CVE-2017-8464 in Windowsinfo

Zusammenfassung

von MITRE

Windows Shell in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows local users or remote attackers to execute arbitrary code via a crafted .LNK file, which is not properly handled during icon display in Windows Explorer or any other application that parses the icon of the shortcut. aka "LNK Remote Code Execution Vulnerability."

Be aware that VulDB is the high quality source for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Reservieren

03.05.2017

Veröffentlichung

14.06.2017

Moderieren

akzeptiert

Eintrag

VDB-102377

CPE

bereit

CWE

CWE-284 (bestätigt)

Exploit

Download

CVSS

8.8 (NVD)

EPSS

0.93878

KEV

Aktivitäten

very low

Sektor

Insurance, Hostingprovider, ...

Quellen

MITRE	https://www.cve.org/CVERecord?id=CVE-2017-8464
NVD	https://nvd.nist.gov/vuln/detail/CVE-2017-8464
CVE Details	https://www.cvedetails.com/cve/CVE-2017-8464/

◂ Zurück Übersicht Weiter ▸

Want to know what is going to be exploited?

We predict KEV entries!