CVE-2017-0259 Information

Description

The Windows kernel in Microsoft Windows 8.1 Windows Server 2012 R2 Windows RT 8.1 Windows 10 Gold 1511 1607 1703 and Windows Server 2016 allows authenticated attackers to obtain sensitive information via a specially crafted document aka \Windows Kernel Information Disclosure Vulnerability\ a different vulnerability than CVE-2017-0175 CVE-2017-0220 and CVE-2017-0258.

CVSS Vector

CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N

Reference

http://www.securityfocus.com/bid/98113 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-0259 https://www.exploit-db.com/exploits/42007/

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction Required

LOW

Scope

NONE

Confidentiality Impact

UNCHANGED

Integrity Impact

HIGH

Availability Impact

NONE

Base Score

NONE

Base Severity

4.7