Microsoft Windows Multiple Vulnerabilities (KB4507460)
Severity Level: High Severity
CVSS Base Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Summary: This host is missing a critical security
update according to Microsoft KB4507460
Detection Method: Checks if a vulnerable version is present
on the target host.
Technical Details: Multiple flaws exist due to,
- Scripting engine improperly handles objects in memory in Microsoft browsers.
- Windows RDP client improperly discloses the contents of its memory.
- Windows Graphics Device Interface (GDI) improperly handles objects in the
- An elevation of privilege exists in Windows Audio Service.
For more information about the vulnerabilities refer Reference links.
Impact: Successful exploitation will allow an
attacker to execute arbitrary code in kernel mode, elevate privileges
by escaping a sandbox, gain access to sensitive information and conduct
Affected Versions: Microsoft Windows Server 2016
Microsoft Windows 10 Version 1607 x32/x64
Recommendations: The vendor has released updates. Please see
the references for more information.