Microsoft Windows Graphics Device Interface CVE-2017-8676 Local Information Disclosure Vulnerability

Bugtraq ID: 100755
Class: Design Error
CVE: CVE-2017-8676
Remote: No
Local: Yes
Published: Sep 12 2017 12:00AM
Updated: Sep 12 2017 12:00AM
Credit: bear13oy of CloverSec Labs working with Trend Micro's Zero Day Initiative, and Weibo Wang (@ma1fan) of 360 SkyEye Labs.
Vulnerable: Microsoft Windows Server 2016 0
Microsoft Windows Server 2012 R2 0
Microsoft Windows Server 2012 0
Microsoft Windows Server 2008 R2 for x64-based Systems SP1
Microsoft Windows Server 2008 R2 for Itanium-based Systems SP1
Microsoft Windows Server 2008 for x64-based Systems SP2
Microsoft Windows Server 2008 for Itanium-based Systems SP2
Microsoft Windows Server 2008 for 32-bit Systems SP2
Microsoft Windows RT 8.1
Microsoft Windows 8.1 for x64-based Systems 0
Microsoft Windows 8.1 for 32-bit Systems 0
Microsoft Windows 7 for x64-based Systems SP1
Microsoft Windows 7 for 32-bit Systems SP1
Microsoft Windows 10 version 1703 for x64-based Systems 0
Microsoft Windows 10 version 1703 for 32-bit Systems 0
Microsoft Windows 10 Version 1607 for x64-based Systems 0
Microsoft Windows 10 Version 1607 for 32-bit Systems 0
Microsoft Windows 10 version 1511 for x64-based Systems 0
Microsoft Windows 10 version 1511 for 32-bit Systems 0
Microsoft Windows 10 for x64-based Systems 0
Microsoft Windows 10 for 32-bit Systems 0
Microsoft Skype for Business 2016 (64-bit) 0
Microsoft Skype for Business 2016 (32-bit) 0
Microsoft Office Word Viewer 0
Microsoft Office for Mac 2011 0
Microsoft Office 2016 for Mac 0
Microsoft Office 2010 Service Pack 2 (64-bit editions) 0
Microsoft Office 2010 Service Pack 2 (32-bit editions) 0
Microsoft Office 2007 Service Pack 3 0
Microsoft Lync Basic 2013 (64-bit) SP1
Microsoft Lync Basic 2013 (32-bit) SP1
Microsoft Lync 2013 (64-bit) SP1
Microsoft Lync 2013 (32-bit) SP1
Microsoft Lync 2010 Attendee 0
Microsoft Lync 2010 (64-bit) 0
Microsoft Lync 2010 (32-bit) 0
Microsoft Live Meeting 2007 Console 0
Microsoft Live Meeting 2007 Add-in 0
Not Vulnerable:


 

Privacy Statement
Copyright 2010, SecurityFocus