CVE-2017-11768

EPSS 6.4%

Vexday Risk Score

3Baixo

Decisão SSVC (CISA)

Track

Sem sinal de exploração → monitorar

CVSS —EPSS 6.4%KEV nãoPoC —Nuclei —Metasploit —Patch —

Ciclo de vida

15 nov 2017Publicada no NVD

Recomendação: Monitorar — sem sinal de exploração no momento.

Windows Media Player in Windows 7 SP1, Windows Server 2008 SP2 and R2 SP1, Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and 1709, Windows Server 2016, and Windows Server, version 1709 allows remote attackers to test for the presence of files on disk via a specially crafted application. due to the way Windows Media Player discloses file information, aka "Windows Media Player Information Disclosure Vulnerability."

Produtos afetados

Microsoft Corporation · Windows Media Player

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-11768 http://www.securityfocus.com/bid/101705 http://www.securitytracker.com/id/1039794