objects in     memory in Microsoft Edge (HTML-based). The vulnerability     could corrupt memory in such a way that an attacker     could execute arbitrary code in the context of the     current user. An attacker who successfully exploited the     vulnerability could gain the same user rights as the     current user.  (CVE-2020-1037)

  - An elevation of privilege vulnerability exists when the     Windows kernel fails to properly handle objects in     memory. An attacker who successfully exploited this     vulnerability could run arbitrary code in kernel mode.
    An attacker could then install programs; view, change,     or delete data; or create new accounts with full user     rights.  (CVE-2020-1114)

  - An elevation of privilege vulnerability exists when the     Windows Common Log File System (CLFS) driver improperly     handles objects in memory. An attacker who successfully     exploited this vulnerability could run processes in an     elevated context.  (CVE-2020-1154)

  - An elevation of privilege vulnerability exists in     Windows Media Service that allows file creation in     arbitrary locations.  (CVE-2020-1068)

  - An elevation of privilege vulnerability exists when the     Windows Runtime improperly handles objects in memory. An     attacker who successfully exploited this vulnerability     could run arbitrary code in an elevated context. An     attacker could exploit this vulnerability by running a     specially crafted application on the victim system. The     update addresses the vulnerability by correcting the way     the Windows Runtime handles objects in memory.
    (CVE-2020-1086, CVE-2020-1125, CVE-2020-1139,     CVE-2020-1149, CVE-2020-1156, CVE-2020-1157,     CVE-2020-1164)

  - An information disclosure vulnerability exists when the     Windows Client Server Run-Time Subsystem (CSRSS) fails     to properly handle objects in memory. An attacker who     successfully exploited the vulnerability could obtain     information to further compromise the users system.
    (CVE-2020-1116)

  - A remote code execution vulnerability exists in the way     that the VBScript engine handles objects in memory. The     vulnerability could corrupt memory in such a way that an     attacker could execute arbitrary code in the context of     the current user. An attacker who successfully exploited     the vulnerability could gain the same user rights as the     current user.  (CVE-2020-1035, CVE-2020-1058,     CVE-2020-1060, CVE-2020-1093)

The remote Windows host is missing security update 4556813.
It is, therefore, affected by multiple vulnerabilities :

  - A denial of service vulnerability exists when .NET Core     or .NET Framework improperly handles web requests. An     attacker who successfully exploited this vulnerability     could cause a denial of service against a .NET Core or     .NET Framework web application. The vulnerability can be     exploited remotely, without authentication. A remote     unauthenticated attacker could exploit this     vulnerability by issuing specially crafted requests to     the .NET Core or .NET Framework application. The update     addresses the vulnerability by correcting how the .NET     Core or .NET Framework web application handles web     requests. (CVE-2020-1108)

  - A denial of service vulnerability exists when Windows     improperly handles objects in memory. An attacker who     successfully exploited the vulnerability could cause a     target system to stop responding.  (CVE-2020-1076)

  - An information disclosure vulnerability exists in the     way that the Windows Graphics Device Interface (GDI)     handles objects in memory, allowing an attacker to     retrieve information from a targeted system. By itself,     the information disclosure does not allow arbitrary code     execution; however, it could allow arbitrary code to be     run if the attacker uses it in combination with another     vulnerability.  (CVE-2020-1141)

  - An elevation of privilege vulnerability exists in     Windows Error Reporting (WER) when WER handles and     executes files. The vulnerability could allow elevation     of privilege if an attacker can successfully exploit it.
    An attacker who successfully exploited the vulnerability     could gain greater access to sensitive information and     system functionality.  (CVE-2020-1021, CVE-2020-1082,     CVE-2020-1088)

  - A denial of service vulnerability exists when Hyper-V on     a Windows Server fails to properly handle specially     crafted network packets.  (CVE-2020-0909)

  - An information disclosure vulnerability exists when the     Windows kernel improperly handles objects in memory. An     attacker who successfully exploited this vulnerability     could obtain information to further compromise the users     system.  (CVE-2020-1072)

  - A denial of service vulnerability exists when Connected     User Experiences and Telemetry Service improperly     handles file operations. An attacker who successfully     exploited this vulnerability could cause a system to     stop responding.  (CVE-2020-1123)

  - A Denial Of Service vulnerability exists when Connected     User Experiences and Telemetry Service fails to validate     certain function values. An attacker who successfully     exploited this vulnerability could deny dependent     security feature functionality.  (CVE-2020-1084)

  - An elevation of privilege vulnerability exists when the     Windows Print Spooler service improperly allows     arbitrary writing to the file system. An attacker who     successfully exploited this vulnerability could run     arbitrary code with elevated system privileges. An     attacker could then install programs; view, change, or     delete data; or create new accounts with full user     rights.  (CVE-2020-1048, CVE-2020-1070)

  - An elevation of privilege vulnerability exists in     Windows Block Level Backup Engine Service (wbengine)     that allows file deletion in arbitrary locations.
    (CVE-2020-1010)

  - A remote code execution vulnerability exists when the     Windows Jet Database Engine improperly handles objects     in memory. An attacker who successfully exploited this     vulnerability could execute arbitrary code on a victim     system. An attacker could exploit this vulnerability by     enticing a victim to open a specially crafted file. The     update addresses the vulnerability by correcting the way     the Windows Jet Database Engine handles objects in     memory. (CVE-2020-1051, CVE-2020-1174, CVE-2020-1175,     CVE-2020-1176)

  - An elevation of privilege vulnerability exists when the     Windows fails to properly handle objects in memory. An     attacker who successfully exploited this vulnerability     could run arbitrary code. An attacker could then install     programs; view, change, or delete data; or create new     accounts with full user rights.  (CVE-2020-1079)

  - An elevation of privilege vulnerability exists in     Windows Installer because of the way Windows Installer     handles certain filesystem operations.  (CVE-2020-1078)

  - A remote code execution vulnerability exists when     Internet Explorer improperly accesses objects in memory.
    The vulnerability could corrupt memory in such a way     that an attacker could execute arbitrary code in the     context of the current user. An attacker who     successfully exploited the vulnerability could gain the     same user rights as the current user.  (CVE-2020-1062,     CVE-2020-1092)

  - An elevation of privilege vulnerability exists when the     Storage Service improperly handles file operations. An     attacker who successfully exploited this vulnerability     could gain elevated privileges on the victim system.
    (CVE-2020-1138)

  - A remote code execution vulnerability exists in the way     that the MSHTML engine improperly validates input. An     attacker could execute arbitrary code in the context of     the current user.  (CVE-2020-1064)

  - An elevation of privilege vulnerability exists when the     Windows Runtime improperly handles objects in memory. An     attacker who successfully exploited this vulnerability     could run arbitrary code in an elevated context. An     attacker could exploit this vulnerability by running a     specially crafted application on the victim system. The     update addresses the vulnerability by correcting the way     the Windows Runtime handles objects in memory.
    (CVE-2020-1077, CVE-2020-1086, CVE-2020-1090,     CVE-2020-1125, CVE-2020-1139, CVE-2020-1149,     CVE-2020-1156, CVE-2020-1157, CVE-2020-1158,     CVE-2020-1164)

  - An elevation of privilege vulnerability exists when     Microsoft Edge does not properly enforce cross-domain     policies, which could allow an attacker to access     information from one domain and inject it into another     domain.  (CVE-2020-1056)

  - An information disclosure vulnerability exists when the     Windows GDI component improperly discloses the contents     of its memory. An attacker who successfully exploited     the vulnerability could obtain information to further     compromise the users system. There are multiple ways an     attacker could exploit the vulnerability, such as by     convincing a user to open a specially crafted document,     or by convincing a user to visit an untrusted webpage.
    The security update addresses the vulnerability by     correcting how the Windows GDI component handles objects     in memory. (CVE-2020-0963, CVE-2020-1179)

  - A memory corruption vulnerability exists when Windows     Media Foundation improperly handles objects in memory.
    An attacker who successfully exploited the vulnerability     could install programs; view, change, or delete data; or     create new accounts with full user rights. There are     multiple ways an attacker could exploit the     vulnerability, such as by convincing a user to open a     specially crafted document, or by convincing a user to     visit a malicious webpage. The security update addresses     the vulnerability by correcting how Windows Media     Foundation handles objects in memory. (CVE-2020-1028,     CVE-2020-1126, CVE-2020-1136)

  - A remote code execution vulnerability exists in the way     that Microsoft Graphics Components handle objects in     memory. An attacker who successfully exploited the     vulnerability could execute arbitrary code on a target     system.  (CVE-2020-1153)

  - An elevation of privilege vulnerability exists in     Windows when the Windows kernel-mode driver fails to     properly handle objects in memory. An attacker who     successfully exploited this vulnerability could run     arbitrary code in kernel mode. An attacker could then     install programs; view, change, or delete data; or     create new accounts with full user rights.
    (CVE-2020-1054, CVE-2020-1143)

  - A remote code execution vulnerability exists in the way     that Windows handles objects in memory. An attacker who     successfully exploited the vulnerability could execute     arbitrary code with elevated permissions on a target     system.  (CVE-2020-1067)

