Published: 12/05/2017 Updated: 13/08/2017

CVSS v2 Base Score: 1.9 | Impact Score: 2.9 | Exploitability Score: 3.4

CVSS v3 Base Score: 4.7 | Impact Score: 3.6 | Exploitability Score: 1

VMScore: 195

Vector: AV:L/AC:M/Au:N/C:P/I:N/A:N

The Windows kernel in Microsoft Windows 8.1, Windows Server 2012 R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows authenticated malicious users to obtain sensitive information via a specially crafted document, aka "Windows Kernel Information Disclosure Vulnerability," a different vulnerability than CVE-2017-0175, CVE-2017-0220, and CVE-2017-0258.

Vulnerable Product	Search on Vulmon	Subscribe to Product
microsoft windows server 2012 r2
microsoft windows rt 8.1 -
microsoft windows 8.1
microsoft windows server 2016 -
microsoft windows 10 -
microsoft windows 10 1511
microsoft windows 10 1607
microsoft windows 10 1703

/* Source: bugschromiumorg/p/project-zero/issues/detail?id=1161 We have discovered that the handler of the nt!NtTraceControl system call (specifically the EtwpSetProviderTraitsUm functionality, opcode 0x1E) discloses portions of uninitialized pool memory to user-mode clients on Windows 10 systems On our test Windows 10 32-bit workstati ...

CWE-200 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-0259 http://www.securityfocus.com/bid/98113 https://www.exploit-db.com/exploits/42007/https://nvd.nist.gov https://www.exploit-db.com/exploits/42007/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2017-0259

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect