CVSS: 5.5EPSS: 0%CPEs: 13EXPL: 1CVE-2018-0972 – Microsoft Windows - 'nt!NtQueryInformationTransactionManager (TransactionManagerRecoveryInformation)' Kernel Pool Memory Disclosure
https://notcve.org/view.php?id=CVE-2018-0972
An information disclosure vulnerability exists in the Windows kernel that could allow an attacker to retrieve information that could lead to a Kernel Address Space Layout Randomization (ASLR) bypass, aka "Windows Kernel Information Disclosure Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Server 2008 R2, Windows 10, Windows 10 Servers. This CVE ID is unique from CVE-2018-0887, CVE-2018-0960, CVE-2018-0968, CVE-2018-0969, CVE-2018-0970, CVE-2018-0971, CVE-2018-0973, CVE-2018-0974, CVE-2018-0975. Existe una vulnerabilidad de divulgación de información en el kernel de Windows que podría permitir que un atacante recupere información que podría desembocar en una omisión ASLR (Address Space Layout Randomization) del kernel. Esto también se conoce como "Windows Kernel Information Disclosure Vulnerability". • https://www.exploit-db.com/exploits/44462 http://www.securityfocus.com/bid/103659 http://www.securitytracker.com/id/1040657 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-0972 •
CVSS: 7.8EPSS: 0%CPEs: 10EXPL: 0CVE-2018-1009
https://notcve.org/view.php?id=CVE-2018-1009
An elevation of privilege vulnerability exists when Windows improperly handles objects in memory and incorrectly maps kernel memory, aka "Microsoft DirectX Graphics Kernel Subsystem Elevation of Privilege Vulnerability." This affects Windows Server 2012 R2, Windows RT 8.1, Windows Server 2012, Windows Server 2016, Windows 8.1, Windows 10, Windows 10 Servers. Existe una vulnerabilidad de elevación de privilegios cuando Windows gestiona incorrectamente objetos en la memoria y mapea incorrectamente la memoria del kernel. Esto también se conoce como "Microsoft DirectX Graphics Kernel Subsystem Elevation of Privilege Vulnerability". Esto afecta a Windows Server 2012 R2, Windows RT 8.1, Windows Server 2012, Windows Server 2016, Windows 8.1, Windows 10 y Windows 10 Servers. • http://www.securityfocus.com/bid/103654 http://www.securitytracker.com/id/1040673 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-1009 •
CVSS: 7.0EPSS: 0%CPEs: 13EXPL: 0CVE-2018-1008 – Microsoft Windows Font Integer Overflow Privilege Escalation Vulnerability
https://notcve.org/view.php?id=CVE-2018-1008
An elevation of privilege vulnerability exists in Windows Adobe Type Manager Font Driver (ATMFD.dll) when it fails to properly handle objects in memory, aka "OpenType Font Driver Elevation of Privilege Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Server 2008 R2, Windows 10, Windows 10 Servers. Existe una vulnerabilidad de elevación de privilegios en Windows Adobe Type Manager Font Driver (ATMFD.dll) cuando no gestiona correctamente los objetos en la memoria. Esto también se conoce como "OpenType Font Driver Elevation of Privilege Vulnerability". Esto afecta a Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Server 2008 R2, Windows 10 y Windows 10 Servers. • http://www.securityfocus.com/bid/103658 http://www.securitytracker.com/id/1040673 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-1008 •
CVSS: 7.6EPSS: 14%CPEs: 16EXPL: 0CVE-2018-0996 – Microsoft Windows JScript String Manipulation Integer Overflow Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2018-0996
A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer, aka "Scripting Engine Memory Corruption Vulnerability." This affects Internet Explorer 9, Internet Explorer 11, Internet Explorer 10. This CVE ID is unique from CVE-2018-0988, CVE-2018-1001. Existe una vulnerabilidad de ejecución remota de código que se manifiesta en la forma en la que el motor de scripting gestiona los objetos en la memoria en Internet Explorer. Esto también se conoce como "Scripting Engine Memory Corruption Vulnerability". • http://www.securityfocus.com/bid/103602 http://www.securitytracker.com/id/1040653 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-0996 • CWE-787: Out-of-bounds Write •
CVSS: 4.3EPSS: 0%CPEs: 16EXPL: 0CVE-2018-0987 – Microsoft Windows JScript defineProperty Use-After-Free Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2018-0987
An information disclosure vulnerability exists when the scripting engine does not properly handle objects in memory in Internet Explorer, aka "Scripting Engine Information Disclosure Vulnerability." This affects Internet Explorer 9, Internet Explorer 11, Internet Explorer 10. This CVE ID is unique from CVE-2018-0981, CVE-2018-0989, CVE-2018-1000. Existe una vulnerabilidad de divulgación de información cuando el motor de scripting no gestiona correctamente los objetos en la memoria en Internet Explorer. Esto también se conoce como "Scripting Engine Information Disclosure Vulnerability". • http://www.securityfocus.com/bid/103623 http://www.securitytracker.com/id/1040653 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-0987 •