  - A remote code execution vulnerability exists in the way     that the Color Management Module (ICM32.dll) handles     objects in memory. An attacker who successfully     exploited this vulnerability could take control of the     affected system. An attacker could then install     programs; view, change, or delete data; or create new     accounts with full user rights.  (CVE-2020-1117)

  - An elevation of privilege vulnerability exists when     Windows Error Reporting manager improperly handles file     and folder links. An attacker who successfully exploited     this vulnerability could overwrite a targeted file     leading to an elevated status.  (CVE-2020-1132)

  - A security feature bypass vulnerability exists in     Microsoft Windows when the Task Scheduler service fails     to properly verify client connections over RPC. An     attacker who successfully exploited this vulnerability     could run arbitrary code as an administrator. An     attacker could then install programs; view, change, or     delete data; or create new accounts with full user     rights.  (CVE-2020-1113)

  - An elevation of privilege vulnerability exists when the     Windows Background Intelligent Transfer Service (BITS)     IIS module improperly handles uploaded content. An     attacker who successfully exploited this vulnerability     could upload restricted file types to an IIS-hosted     folder.  (CVE-2020-1112)

  - An elevation of privilege vulnerability exists when the     Windows Printer Service improperly validates file paths     while loading printer drivers. An authenticated attacker     who successfully exploited this vulnerability could run     arbitrary code with elevated system privileges.
    (CVE-2020-1081)

  - A remote code execution vulnerability exists in the way     that the Microsoft Script Runtime handles objects in     memory. The vulnerability could corrupt memory in such a     way that an attacker could execute arbitrary code in the     context of the current user. An attacker who     successfully exploited the vulnerability could gain the     same user rights as the current user.  (CVE-2020-1061)

  - An elevation of privilege vulnerability exists when the     Windows State Repository Service improperly handles     objects in memory. An attacker who successfully     exploited this vulnerability could run arbitrary code in     an elevated context. An attacker could exploit this     vulnerability by running a specially crafted application     on the victim system. The update addresses the     vulnerability by correcting the way the Windows State     Repository Service handles objects in memory.
    (CVE-2020-1124, CVE-2020-1131, CVE-2020-1134,     CVE-2020-1144, CVE-2020-1184, CVE-2020-1185,     CVE-2020-1186, CVE-2020-1187, CVE-2020-1188,     CVE-2020-1189, CVE-2020-1190, CVE-2020-1191)

  - An elevation of privilege vulnerability exists when     Windows improperly handles errors tied to Remote Access     Common Dialog. An attacker who successfully exploited     the vulnerability could run arbitrary code with elevated     privileges.  (CVE-2020-1071)

  - A remote code execution vulnerability exists in the way     that the Chakra scripting engine handles objects in     memory in Microsoft Edge (HTML-based). The vulnerability     could corrupt memory in such a way that an attacker     could execute arbitrary code in the context of the     current user. An attacker who successfully exploited the     vulnerability could gain the same user rights as the     current user.  (CVE-2020-1037)

  - An elevation of privilege vulnerability exists when the     Windows kernel fails to properly handle objects in     memory. An attacker who successfully exploited this     vulnerability could run arbitrary code in kernel mode.
    An attacker could then install programs; view, change,     or delete data; or create new accounts with full user     rights.  (CVE-2020-1114)

  - An elevation of privilege vulnerability exists when the     Windows Common Log File System (CLFS) driver improperly     handles objects in memory. An attacker who successfully     exploited this vulnerability could run processes in an     elevated context.  (CVE-2020-1154)

  - An elevation of privilege vulnerability exists in     Windows Media Service that allows file creation in     arbitrary locations.  (CVE-2020-1068)

  - An information disclosure vulnerability exists when the     Windows Client Server Run-Time Subsystem (CSRSS) fails     to properly handle objects in memory. An attacker who     successfully exploited the vulnerability could obtain     information to further compromise the users system.
    (CVE-2020-1116)

  - A remote code execution vulnerability exists in the way     that the VBScript engine handles objects in memory. The     vulnerability could corrupt memory in such a way that an     attacker could execute arbitrary code in the context of     the current user. An attacker who successfully exploited     the vulnerability could gain the same user rights as the     current user.  (CVE-2020-1035, CVE-2020-1058,     CVE-2020-1060, CVE-2020-1093)

The remote Windows host is missing security update 4556812.
It is, therefore, affected by multiple vulnerabilities :

  - A denial of service vulnerability exists when .NET Core     or .NET Framework improperly handles web requests. An     attacker who successfully exploited this vulnerability     could cause a denial of service against a .NET Core or     .NET Framework web application. The vulnerability can be     exploited remotely, without authentication. A remote     unauthenticated attacker could exploit this     vulnerability by issuing specially crafted requests to     the .NET Core or .NET Framework application. The update     addresses the vulnerability by correcting how the .NET     Core or .NET Framework web application handles web     requests. (CVE-2020-1108)

  - An information disclosure vulnerability exists in the     way that the Windows Graphics Device Interface (GDI)     handles objects in memory, allowing an attacker to     retrieve information from a targeted system. By itself,     the information disclosure does not allow arbitrary code     execution; however, it could allow arbitrary code to be     run if the attacker uses it in combination with another     vulnerability.  (CVE-2020-1141)

  - An elevation of privilege vulnerability exists in     Windows Error Reporting (WER) when WER handles and     executes files. The vulnerability could allow elevation     of privilege if an attacker can successfully exploit it.
    An attacker who successfully exploited the vulnerability     could gain greater access to sensitive information and     system functionality.  (CVE-2020-1021, CVE-2020-1082,     CVE-2020-1088)

  - A denial of service vulnerability exists when Hyper-V on     a Windows Server fails to properly handle specially     crafted network packets.  (CVE-2020-0909)

  - An information disclosure vulnerability exists when the     Windows kernel improperly handles objects in memory. An     attacker who successfully exploited this vulnerability     could obtain information to further compromise the users     system.  (CVE-2020-1072)

  - A denial of service vulnerability exists when Connected     User Experiences and Telemetry Service improperly     handles file operations. An attacker who successfully     exploited this vulnerability could cause a system to     stop responding.  (CVE-2020-1123)

  - A Denial Of Service vulnerability exists when Connected     User Experiences and Telemetry Service fails to validate     certain function values. An attacker who successfully     exploited this vulnerability could deny dependent     security feature functionality.  (CVE-2020-1084)

  - An elevation of privilege vulnerability exists in the     way that the Windows Graphics Device Interface (GDI)     handles objects in memory. An attacker who successfully     exploited this vulnerability could run arbitrary code in     kernel mode. An attacker could then install programs;
    view, change, or delete data; or create new accounts     with full user rights.  (CVE-2020-1142)

  - An elevation of privilege vulnerability exists when the     Windows Print Spooler service improperly allows     arbitrary writing to the file system. An attacker who     successfully exploited this vulnerability could run     arbitrary code with elevated system privileges. An     attacker could then install programs; view, change, or     delete data; or create new accounts with full user     rights.  (CVE-2020-1048, CVE-2020-1070)

  - A denial of service vulnerability exists when Windows     improperly handles objects in memory. An attacker who     successfully exploited the vulnerability could cause a     target system to stop responding.  (CVE-2020-1076)

  - A remote code execution vulnerability exists when the     Windows Jet Database Engine improperly handles objects     in memory. An attacker who successfully exploited this     vulnerability could execute arbitrary code on a victim     system. An attacker could exploit this vulnerability by     enticing a victim to open a specially crafted file. The     update addresses the vulnerability by correcting the way     the Windows Jet Database Engine handles objects in     memory. (CVE-2020-1051, CVE-2020-1174, CVE-2020-1175,     CVE-2020-1176)

  - An elevation of privilege vulnerability exists when the     Windows fails to properly handle objects in memory. An     attacker who successfully exploited this vulnerability     could run arbitrary code. An attacker could then install     programs; view, change, or delete data; or create new     accounts with full user rights.  (CVE-2020-1079)

  - An elevation of privilege vulnerability exists in     Windows Installer because of the way Windows Installer     handles certain filesystem operations.  (CVE-2020-1078)

  - A remote code execution vulnerability exists when     Internet Explorer improperly accesses objects in memory.
    The vulnerability could corrupt memory in such a way     that an attacker could execute arbitrary code in the     context of the current user. An attacker who     successfully exploited the vulnerability could gain the     same user rights as the current user.  (CVE-2020-1062,     CVE-2020-1092)

  - An elevation of privilege vulnerability exists in the     way the Windows Push Notification Service handles     objects in memory. An attacker who successfully     exploited this vulnerability could run processes in an     elevated context. An attacker could then install     programs; view, change or delete data.  (CVE-2020-1137)

  - An elevation of privilege vulnerability exists when the     Windows Update Stack fails to properly handle objects in     memory. An attacker who successfully exploited this     vulnerability could run arbitrary code in kernel mode.
    An attacker could then install programs; view, change,     or delete data; or create new accounts with full user     rights.  (CVE-2020-1109, CVE-2020-1110)

  - An elevation of privilege vulnerability exists when the     Storage Service improperly handles file operations. An     attacker who successfully exploited this vulnerability     could gain elevated privileges on the victim system.
    (CVE-2020-1138)

