Vulnerability Details CVE-2017-0259
The Windows kernel in Microsoft Windows 8.1, Windows Server 2012 R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows authenticated attackers to obtain sensitive information via a specially crafted document, aka "Windows Kernel Information Disclosure Vulnerability," a different vulnerability than CVE-2017-0175, CVE-2017-0220, and CVE-2017-0258.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.033
EPSS Ranking 86.7%
CVSS Severity
CVSS v3 Score 4.7
CVSS v2 Score 1.9
References
- http://www.securityfocus.com/bid/98113
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-0259
- https://www.exploit-db.com/exploits/42007/
- http://www.securityfocus.com/bid/98113
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-0259
- https://www.exploit-db.com/exploits/42007/
Products affected by CVE-2017-0259
-
cpe:2.3:o:microsoft:windows_10:-
-
cpe:2.3:o:microsoft:windows_10:1511
-
cpe:2.3:o:microsoft:windows_10:1607
-
cpe:2.3:o:microsoft:windows_10:1703
-
cpe:2.3:o:microsoft:windows_8.1:-
-
cpe:2.3:o:microsoft:windows_8.1:6.3.9600.20520
-
cpe:2.3:o:microsoft:windows_rt_8.1:-
-
cpe:2.3:o:microsoft:windows_server_2012:r2
-
cpe:2.3:o:microsoft:windows_server_2016:-