Free and open-source vulnerability scanner

Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.

Install Now

Available for macOS, Windows, and Linux

App screenshot

Microsoft Windows Multiple Vulnerabilities (KB4537789)

Information

Severity

Severity

Critical

Family

Family

Windows : Microsoft Bulletins

CVSSv2 Base

CVSSv2 Base

10.0

CVSSv2 Vector

CVSSv2 Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Solution Type

Solution Type

Vendor Patch

Created

Created

4 years ago

Modified

Modified

4 years ago

Summary

This host is missing a critical security update according to Microsoft KB4537789

Insight

Insight

Multiple flaws exists due to, - An error in Remote Desktop Services formerly known as Terminal Services, when an authenticated attacker abuses clipboard redirection. - Multiple errors in the Windows Common Log File System (CLFS) driver which improperly handles objects in memory. - An error in the Windows Data Sharing Service which improperly handles file operations. - An error in Remote Desktop Protocol (RDP) when an attacker connects to the target system using RDP and sends specially crafted requests. - An error in the way that Windows handles objects in memory. - An error in Active Directory Forest trusts due to a default setting that lets an attacker in the trusting forest request delegation of a TGT for an identity from the trusted forest. - An error in the way that the Windows Search Indexer handles objects in memory. For more information about the vulnerabilities refer Reference links.

Affected Software

Affected Software

Windows 10 Version 1709 for 32-bit Systems Windows 10 Version 1709 for x64-based Systems

Detection Method

Detection Method

Checks if a vulnerable version is present on the target host.

Solution

Solution

The vendor has released updates. Please see the references for more information.