  - An information disclosure vulnerability exists when the     Windows GDI component improperly discloses the contents     of its memory. An attacker who successfully exploited     the vulnerability could obtain information to further     compromise the users system. There are multiple ways an     attacker could exploit the vulnerability, such as by     convincing a user to open a specially crafted document,     or by convincing a user to visit an untrusted webpage.
    The security update addresses the vulnerability by     correcting how the Windows GDI component handles objects     in memory. (CVE-2020-0963, CVE-2020-1179)

  - An elevation of privilege vulnerability exists in     Windows Block Level Backup Engine Service (wbengine)     that allows file deletion in arbitrary locations.
    (CVE-2020-1010)

  - An elevation of privilege vulnerability exists when     Microsoft Edge does not properly enforce cross-domain     policies, which could allow an attacker to access     information from one domain and inject it into another     domain.  (CVE-2020-1056)

  - A denial of service vulnerability exists in the Windows     implementation of Transport Layer Security (TLS) when it     improperly handles certain key exchanges. An attacker     who successfully exploited the vulnerability could cause     a target system to stop responding.  (CVE-2020-1118)

  - A remote code execution vulnerability exists in the way     that the MSHTML engine improperly validates input. An     attacker could execute arbitrary code in the context of     the current user.  (CVE-2020-1064)

  - A memory corruption vulnerability exists when Windows     Media Foundation improperly handles objects in memory.
    An attacker who successfully exploited the vulnerability     could install programs; view, change, or delete data; or     create new accounts with full user rights. There are     multiple ways an attacker could exploit the     vulnerability, such as by convincing a user to open a     specially crafted document, or by convincing a user to     visit a malicious webpage. The security update addresses     the vulnerability by correcting how Windows Media     Foundation handles objects in memory. (CVE-2020-1028,     CVE-2020-1126, CVE-2020-1136)

  - A remote code execution vulnerability exists in the way     that Microsoft Graphics Components handle objects in     memory. An attacker who successfully exploited the     vulnerability could execute arbitrary code on a target     system.  (CVE-2020-1153)

  - An elevation of privilege vulnerability exists in     Windows when the Windows kernel-mode driver fails to     properly handle objects in memory. An attacker who     successfully exploited this vulnerability could run     arbitrary code in kernel mode. An attacker could then     install programs; view, change, or delete data; or     create new accounts with full user rights.
    (CVE-2020-1054, CVE-2020-1143)

  - A remote code execution vulnerability exists in the way     that Windows handles objects in memory. An attacker who     successfully exploited the vulnerability could execute     arbitrary code with elevated permissions on a target     system.  (CVE-2020-1067)

  - A remote code execution vulnerability exists in the way     that the Color Management Module (ICM32.dll) handles     objects in memory. An attacker who successfully     exploited this vulnerability could take control of the     affected system. An attacker could then install     programs; view, change, or delete data; or create new     accounts with full user rights.  (CVE-2020-1117)

  - An elevation of privilege vulnerability exists when     Windows Error Reporting manager improperly handles file     and folder links. An attacker who successfully exploited     this vulnerability could overwrite a targeted file     leading to an elevated status.  (CVE-2020-1132)

  - An elevation of privilege vulnerability exists when the     Windows Graphics Component improperly handles objects in     memory. An attacker who successfully exploited this     vulnerability could run processes in an elevated     context.  (CVE-2020-1135)

  - A security feature bypass vulnerability exists in     Microsoft Windows when the Task Scheduler service fails     to properly verify client connections over RPC. An     attacker who successfully exploited this vulnerability     could run arbitrary code as an administrator. An     attacker could then install programs; view, change, or     delete data; or create new accounts with full user     rights.  (CVE-2020-1113)

  - An elevation of privilege vulnerability exists when the     Windows Background Intelligent Transfer Service (BITS)     IIS module improperly handles uploaded content. An     attacker who successfully exploited this vulnerability     could upload restricted file types to an IIS-hosted     folder.  (CVE-2020-1112)

  - An elevation of privilege vulnerability exists when the     Windows Printer Service improperly validates file paths     while loading printer drivers. An authenticated attacker     who successfully exploited this vulnerability could run     arbitrary code with elevated system privileges.
    (CVE-2020-1081)

  - An elevation of privilege vulnerability exists when the     Windows Runtime improperly handles objects in memory. An     attacker who successfully exploited this vulnerability     could run arbitrary code in an elevated context. An     attacker could exploit this vulnerability by running a     specially crafted application on the victim system. The     update addresses the vulnerability by correcting the way     the Windows Runtime handles objects in memory.
    (CVE-2020-1077, CVE-2020-1086, CVE-2020-1090,     CVE-2020-1125, CVE-2020-1139, CVE-2020-1149,     CVE-2020-1151, CVE-2020-1155, CVE-2020-1156,     CVE-2020-1157, CVE-2020-1158, CVE-2020-1164)

  - A remote code execution vulnerability exists in the way     that the Microsoft Script Runtime handles objects in     memory. The vulnerability could corrupt memory in such a     way that an attacker could execute arbitrary code in the     context of the current user. An attacker who     successfully exploited the vulnerability could gain the     same user rights as the current user.  (CVE-2020-1061)

  - An elevation of privilege vulnerability exists when the     Windows State Repository Service improperly handles     objects in memory. An attacker who successfully     exploited this vulnerability could run arbitrary code in     an elevated context. An attacker could exploit this     vulnerability by running a specially crafted application     on the victim system. The update addresses the     vulnerability by correcting the way the Windows State     Repository Service handles objects in memory.
    (CVE-2020-1124, CVE-2020-1131, CVE-2020-1134,     CVE-2020-1144, CVE-2020-1184, CVE-2020-1185,     CVE-2020-1186, CVE-2020-1187, CVE-2020-1188,     CVE-2020-1189, CVE-2020-1190, CVE-2020-1191)

  - An elevation of privilege vulnerability exists in the     way that the Windows Kernel handles objects in memory.
    An attacker who successfully exploited the vulnerability     could execute code with elevated permissions.
    (CVE-2020-1087)

  - An elevation of privilege vulnerability exists when     Windows improperly handles errors tied to Remote Access     Common Dialog. An attacker who successfully exploited     the vulnerability could run arbitrary code with elevated     privileges.  (CVE-2020-1071)

  - A remote code execution vulnerability exists in the way     that the Chakra scripting engine handles objects in     memory in Microsoft Edge (HTML-based). The vulnerability     could corrupt memory in such a way that an attacker     could execute arbitrary code in the context of the     current user. An attacker who successfully exploited the     vulnerability could gain the same user rights as the     current user.  (CVE-2020-1037)

  - An elevation of privilege vulnerability exists when the     Windows kernel fails to properly handle objects in     memory. An attacker who successfully exploited this     vulnerability could run arbitrary code in kernel mode.
    An attacker could then install programs; view, change,     or delete data; or create new accounts with full user     rights.  (CVE-2020-1114)

  - An elevation of privilege vulnerability exists when the     Windows Common Log File System (CLFS) driver improperly     handles objects in memory. An attacker who successfully     exploited this vulnerability could run processes in an     elevated context.  (CVE-2020-1154)

  - An elevation of privilege vulnerability exists in     Windows Media Service that allows file creation in     arbitrary locations.  (CVE-2020-1068)

  - An information disclosure vulnerability exists when the     Windows Client Server Run-Time Subsystem (CSRSS) fails     to properly handle objects in memory. An attacker who     successfully exploited the vulnerability could obtain     information to further compromise the users system.
    (CVE-2020-1116)

  - A remote code execution vulnerability exists in the way     that the VBScript engine handles objects in memory. The     vulnerability could corrupt memory in such a way that an     attacker could execute arbitrary code in the context of     the current user. An attacker who successfully exploited     the vulnerability could gain the same user rights as the     current user.  (CVE-2020-1035, CVE-2020-1058,     CVE-2020-1060, CVE-2020-1093)

The remote Windows host is missing security update 4556807.
It is, therefore, affected by multiple vulnerabilities :

  - A denial of service vulnerability exists when .NET Core     or .NET Framework improperly handles web requests. An     attacker who successfully exploited this vulnerability     could cause a denial of service against a .NET Core or     .NET Framework web application. The vulnerability can be     exploited remotely, without authentication. A remote     unauthenticated attacker could exploit this     vulnerability by issuing specially crafted requests to     the .NET Core or .NET Framework application. The update     addresses the vulnerability by correcting how the .NET     Core or .NET Framework web application handles web     requests. (CVE-2020-1108)

  - An information disclosure vulnerability exists in the     way that the Windows Graphics Device Interface (GDI)     handles objects in memory, allowing an attacker to     retrieve information from a targeted system. By itself,     the information disclosure does not allow arbitrary code     execution; however, it could allow arbitrary code to be     run if the attacker uses it in combination with another     vulnerability.  (CVE-2020-1141)

  - An elevation of privilege vulnerability exists in     Windows Error Reporting (WER) when WER handles and     executes files. The vulnerability could allow elevation     of privilege if an attacker can successfully exploit it.
    An attacker who successfully exploited the vulnerability     could gain greater access to sensitive information and     system functionality.  (CVE-2020-1021, CVE-2020-1082,     CVE-2020-1088)

