Microsoft CVE-2018-8637: Win32k Information Disclosure Vulnerability
Description
An information disclosure vulnerability exists in Windows kernel that could allow an attacker to retrieve information that could lead to a Kernel Address Space Layout Randomization (KASLR) bypass. An attacker who successfully exploited this vulnerability could retrieve the memory address of a kernel object. To exploit this vulnerability, an attacker would have to log on to an affected system and run a specially crafted application. The security update addresses the vulnerability by correcting how the Windows kernel handles memory addresses.
Solution(s)
- msft-kb4471324-0e2209a8-b313-4182-a691-bc0359625c49
- msft-kb4471324-9ba7b397-2fd3-4ba9-bfee-3ed1dd3eb602
- msft-kb4471324-b00ee170-59ea-4273-b954-98e3cdc792e2
- msft-kb4471332-3761d6e6-6044-4ef8-968e-cb9b2f4e278b
- msft-kb4471332-6e676d6c-db05-4979-b1ab-0aa1e81413ee
- msft-kb4471332-a065b5b1-6a82-42e6-9f77-3f1cd1467717
- Lightweight Endpoint Agent
- Live Dashboards
- Real Risk Prioritization
- IT-Integrated Remediation Projects
- Cloud, Virtual, and Container Assessment
- Integrated Threat Feeds
- Easy-to-Use RESTful API
- Automation-Assisted Patching
- Automated Containment
With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.
– Scott Cheney, Manager of Information Security, Sierra View Medical Center