Published: 11/07/2017 Updated: 03/10/2019

CVSS v2 Base Score: 9.3 | Impact Score: 10 | Exploitability Score: 8.6

CVSS v3 Base Score: 7.8 | Impact Score: 5.9 | Exploitability Score: 1.8

VMScore: 828

Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

Windows Shell in Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows a remote code execution vulnerability due to the way it improperly handles executable files and shares during rename operations, aka "Windows Explorer Remote Code Execution Vulnerability".

Vulnerable Product	Search on Vulmon	Subscribe to Product
microsoft windows 10 1511
microsoft windows server 2016
microsoft windows 10 1703
microsoft windows server 2008
microsoft windows 8.1
microsoft windows server 2012 -
microsoft windows server 2012 r2
microsoft windows 7
microsoft windows rt 8.1
microsoft windows 10 1607
microsoft windows server 2008 r2
microsoft windows 10 -

It's July 2017 – and your expensive HoloLens can be pwned over Wi-Fi

The Register • Shaun Nichols in San Francisco • 11 Jul 2017

Augmented Reality bites. Plus: Update Windows boxes, Flash ASAP

Patch Tuesday Microsoft's HoloLens may only be in the hands of developers, but that hasn't stopped researchers from finding major security holes in the augmented reality headset. Critical fixes for HoloLens were among the 57 CVE-listed flaws Redmond had to address in this month's edition of Patch Tuesday. Of the 57 bugs blasted in various Microsoft products, 19 are listed as critical and 24 could potentially allow for remote code execution. Four vulnerabilities were disclosed publicly before tod...

CVE-2017-8463

Vulnerability Summary

Recent Articles

References

Vulmon Search

About

Products

Connect