  - A remote code execution vulnerability exists when     Microsoft Edge PDF Reader improperly handles objects in     memory. The vulnerability could corrupt memory in such a     way that enables an attacker to execute arbitrary code     in the context of the current user. An attacker who     successfully exploited the vulnerability could gain the     same user rights as the current user. If the current     user is logged on with administrative user rights, an     attacker could take control of an affected system. An     attacker could then install programs; view, change, or     delete data; or create new accounts with full user     rights.  (CVE-2020-1096)

  - A denial of service vulnerability exists when Hyper-V on     a Windows Server fails to properly handle specially     crafted network packets.  (CVE-2020-0909)

  - An information disclosure vulnerability exists when the     Windows kernel improperly handles objects in memory. An     attacker who successfully exploited this vulnerability     could obtain information to further compromise the users     system.  (CVE-2020-1072)

  - A denial of service vulnerability exists when Connected     User Experiences and Telemetry Service improperly     handles file operations. An attacker who successfully     exploited this vulnerability could cause a system to     stop responding.  (CVE-2020-1123)

  - A Denial Of Service vulnerability exists when Connected     User Experiences and Telemetry Service fails to validate     certain function values. An attacker who successfully     exploited this vulnerability could deny dependent     security feature functionality.  (CVE-2020-1084)

  - An elevation of privilege vulnerability exists in the     way that the Windows Graphics Device Interface (GDI)     handles objects in memory. An attacker who successfully     exploited this vulnerability could run arbitrary code in     kernel mode. An attacker could then install programs;
    view, change, or delete data; or create new accounts     with full user rights.  (CVE-2020-1142)

  - An elevation of privilege vulnerability exists when the     Windows Print Spooler service improperly allows     arbitrary writing to the file system. An attacker who     successfully exploited this vulnerability could run     arbitrary code with elevated system privileges. An     attacker could then install programs; view, change, or     delete data; or create new accounts with full user     rights.  (CVE-2020-1048, CVE-2020-1070)

  - A denial of service vulnerability exists when Windows     improperly handles objects in memory. An attacker who     successfully exploited the vulnerability could cause a     target system to stop responding.  (CVE-2020-1076)

  - A remote code execution vulnerability exists when the     Windows Jet Database Engine improperly handles objects     in memory. An attacker who successfully exploited this     vulnerability could execute arbitrary code on a victim     system. An attacker could exploit this vulnerability by     enticing a victim to open a specially crafted file. The     update addresses the vulnerability by correcting the way     the Windows Jet Database Engine handles objects in     memory. (CVE-2020-1051, CVE-2020-1174, CVE-2020-1175,     CVE-2020-1176)

  - An elevation of privilege vulnerability exists when the     Windows fails to properly handle objects in memory. An     attacker who successfully exploited this vulnerability     could run arbitrary code. An attacker could then install     programs; view, change, or delete data; or create new     accounts with full user rights.  (CVE-2020-1079)

  - An elevation of privilege vulnerability exists in     Windows Installer because of the way Windows Installer     handles certain filesystem operations.  (CVE-2020-1078)

  - An elevation of privilege vulnerability exists in     Windows Block Level Backup Engine Service (wbengine)     that allows file deletion in arbitrary locations.
    (CVE-2020-1010)

  - An elevation of privilege vulnerability exists in the     way the Windows Push Notification Service handles     objects in memory. An attacker who successfully     exploited this vulnerability could run processes in an     elevated context. An attacker could then install     programs; view, change or delete data.  (CVE-2020-1137)

  - An information disclosure vulnerability exists when     Windows Subsystem for Linux improperly handles objects     in memory. An attacker who successfully exploited this     vulnerability could obtain information to further     compromise the users system. A attacker could exploit     this vulnerability by running a specially crafted     application. The update addresses the vulnerability by     correcting how Windows Subsystem for Linux handles     objects in memory. (CVE-2020-1075)

  - An elevation of privilege vulnerability exists when the     Storage Service improperly handles file operations. An     attacker who successfully exploited this vulnerability     could gain elevated privileges on the victim system.
    (CVE-2020-1138)

  - An information disclosure vulnerability exists when the     Windows GDI component improperly discloses the contents     of its memory. An attacker who successfully exploited     the vulnerability could obtain information to further     compromise the users system. There are multiple ways an     attacker could exploit the vulnerability, such as by     convincing a user to open a specially crafted document,     or by convincing a user to visit an untrusted webpage.
    The security update addresses the vulnerability by     correcting how the Windows GDI component handles objects     in memory. (CVE-2020-0963, CVE-2020-1179)

  - A remote code execution vulnerability exists when     Internet Explorer improperly accesses objects in memory.
    The vulnerability could corrupt memory in such a way     that an attacker could execute arbitrary code in the     context of the current user. An attacker who     successfully exploited the vulnerability could gain the     same user rights as the current user.  (CVE-2020-1062,     CVE-2020-1092)

  - An elevation of privilege vulnerability exists when     Microsoft Edge does not properly enforce cross-domain     policies, which could allow an attacker to access     information from one domain and inject it into another     domain.  (CVE-2020-1056)

  - A denial of service vulnerability exists in the Windows     implementation of Transport Layer Security (TLS) when it     improperly handles certain key exchanges. An attacker     who successfully exploited the vulnerability could cause     a target system to stop responding.  (CVE-2020-1118)

  - A remote code execution vulnerability exists in the way     that the MSHTML engine improperly validates input. An     attacker could execute arbitrary code in the context of     the current user.  (CVE-2020-1064)

  - A memory corruption vulnerability exists when Windows     Media Foundation improperly handles objects in memory.
    An attacker who successfully exploited the vulnerability     could install programs; view, change, or delete data; or     create new accounts with full user rights. There are     multiple ways an attacker could exploit the     vulnerability, such as by convincing a user to open a     specially crafted document, or by convincing a user to     visit a malicious webpage. The security update addresses     the vulnerability by correcting how Windows Media     Foundation handles objects in memory. (CVE-2020-1028,     CVE-2020-1126, CVE-2020-1136)

  - A remote code execution vulnerability exists in the way     that Microsoft Graphics Components handle objects in     memory. An attacker who successfully exploited the     vulnerability could execute arbitrary code on a target     system.  (CVE-2020-1153)

  - An elevation of privilege vulnerability exists in     Windows when the Windows kernel-mode driver fails to     properly handle objects in memory. An attacker who     successfully exploited this vulnerability could run     arbitrary code in kernel mode. An attacker could then     install programs; view, change, or delete data; or     create new accounts with full user rights.
    (CVE-2020-1054, CVE-2020-1143)

  - A remote code execution vulnerability exists in the way     that Windows handles objects in memory. An attacker who     successfully exploited the vulnerability could execute     arbitrary code with elevated permissions on a target     system.  (CVE-2020-1067)

  - A remote code execution vulnerability exists in the way     that the Color Management Module (ICM32.dll) handles     objects in memory. An attacker who successfully     exploited this vulnerability could take control of the     affected system. An attacker could then install     programs; view, change, or delete data; or create new     accounts with full user rights.  (CVE-2020-1117)

  - An elevation of privilege vulnerability exists when     Windows Error Reporting manager improperly handles file     and folder links. An attacker who successfully exploited     this vulnerability could overwrite a targeted file     leading to an elevated status.  (CVE-2020-1132)

  - An elevation of privilege vulnerability exists when the     Windows Graphics Component improperly handles objects in     memory. An attacker who successfully exploited this     vulnerability could run processes in an elevated     context.  (CVE-2020-1135)

  - A security feature bypass vulnerability exists in     Microsoft Windows when the Task Scheduler service fails     to properly verify client connections over RPC. An     attacker who successfully exploited this vulnerability     could run arbitrary code as an administrator. An     attacker could then install programs; view, change, or     delete data; or create new accounts with full user     rights.  (CVE-2020-1113)

  - An elevation of privilege vulnerability exists when the     Windows Background Intelligent Transfer Service (BITS)     IIS module improperly handles uploaded content. An     attacker who successfully exploited this vulnerability     could upload restricted file types to an IIS-hosted     folder.  (CVE-2020-1112)

  - An elevation of privilege vulnerability exists when the     Windows Printer Service improperly validates file paths     while loading printer drivers. An authenticated attacker     who successfully exploited this vulnerability could run     arbitrary code with elevated system privileges.
    (CVE-2020-1081)

  - An elevation of privilege vulnerability exists when the     Windows Runtime improperly handles objects in memory. An     attacker who successfully exploited this vulnerability     could run arbitrary code in an elevated context. An     attacker could exploit this vulnerability by running a     specially crafted application on the victim system. The     update addresses the vulnerability by correcting the way     the Windows Runtime handles objects in memory.
    (CVE-2020-1077, CVE-2020-1086, CVE-2020-1090,     CVE-2020-1125, CVE-2020-1139, CVE-2020-1149,     CVE-2020-1151, CVE-2020-1155, CVE-2020-1156,     CVE-2020-1157, CVE-2020-1158, CVE-2020-1164)

