QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2017-8727

Back to search

CVE-2017-8727

Published: Oct 13, 2017

Modified: Sep 17, 2024

PUBLISHED

Description

Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allow an attacker to execute arbitrary code in the context of the current user, due to how Microsoft Windows Text Services Framework handles objects in memory, aka "Windows Shell Memory Corruption Vulnerability".

VendorProductVersions

Microsoft Corporation

Microsoft Windows Text Services Framework

affected
Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016.

References

1039537
vdb-entry
x_refsource_SECTRACK
101142
vdb-entry
x_refsource_BID

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now