CVE-2017-8718 Information

Description

The Microsoft JET Database Engine in Windows Server 2008 SP2 and R2 SP1 Windows 7 SP1 Windows 8.1 and RT 8.1 Windows Server 2012 and R2 Windows 10 Gold 1511 1607 1703 and Windows Server 2016 allows an attacker to take control of an affected system due to how it handles objects in memory aka \Microsoft JET Database Engine Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2017-8717.

CVSS Vector

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Reference

http://www.securityfocus.com/bid/101162 http://www.securitytracker.com/id/1039527 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8718

Attack Complexity

LOW

Privileges Required

NONE

User Interaction Required

NONE

Scope

REQUIRED

Confidentiality Impact

UNCHANGED

Integrity Impact

HIGH

Availability Impact

HIGH

Base Score

HIGH

Base Severity

7.8