  - A remote code execution vulnerability exists in the way     that the Microsoft Script Runtime handles objects in     memory. The vulnerability could corrupt memory in such a     way that an attacker could execute arbitrary code in the     context of the current user. An attacker who     successfully exploited the vulnerability could gain the     same user rights as the current user.  (CVE-2020-1061)

  - An elevation of privilege vulnerability exists when the     Windows State Repository Service improperly handles     objects in memory. An attacker who successfully     exploited this vulnerability could run arbitrary code in     an elevated context. An attacker could exploit this     vulnerability by running a specially crafted application     on the victim system. The update addresses the     vulnerability by correcting the way the Windows State     Repository Service handles objects in memory.
    (CVE-2020-1124, CVE-2020-1131, CVE-2020-1134,     CVE-2020-1144, CVE-2020-1184, CVE-2020-1185,     CVE-2020-1186, CVE-2020-1187, CVE-2020-1188,     CVE-2020-1189, CVE-2020-1190, CVE-2020-1191)

  - A remote code execution vulnerability exists in the way     that the ChakraCore scripting engine handles objects in     memory. The vulnerability could corrupt memory in such a     way that an attacker could execute arbitrary code in the     context of the current user. An attacker who     successfully exploited the vulnerability could gain the     same user rights as the current user.  (CVE-2020-1065)

  - An elevation of privilege vulnerability exists in the     way that the Windows Kernel handles objects in memory.
    An attacker who successfully exploited the vulnerability     could execute code with elevated permissions.
    (CVE-2020-1087)

  - An elevation of privilege vulnerability exists when     Windows improperly handles errors tied to Remote Access     Common Dialog. An attacker who successfully exploited     the vulnerability could run arbitrary code with elevated     privileges.  (CVE-2020-1071)

  - A remote code execution vulnerability exists in the way     that the Chakra scripting engine handles objects in     memory in Microsoft Edge (HTML-based). The vulnerability     could corrupt memory in such a way that an attacker     could execute arbitrary code in the context of the     current user. An attacker who successfully exploited the     vulnerability could gain the same user rights as the     current user.  (CVE-2020-1037)

  - An elevation of privilege vulnerability exists when the     Windows Update Stack fails to properly handle objects in     memory. An attacker who successfully exploited this     vulnerability could run arbitrary code in kernel mode.
    An attacker could then install programs; view, change,     or delete data; or create new accounts with full user     rights.  (CVE-2020-1109, CVE-2020-1110)

  - An elevation of privilege vulnerability exists when the     Windows kernel fails to properly handle objects in     memory. An attacker who successfully exploited this     vulnerability could run arbitrary code in kernel mode.
    An attacker could then install programs; view, change,     or delete data; or create new accounts with full user     rights.  (CVE-2020-1114)

  - An elevation of privilege vulnerability exists in     Windows Media Service that allows file creation in     arbitrary locations.  (CVE-2020-1068)

  - An elevation of privilege vulnerability exists when the     Windows Common Log File System (CLFS) driver improperly     handles objects in memory. An attacker who successfully     exploited this vulnerability could run processes in an     elevated context.  (CVE-2020-1154)

  - A remote code execution vulnerability exists in the way     that the VBScript engine handles objects in memory. The     vulnerability could corrupt memory in such a way that an     attacker could execute arbitrary code in the context of     the current user. An attacker who successfully exploited     the vulnerability could gain the same user rights as the     current user.  (CVE-2020-1035, CVE-2020-1058,     CVE-2020-1060, CVE-2020-1093)

  - An information disclosure vulnerability exists when the     Windows Client Server Run-Time Subsystem (CSRSS) fails     to properly handle objects in memory. An attacker who     successfully exploited the vulnerability could obtain     information to further compromise the users system.
    (CVE-2020-1116)

  - A spoofing vulnerability exists when Microsoft Edge does     not properly parse HTTP content. An attacker who     successfully exploited this vulnerability could trick a     user by redirecting the user to a specially crafted     website. The specially crafted website could either     spoof content or serve as a pivot to chain an attack     with other vulnerabilities in web services.
    (CVE-2020-1059)

The remote Windows host is missing security update 4556799.
It is, therefore, affected by multiple vulnerabilities :

  - A denial of service vulnerability exists when .NET Core     or .NET Framework improperly handles web requests. An     attacker who successfully exploited this vulnerability     could cause a denial of service against a .NET Core or     .NET Framework web application. The vulnerability can be     exploited remotely, without authentication. A remote     unauthenticated attacker could exploit this     vulnerability by issuing specially crafted requests to     the .NET Core or .NET Framework application. The update     addresses the vulnerability by correcting how the .NET     Core or .NET Framework web application handles web     requests. (CVE-2020-1108)

  - An information disclosure vulnerability exists when the     Windows GDI component improperly discloses the contents     of its memory. An attacker who successfully exploited     the vulnerability could obtain information to further     compromise the users system. There are multiple ways an     attacker could exploit the vulnerability, such as by     convincing a user to open a specially crafted document,     or by convincing a user to visit an untrusted webpage.
    The security update addresses the vulnerability by     correcting how the Windows GDI component handles objects     in memory. (CVE-2020-0963, CVE-2020-1179)

  - An elevation of privilege vulnerability exists when     Windows improperly handles calls to Clipboard Service.
    An attacker who successfully exploited this     vulnerability could run arbitrary code in the security     context of the local system. An attacker could then     install programs; view, change, or delete data; or     create new accounts with full user rights.
    (CVE-2020-1111, CVE-2020-1121, CVE-2020-1165,     CVE-2020-1166)

  - A remote code execution vulnerability exists when     Microsoft Edge PDF Reader improperly handles objects in     memory. The vulnerability could corrupt memory in such a     way that enables an attacker to execute arbitrary code     in the context of the current user. An attacker who     successfully exploited the vulnerability could gain the     same user rights as the current user. If the current     user is logged on with administrative user rights, an     attacker could take control of an affected system. An     attacker could then install programs; view, change, or     delete data; or create new accounts with full user     rights.  (CVE-2020-1096)

  - A denial of service vulnerability exists when Hyper-V on     a Windows Server fails to properly handle specially     crafted network packets.  (CVE-2020-0909)

  - A cross-site-scripting (XSS) vulnerability exists when     Active Directory Federation Services (ADFS) does not     properly sanitize user inputs. An un-authenticated     attacker could exploit the vulnerability by sending a     specially crafted request to an affected ADFS server.
    The attacker who successfully exploited the     vulnerability could then perform cross-site scripting     attacks on affected systems and run scripts in the     security context of the current user. This security     update addresses the vulnerability by ensuring that ADFS     properly sanitizes user inputs. (CVE-2020-1055)

  - An information disclosure vulnerability exists when the     Windows kernel improperly handles objects in memory. An     attacker who successfully exploited this vulnerability     could obtain information to further compromise the users     system.  (CVE-2020-1072)

  - A denial of service vulnerability exists when Connected     User Experiences and Telemetry Service improperly     handles file operations. An attacker who successfully     exploited this vulnerability could cause a system to     stop responding.  (CVE-2020-1123)

  - A Denial Of Service vulnerability exists when Connected     User Experiences and Telemetry Service fails to validate     certain function values. An attacker who successfully     exploited this vulnerability could deny dependent     security feature functionality.  (CVE-2020-1084)

  - An elevation of privilege vulnerability exists in the     way that the Windows Graphics Device Interface (GDI)     handles objects in memory. An attacker who successfully     exploited this vulnerability could run arbitrary code in     kernel mode. An attacker could then install programs;
    view, change, or delete data; or create new accounts     with full user rights.  (CVE-2020-1142)

  - An elevation of privilege vulnerability exists when the     Windows Print Spooler service improperly allows     arbitrary writing to the file system. An attacker who     successfully exploited this vulnerability could run     arbitrary code with elevated system privileges. An     attacker could then install programs; view, change, or     delete data; or create new accounts with full user     rights.  (CVE-2020-1048, CVE-2020-1070)

  - An elevation of privilege vulnerability exists in     Windows Error Reporting (WER) when WER handles and     executes files. The vulnerability could allow elevation     of privilege if an attacker can successfully exploit it.
    An attacker who successfully exploited the vulnerability     could gain greater access to sensitive information and     system functionality.  (CVE-2020-1021, CVE-2020-1082,     CVE-2020-1088)

  - A denial of service vulnerability exists when Windows     improperly handles objects in memory. An attacker who     successfully exploited the vulnerability could cause a     target system to stop responding.  (CVE-2020-1076)

  - A remote code execution vulnerability exists when the     Windows Jet Database Engine improperly handles objects     in memory. An attacker who successfully exploited this     vulnerability could execute arbitrary code on a victim     system. An attacker could exploit this vulnerability by     enticing a victim to open a specially crafted file. The     update addresses the vulnerability by correcting the way     the Windows Jet Database Engine handles objects in     memory. (CVE-2020-1051, CVE-2020-1174, CVE-2020-1175,     CVE-2020-1176)

  - An elevation of privilege vulnerability exists when the     Windows fails to properly handle objects in memory. An     attacker who successfully exploited this vulnerability     could run arbitrary code. An attacker could then install     programs; view, change, or delete data; or create new     accounts with full user rights.  (CVE-2020-1079)

  - An elevation of privilege vulnerability exists in     Windows Installer because of the way Windows Installer     handles certain filesystem operations.  (CVE-2020-1078)

  - An elevation of privilege vulnerability exists in     Windows Block Level Backup Engine Service (wbengine)     that allows file deletion in arbitrary locations.
    (CVE-2020-1010)

  - An elevation of privilege vulnerability exists when     DirectX improperly handles objects in memory. An     attacker who successfully exploited this vulnerability     could run arbitrary code in kernel mode. An attacker     could then install programs; view, change, or delete     data; or create new accounts with full user rights.
    (CVE-2020-1140)

  - An elevation of privilege vulnerability exists in the     way the Windows Push Notification Service handles     objects in memory. An attacker who successfully     exploited this vulnerability could run processes in an     elevated context. An attacker could then install     programs; view, change or delete data.  (CVE-2020-1137)

  - An information disclosure vulnerability exists in the     way that the Windows Graphics Device Interface (GDI)     handles objects in memory, allowing an attacker to     retrieve information from a targeted system. By itself,     the information disclosure does not allow arbitrary code     execution; however, it could allow arbitrary code to be     run if the attacker uses it in combination with another     vulnerability.  (CVE-2020-1141, CVE-2020-1145)

  - An elevation of privilege vulnerability exists when the     Storage Service improperly handles file operations. An     attacker who successfully exploited this vulnerability     could gain elevated privileges on the victim system.
    (CVE-2020-1138)

  - An information disclosure vulnerability exists when     Windows Subsystem for Linux improperly handles objects     in memory. An attacker who successfully exploited this     vulnerability could obtain information to further     compromise the users system. A attacker could exploit     this vulnerability by running a specially crafted     application. The update addresses the vulnerability by     correcting how Windows Subsystem for Linux handles     objects in memory. (CVE-2020-1075)

  - A remote code execution vulnerability exists when     Internet Explorer improperly accesses objects in memory.
    The vulnerability could corrupt memory in such a way     that an attacker could execute arbitrary code in the     context of the current user. An attacker who     successfully exploited the vulnerability could gain the     same user rights as the current user.  (CVE-2020-1062,     CVE-2020-1092)

  - An elevation of privilege vulnerability exists when     Microsoft Edge does not properly enforce cross-domain     policies, which could allow an attacker to access     information from one domain and inject it into another     domain.  (CVE-2020-1056)

  - A denial of service vulnerability exists in the Windows     implementation of Transport Layer Security (TLS) when it     improperly handles certain key exchanges. An attacker     who successfully exploited the vulnerability could cause     a target system to stop responding.  (CVE-2020-1118)

  - A remote code execution vulnerability exists in the way     that the MSHTML engine improperly validates input. An     attacker could execute arbitrary code in the context of     the current user.  (CVE-2020-1064)

  - A memory corruption vulnerability exists when Windows     Media Foundation improperly handles objects in memory.
    An attacker who successfully exploited the vulnerability     could install programs; view, change, or delete data; or     create new accounts with full user rights. There are     multiple ways an attacker could exploit the     vulnerability, such as by convincing a user to open a     specially crafted document, or by convincing a user to     visit a malicious webpage. The security update addresses     the vulnerability by correcting how Windows Media     Foundation handles objects in memory. (CVE-2020-1028,     CVE-2020-1126, CVE-2020-1136)

  - A remote code execution vulnerability exists in the way     that Microsoft Graphics Components handle objects in     memory. An attacker who successfully exploited the     vulnerability could execute arbitrary code on a target     system.  (CVE-2020-1153)

  - An elevation of privilege vulnerability exists in     Windows when the Windows kernel-mode driver fails to     properly handle objects in memory. An attacker who     successfully exploited this vulnerability could run     arbitrary code in kernel mode. An attacker could then     install programs; view, change, or delete data; or     create new accounts with full user rights.
    (CVE-2020-1054, CVE-2020-1143)

  - A remote code execution vulnerability exists in the way     that Windows handles objects in memory. An attacker who     successfully exploited the vulnerability could execute     arbitrary code with elevated permissions on a target     system.  (CVE-2020-1067)

  - A remote code execution vulnerability exists in the way     that the Color Management Module (ICM32.dll) handles     objects in memory. An attacker who successfully     exploited this vulnerability could take control of the     affected system. An attacker could then install     programs; view, change, or delete data; or create new     accounts with full user rights.  (CVE-2020-1117)

  - An elevation of privilege vulnerability exists when     Windows Error Reporting manager improperly handles file     and folder links. An attacker who successfully exploited     this vulnerability could overwrite a targeted file     leading to an elevated status.  (CVE-2020-1132)

  - An elevation of privilege vulnerability exists when the     Windows Graphics Component improperly handles objects in     memory. An attacker who successfully exploited this     vulnerability could run processes in an elevated     context.  (CVE-2020-1135)

  - A security feature bypass vulnerability exists in     Microsoft Windows when the Task Scheduler service fails     to properly verify client connections over RPC. An     attacker who successfully exploited this vulnerability     could run arbitrary code as an administrator. An     attacker could then install programs; view, change, or     delete data; or create new accounts with full user     rights.  (CVE-2020-1113)

  - An elevation of privilege vulnerability exists when the     Windows Background Intelligent Transfer Service (BITS)     IIS module improperly handles uploaded content. An     attacker who successfully exploited this vulnerability     could upload restricted file types to an IIS-hosted     folder.  (CVE-2020-1112)

  - An elevation of privilege vulnerability exists when the     Windows Printer Service improperly validates file paths     while loading printer drivers. An authenticated attacker     who successfully exploited this vulnerability could run     arbitrary code with elevated system privileges.
    (CVE-2020-1081)

  - An elevation of privilege vulnerability exists when the     Windows Runtime improperly handles objects in memory. An     attacker who successfully exploited this vulnerability     could run arbitrary code in an elevated context. An     attacker could exploit this vulnerability by running a     specially crafted application on the victim system. The     update addresses the vulnerability by correcting the way     the Windows Runtime handles objects in memory.
    (CVE-2020-1077, CVE-2020-1086, CVE-2020-1090,     CVE-2020-1125, CVE-2020-1139, CVE-2020-1149,     CVE-2020-1151, CVE-2020-1155, CVE-2020-1156,     CVE-2020-1157, CVE-2020-1158, CVE-2020-1164)

  - A remote code execution vulnerability exists in the way     that the Microsoft Script Runtime handles objects in     memory. The vulnerability could corrupt memory in such a     way that an attacker could execute arbitrary code in the     context of the current user. An attacker who     successfully exploited the vulnerability could gain the     same user rights as the current user.  (CVE-2020-1061)

  - An elevation of privilege vulnerability exists when the     Windows State Repository Service improperly handles     objects in memory. An attacker who successfully     exploited this vulnerability could run arbitrary code in     an elevated context. An attacker could exploit this     vulnerability by running a specially crafted application     on the victim system. The update addresses the     vulnerability by correcting the way the Windows State     Repository Service handles objects in memory.
    (CVE-2020-1124, CVE-2020-1131, CVE-2020-1134,     CVE-2020-1144, CVE-2020-1184, CVE-2020-1185,     CVE-2020-1186, CVE-2020-1187, CVE-2020-1188,     CVE-2020-1189, CVE-2020-1190, CVE-2020-1191)

  - A remote code execution vulnerability exists in the way     that the ChakraCore scripting engine handles objects in     memory. The vulnerability could corrupt memory in such a     way that an attacker could execute arbitrary code in the     context of the current user. An attacker who     successfully exploited the vulnerability could gain the     same user rights as the current user.  (CVE-2020-1065)

  - An elevation of privilege vulnerability exists in the     way that the Windows Kernel handles objects in memory.
    An attacker who successfully exploited the vulnerability     could execute code with elevated permissions.
    (CVE-2020-1087)

  - An elevation of privilege vulnerability exists when     Windows improperly handles errors tied to Remote Access     Common Dialog. An attacker who successfully exploited     the vulnerability could run arbitrary code with elevated     privileges.  (CVE-2020-1071)

  - A remote code execution vulnerability exists in the way     that the Chakra scripting engine handles objects in     memory in Microsoft Edge (HTML-based). The vulnerability     could corrupt memory in such a way that an attacker     could execute arbitrary code in the context of the     current user. An attacker who successfully exploited the     vulnerability could gain the same user rights as the     current user.  (CVE-2020-1037)

  - An elevation of privilege vulnerability exists when the     Windows Update Stack fails to properly handle objects in     memory. An attacker who successfully exploited this     vulnerability could run arbitrary code in kernel mode.
    An attacker could then install programs; view, change,     or delete data; or create new accounts with full user     rights.  (CVE-2020-1109, CVE-2020-1110)

  - An elevation of privilege vulnerability exists when the     Windows kernel fails to properly handle objects in     memory. An attacker who successfully exploited this     vulnerability could run arbitrary code in kernel mode.
    An attacker could then install programs; view, change,     or delete data; or create new accounts with full user     rights.  (CVE-2020-1114)

  - An elevation of privilege vulnerability exists in     Windows Media Service that allows file creation in     arbitrary locations.  (CVE-2020-1068)

