#VU8771 Information disclosure in Windows and Windows Server - CVE-2017-11785
Published: October 10, 2017 / Updated: September 14, 2018
Vulnerability identifier: #VU8771
Vulnerability risk: Low
CVSSv4.0: CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:P/U:Clear
CVE-ID: CVE-2017-11785
CWE-ID: CWE-200
Exploitation vector: Local access
Exploit availability:
Public exploit is available
Vulnerable software:
Windows
Windows Server
Windows
Windows Server
Software vendor:
Microsoft
Microsoft
Description
The vulnerability allows a local attacker to obtain potentially sensitive information on the target system.
The vulnerability exists due to an error when the Windows kernel handles objects in memory. A local attacker can run a specially crafted application, retrieve the memory address of a kernel object and bypass Kernel Address Space Layout Randomization (ASLR).
Successful exploitation of the vulnerability may result in further attack.
The vulnerability exists due to an error when the Windows kernel handles objects in memory. A local attacker can run a specially crafted application, retrieve the memory address of a kernel object and bypass Kernel Address Space Layout Randomization (ASLR).
Successful exploitation of the vulnerability may result in further attack.
Remediation
Install updates from vendor's website.