Published: 15/11/2017 Updated: 01/12/2017

CVSS v2 Base Score: 1.9 | Impact Score: 2.9 | Exploitability Score: 3.4

CVSS v3 Base Score: 4.7 | Impact Score: 3.6 | Exploitability Score: 1

VMScore: 170

Vector: AV:L/AC:M/Au:N/C:P/I:N/A:N

Subscribe to Windows Server 2008

Microsoft GDI Component in Windows 7 SP1 and Windows Server 2008 SP2 and R2 SP1 allows an malicious user to log on to an affected system and run a specially crafted application to compromise the user's system, due improperly disclosing kernel memory addresses, aka "Windows GDI Information Disclosure Vulnerability".

Vulnerable Product	Search on Vulmon	Subscribe to Product
microsoft windows server 2008 r2
microsoft windows 7 -
microsoft windows server 2008 -

👋 안녕하세요! 프로그램을 분석하고 보안 관점으로 해석하는 것을 즐깁니다 아이디어를 구현하고 문제를 해결하는 것에 흥미가 있습니다 CTF/PS 등 문제 풀이를 즐깁니다 자세한 내용은 여기에 -> pumicenotionsite/ 🖥️ 경력 IoTCube (201901 - 202002) 리서치 팀, 직원 취약점 탐�

CWE-200 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-11852 http://www.securitytracker.com/id/1039782 http://www.securityfocus.com/bid/101739 https://nvd.nist.gov https://github.com/ksyang-hj/ksyang-hj

CVE-2017-11852

Vulnerability Summary

Vulnerability Trend

Github Repositories

References

Vulmon Search

About

Products

Connect