  - An elevation of privilege vulnerability exists when the     Windows Common Log File System (CLFS) driver improperly     handles objects in memory. An attacker who successfully     exploited this vulnerability could run processes in an     elevated context.  (CVE-2020-1154)

  - A remote code execution vulnerability exists in the way     that the VBScript engine handles objects in memory. The     vulnerability could corrupt memory in such a way that an     attacker could execute arbitrary code in the context of     the current user. An attacker who successfully exploited     the vulnerability could gain the same user rights as the     current user.  (CVE-2020-1035, CVE-2020-1058,     CVE-2020-1060, CVE-2020-1093)

  - An information disclosure vulnerability exists when the     Windows Client Server Run-Time Subsystem (CSRSS) fails     to properly handle objects in memory. An attacker who     successfully exploited the vulnerability could obtain     information to further compromise the users system.
    (CVE-2020-1116)

  - A spoofing vulnerability exists when Microsoft Edge does     not properly parse HTTP content. An attacker who     successfully exploited this vulnerability could trick a     user by redirecting the user to a specially crafted     website. The specially crafted website could either     spoof content or serve as a pivot to chain an attack     with other vulnerabilities in web services.
    (CVE-2020-1059)

The remote Windows host is missing security update 4551853.
It is, therefore, affected by multiple vulnerabilities :

  - A denial of service vulnerability exists when .NET Core     or .NET Framework improperly handles web requests. An     attacker who successfully exploited this vulnerability     could cause a denial of service against a .NET Core or     .NET Framework web application. The vulnerability can be     exploited remotely, without authentication. A remote     unauthenticated attacker could exploit this     vulnerability by issuing specially crafted requests to     the .NET Core or .NET Framework application. The update     addresses the vulnerability by correcting how the .NET     Core or .NET Framework web application handles web     requests. (CVE-2020-1108)

  - An information disclosure vulnerability exists in the     way that the Windows Graphics Device Interface (GDI)     handles objects in memory, allowing an attacker to     retrieve information from a targeted system. By itself,     the information disclosure does not allow arbitrary code     execution; however, it could allow arbitrary code to be     run if the attacker uses it in combination with another     vulnerability.  (CVE-2020-1141)

  - An elevation of privilege vulnerability exists in     Windows Error Reporting (WER) when WER handles and     executes files. The vulnerability could allow elevation     of privilege if an attacker can successfully exploit it.
    An attacker who successfully exploited the vulnerability     could gain greater access to sensitive information and     system functionality.  (CVE-2020-1021, CVE-2020-1082,     CVE-2020-1088)

  - A remote code execution vulnerability exists when     Microsoft Edge PDF Reader improperly handles objects in     memory. The vulnerability could corrupt memory in such a     way that enables an attacker to execute arbitrary code     in the context of the current user. An attacker who     successfully exploited the vulnerability could gain the     same user rights as the current user. If the current     user is logged on with administrative user rights, an     attacker could take control of an affected system. An     attacker could then install programs; view, change, or     delete data; or create new accounts with full user     rights.  (CVE-2020-1096)

  - A denial of service vulnerability exists when Hyper-V on     a Windows Server fails to properly handle specially     crafted network packets.  (CVE-2020-0909)

  - A cross-site-scripting (XSS) vulnerability exists when     Active Directory Federation Services (ADFS) does not     properly sanitize user inputs. An un-authenticated     attacker could exploit the vulnerability by sending a     specially crafted request to an affected ADFS server.
    The attacker who successfully exploited the     vulnerability could then perform cross-site scripting     attacks on affected systems and run scripts in the     security context of the current user. This security     update addresses the vulnerability by ensuring that ADFS     properly sanitizes user inputs. (CVE-2020-1055)

  - An information disclosure vulnerability exists when the     Windows kernel improperly handles objects in memory. An     attacker who successfully exploited this vulnerability     could obtain information to further compromise the users     system.  (CVE-2020-1072)

  - A denial of service vulnerability exists when Connected     User Experiences and Telemetry Service improperly     handles file operations. An attacker who successfully     exploited this vulnerability could cause a system to     stop responding.  (CVE-2020-1123)

  - A Denial Of Service vulnerability exists when Connected     User Experiences and Telemetry Service fails to validate     certain function values. An attacker who successfully     exploited this vulnerability could deny dependent     security feature functionality.  (CVE-2020-1084)

  - An elevation of privilege vulnerability exists in the     way that the Windows Graphics Device Interface (GDI)     handles objects in memory. An attacker who successfully     exploited this vulnerability could run arbitrary code in     kernel mode. An attacker could then install programs;
    view, change, or delete data; or create new accounts     with full user rights.  (CVE-2020-1142)

  - An elevation of privilege vulnerability exists when the     Windows Print Spooler service improperly allows     arbitrary writing to the file system. An attacker who     successfully exploited this vulnerability could run     arbitrary code with elevated system privileges. An     attacker could then install programs; view, change, or     delete data; or create new accounts with full user     rights.  (CVE-2020-1048, CVE-2020-1070)

  - A denial of service vulnerability exists when Windows     improperly handles objects in memory. An attacker who     successfully exploited the vulnerability could cause a     target system to stop responding.  (CVE-2020-1076)

  - A remote code execution vulnerability exists when the     Windows Jet Database Engine improperly handles objects     in memory. An attacker who successfully exploited this     vulnerability could execute arbitrary code on a victim     system. An attacker could exploit this vulnerability by     enticing a victim to open a specially crafted file. The     update addresses the vulnerability by correcting the way     the Windows Jet Database Engine handles objects in     memory. (CVE-2020-1051, CVE-2020-1174, CVE-2020-1175,     CVE-2020-1176)

  - An elevation of privilege vulnerability exists when     Windows improperly handles calls to Clipboard Service.
    An attacker who successfully exploited this     vulnerability could run arbitrary code in the security     context of the local system. An attacker could then     install programs; view, change, or delete data; or     create new accounts with full user rights.
    (CVE-2020-1111, CVE-2020-1121)

  - An elevation of privilege vulnerability exists when the     Windows fails to properly handle objects in memory. An     attacker who successfully exploited this vulnerability     could run arbitrary code. An attacker could then install     programs; view, change, or delete data; or create new     accounts with full user rights.  (CVE-2020-1079)

  - An elevation of privilege vulnerability exists in     Windows Installer because of the way Windows Installer     handles certain filesystem operations.  (CVE-2020-1078)

  - An elevation of privilege vulnerability exists in     Windows Block Level Backup Engine Service (wbengine)     that allows file deletion in arbitrary locations.
    (CVE-2020-1010)

  - An elevation of privilege vulnerability exists when     DirectX improperly handles objects in memory. An     attacker who successfully exploited this vulnerability     could run arbitrary code in kernel mode. An attacker     could then install programs; view, change, or delete     data; or create new accounts with full user rights.
    (CVE-2020-1140)

  - An elevation of privilege vulnerability exists in the     way the Windows Push Notification Service handles     objects in memory. An attacker who successfully     exploited this vulnerability could run processes in an     elevated context. An attacker could then install     programs; view, change or delete data.  (CVE-2020-1137)

  - An elevation of privilege vulnerability exists when the     Windows Update Stack fails to properly handle objects in     memory. An attacker who successfully exploited this     vulnerability could run arbitrary code in kernel mode.
    An attacker could then install programs; view, change,     or delete data; or create new accounts with full user     rights.  (CVE-2020-1109, CVE-2020-1110)

  - An elevation of privilege vulnerability exists when the     Storage Service improperly handles file operations. An     attacker who successfully exploited this vulnerability     could gain elevated privileges on the victim system.
    (CVE-2020-1138)

  - An information disclosure vulnerability exists when the     Windows GDI component improperly discloses the contents     of its memory. An attacker who successfully exploited     the vulnerability could obtain information to further     compromise the users system. There are multiple ways an     attacker could exploit the vulnerability, such as by     convincing a user to open a specially crafted document,     or by convincing a user to visit an untrusted webpage.
    The security update addresses the vulnerability by     correcting how the Windows GDI component handles objects     in memory. (CVE-2020-0963, CVE-2020-1179)

  - A remote code execution vulnerability exists when     Internet Explorer improperly accesses objects in memory.
    The vulnerability could corrupt memory in such a way     that an attacker could execute arbitrary code in the     context of the current user. An attacker who     successfully exploited the vulnerability could gain the     same user rights as the current user.  (CVE-2020-1062,     CVE-2020-1092)

  - An elevation of privilege vulnerability exists when     Microsoft Edge does not properly enforce cross-domain     policies, which could allow an attacker to access     information from one domain and inject it into another     domain.  (CVE-2020-1056)

  - A denial of service vulnerability exists in the Windows     implementation of Transport Layer Security (TLS) when it     improperly handles certain key exchanges. An attacker     who successfully exploited the vulnerability could cause     a target system to stop responding.  (CVE-2020-1118)

  - A remote code execution vulnerability exists in the way     that the MSHTML engine improperly validates input. An     attacker could execute arbitrary code in the context of     the current user.  (CVE-2020-1064)

