CVE-2017-0085 in Windowsinfo

Summary (Prediction)

A vulnerability was identified in Microsoft Windows 7 SP1/Server 2008 R2 SP1/Server 2008 SP2/Vista SP2. This impacts the function usp10!otlChainRuleSetTable::rule of the component Uniscribe. Such manipulation leads to information disclosure. It is possible to launch the attack remotely. The exploit is publicly available and might be used. The name of the patch is MS17-011. It is best practice to apply a patch to resolve this issue.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Reservation

09/09/2016

Disclosure

03/16/2017

Moderation

VulDB entry created

Entries

VDB-98031 (1)

CPE

ready

CWE

CWE-200 (Confirmed)

Exploit

Download

CVSS

4.8

EPSS

0.09704

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2017-0085
NVD	https://nvd.nist.gov/vuln/detail/CVE-2017-0085
CVE Details	https://www.cvedetails.com/cve/CVE-2017-0085/

◂ Previous Overview Next ▸

Interested in the pricing of exploits?

See the underground prices here!