  - A memory corruption vulnerability exists when Windows     Media Foundation improperly handles objects in memory.
    An attacker who successfully exploited the vulnerability     could install programs; view, change, or delete data; or     create new accounts with full user rights. There are     multiple ways an attacker could exploit the     vulnerability, such as by convincing a user to open a     specially crafted document, or by convincing a user to     visit a malicious webpage. The security update addresses     the vulnerability by correcting how Windows Media     Foundation handles objects in memory. (CVE-2020-1028,     CVE-2020-1126, CVE-2020-1136)

  - A remote code execution vulnerability exists in the way     that Microsoft Graphics Components handle objects in     memory. An attacker who successfully exploited the     vulnerability could execute arbitrary code on a target     system.  (CVE-2020-1153)

  - An elevation of privilege vulnerability exists in     Windows when the Windows kernel-mode driver fails to     properly handle objects in memory. An attacker who     successfully exploited this vulnerability could run     arbitrary code in kernel mode. An attacker could then     install programs; view, change, or delete data; or     create new accounts with full user rights.
    (CVE-2020-1054, CVE-2020-1143)

  - A remote code execution vulnerability exists in the way     that Windows handles objects in memory. An attacker who     successfully exploited the vulnerability could execute     arbitrary code with elevated permissions on a target     system.  (CVE-2020-1067)

  - A remote code execution vulnerability exists in the way     that the Color Management Module (ICM32.dll) handles     objects in memory. An attacker who successfully     exploited this vulnerability could take control of the     affected system. An attacker could then install     programs; view, change, or delete data; or create new     accounts with full user rights.  (CVE-2020-1117)

  - An elevation of privilege vulnerability exists when     Windows Error Reporting manager improperly handles file     and folder links. An attacker who successfully exploited     this vulnerability could overwrite a targeted file     leading to an elevated status.  (CVE-2020-1132)

  - An elevation of privilege vulnerability exists when the     Windows Graphics Component improperly handles objects in     memory. An attacker who successfully exploited this     vulnerability could run processes in an elevated     context.  (CVE-2020-1135)

  - A security feature bypass vulnerability exists in     Microsoft Windows when the Task Scheduler service fails     to properly verify client connections over RPC. An     attacker who successfully exploited this vulnerability     could run arbitrary code as an administrator. An     attacker could then install programs; view, change, or     delete data; or create new accounts with full user     rights.  (CVE-2020-1113)

  - An elevation of privilege vulnerability exists when the     Windows Background Intelligent Transfer Service (BITS)     IIS module improperly handles uploaded content. An     attacker who successfully exploited this vulnerability     could upload restricted file types to an IIS-hosted     folder.  (CVE-2020-1112)

  - An elevation of privilege vulnerability exists when the     Windows Printer Service improperly validates file paths     while loading printer drivers. An authenticated attacker     who successfully exploited this vulnerability could run     arbitrary code with elevated system privileges.
    (CVE-2020-1081)

  - An elevation of privilege vulnerability exists when the     Windows Runtime improperly handles objects in memory. An     attacker who successfully exploited this vulnerability     could run arbitrary code in an elevated context. An     attacker could exploit this vulnerability by running a     specially crafted application on the victim system. The     update addresses the vulnerability by correcting the way     the Windows Runtime handles objects in memory.
    (CVE-2020-1077, CVE-2020-1086, CVE-2020-1090,     CVE-2020-1125, CVE-2020-1139, CVE-2020-1149,     CVE-2020-1151, CVE-2020-1155, CVE-2020-1156,     CVE-2020-1157, CVE-2020-1158, CVE-2020-1164)

  - A remote code execution vulnerability exists in the way     that the Microsoft Script Runtime handles objects in     memory. The vulnerability could corrupt memory in such a     way that an attacker could execute arbitrary code in the     context of the current user. An attacker who     successfully exploited the vulnerability could gain the     same user rights as the current user.  (CVE-2020-1061)

  - An elevation of privilege vulnerability exists when the     Windows State Repository Service improperly handles     objects in memory. An attacker who successfully     exploited this vulnerability could run arbitrary code in     an elevated context. An attacker could exploit this     vulnerability by running a specially crafted application     on the victim system. The update addresses the     vulnerability by correcting the way the Windows State     Repository Service handles objects in memory.
    (CVE-2020-1124, CVE-2020-1131, CVE-2020-1134,     CVE-2020-1144, CVE-2020-1184, CVE-2020-1185,     CVE-2020-1186, CVE-2020-1187, CVE-2020-1188,     CVE-2020-1189, CVE-2020-1190, CVE-2020-1191)

  - A remote code execution vulnerability exists in the way     that the ChakraCore scripting engine handles objects in     memory. The vulnerability could corrupt memory in such a     way that an attacker could execute arbitrary code in the     context of the current user. An attacker who     successfully exploited the vulnerability could gain the     same user rights as the current user.  (CVE-2020-1065)

  - An elevation of privilege vulnerability exists in the     way that the Windows Kernel handles objects in memory.
    An attacker who successfully exploited the vulnerability     could execute code with elevated permissions.
    (CVE-2020-1087)

  - An elevation of privilege vulnerability exists when     Windows improperly handles errors tied to Remote Access     Common Dialog. An attacker who successfully exploited     the vulnerability could run arbitrary code with elevated     privileges.  (CVE-2020-1071)

  - A remote code execution vulnerability exists in the way     that the Chakra scripting engine handles objects in     memory in Microsoft Edge (HTML-based). The vulnerability     could corrupt memory in such a way that an attacker     could execute arbitrary code in the context of the     current user. An attacker who successfully exploited the     vulnerability could gain the same user rights as the     current user.  (CVE-2020-1037)

  - An information disclosure vulnerability exists when     Windows Subsystem for Linux improperly handles objects     in memory. An attacker who successfully exploited this     vulnerability could obtain information to further     compromise the users system. A attacker could exploit     this vulnerability by running a specially crafted     application. The update addresses the vulnerability by     correcting how Windows Subsystem for Linux handles     objects in memory. (CVE-2020-1075)

  - An elevation of privilege vulnerability exists when the     Windows kernel fails to properly handle objects in     memory. An attacker who successfully exploited this     vulnerability could run arbitrary code in kernel mode.
    An attacker could then install programs; view, change,     or delete data; or create new accounts with full user     rights.  (CVE-2020-1114)

  - An elevation of privilege vulnerability exists in     Windows Media Service that allows file creation in     arbitrary locations.  (CVE-2020-1068)

  - An elevation of privilege vulnerability exists when the     Windows Common Log File System (CLFS) driver improperly     handles objects in memory. An attacker who successfully     exploited this vulnerability could run processes in an     elevated context.  (CVE-2020-1154)

  - A remote code execution vulnerability exists in the way     that the VBScript engine handles objects in memory. The     vulnerability could corrupt memory in such a way that an     attacker could execute arbitrary code in the context of     the current user. An attacker who successfully exploited     the vulnerability could gain the same user rights as the     current user.  (CVE-2020-1035, CVE-2020-1058,     CVE-2020-1060, CVE-2020-1093)

  - An information disclosure vulnerability exists when the     Windows Client Server Run-Time Subsystem (CSRSS) fails     to properly handle objects in memory. An attacker who     successfully exploited the vulnerability could obtain     information to further compromise the users system.
    (CVE-2020-1116)

  - A spoofing vulnerability exists when Microsoft Edge does     not properly parse HTTP content. An attacker who     successfully exploited this vulnerability could trick a     user by redirecting the user to a specially crafted     website. The specially crafted website could either     spoof content or serve as a pivot to chain an attack     with other vulnerabilities in web services.
    (CVE-2020-1059)

ID	Name	Product	Family	Severity
136510	KB4556854: Windows Server 2008 May 2020 Security Update	Nessus	Windows : Microsoft Bulletins	high
136509	KB4556853: Windows 8.1 and Windows Server 2012 R2 May 2020 Security Update	Nessus	Windows : Microsoft Bulletins	high
136508	KB4556852: Windows Server 2012 May 2020 Security Update	Nessus	Windows : Microsoft Bulletins	high
136507	KB4556843: Windows 7 and Windows Server 2008 R2 May 2020 Security Update	Nessus	Windows : Microsoft Bulletins	high
136506	KB4556826: Windows 10 May 2020 Security Update	Nessus	Windows : Microsoft Bulletins	high
136505	KB4556813: Windows 10 Version 1607 and Windows Server 2016 May 2020 Security Update	Nessus	Windows : Microsoft Bulletins	high
136504	KB4556812: Windows 10 Version 1709 May 2020 Security Update	Nessus	Windows : Microsoft Bulletins	high
136503	KB4556807: Windows 10 Version 1803 May 2020 Security Update	Nessus	Windows : Microsoft Bulletins	high
136502	KB4556799: Windows 10 Version 1903 and Windows 10 Version 1909 May 2020 Security Update	Nessus	Windows : Microsoft Bulletins	high
136501	KB4551853: Windows 10 Version 1809 and Windows Server 2019 May 2020 Security Update	Nessus	Windows : Microsoft Bulletins	high

CVE-2020-1048

high

New! CVE Severity Now Using CVSS v3

Description

References

Details

Risk Information

CVSS v2

CVSS v3

Vulnerable Software

Configuration 1

Tenable Plugins

high

high

high

high

high

high

high

high

high

high