SCAP Feed Release : 10-May-2017

  • Post author:
  • Reading time:8 mins read

The following SCAP content has been released to SCAP Repo and SecPod Saner solution. SecPod Saner will automatically pull the relevant content on its next scheduled update. This is a list of vulnerabilities detected using a vulnerability management tool.

Also, a patch management solution can patch these known vulnerabilities.

oval:org.secpod.oval:def:40429 CVE-2017-0077 Dxgkrnl.sys Elevation of Privilege Vulnerability – CVE-2017-0077
oval:org.secpod.oval:def:40430 CVE-2017-0171 Windows DNS Server Denial of Service Vulnerability – CVE-2017-0171
oval:org.secpod.oval:def:40431 CVE-2017-0175 Windows Kernel Information Disclosure Vulnerability – CVE-2017-0175
oval:org.secpod.oval:def:40432 CVE-2017-0190 Windows GDI Information Disclosure Vulnerability – CVE-2017-0190
oval:org.secpod.oval:def:40433 CVE-2017-0212 Windows Hyper-V vSMB Elevation of Privilege Vulnerability – CVE-2017-0212
oval:org.secpod.oval:def:40434 CVE-2017-0213 Windows COM Elevation of Privilege Vulnerability – CVE-2017-0213
oval:org.secpod.oval:def:40435 CVE-2017-0214 Windows COM Elevation of Privilege Vulnerability – CVE-2017-0214
oval:org.secpod.oval:def:40436 CVE-2017-0220 Windows Kernel Information Disclosure Vulnerability – CVE-2017-0220
oval:org.secpod.oval:def:40437 CVE-2017-0244 Windows Kernel Elevation of Privilege Vulnerability – CVE-2017-0244
oval:org.secpod.oval:def:40438 CVE-2017-0245 Win32k Information Disclosure Vulnerability – CVE-2017-0245
oval:org.secpod.oval:def:40439 CVE-2017-0246 Win32k Elevation of Privilege Vulnerability – CVE-2017-0246
oval:org.secpod.oval:def:40440 CVE-2017-0258 Windows Kernel Information Disclosure Vulnerability – CVE-2017-0258
oval:org.secpod.oval:def:40441 CVE-2017-0259 Windows Kernel Information Disclosure Vulnerability – CVE-2017-0259
oval:org.secpod.oval:def:40442 CVE-2017-0263 Win32k Elevation of Privilege Vulnerability – CVE-2017-0263
oval:org.secpod.oval:def:40443 CVE-2017-0267 Windows SMB Information Disclosure Vulnerability – CVE-2017-0267
oval:org.secpod.oval:def:40444 CVE-2017-0268 Windows SMB Information Disclosure Vulnerability – CVE-2017-0268
oval:org.secpod.oval:def:40445 CVE-2017-0269 Windows SMB Denial of Service Vulnerability – CVE-2017-0269
oval:org.secpod.oval:def:40446 CVE-2017-0270 Windows SMB Information Disclosure Vulnerability – CVE-2017-0270
oval:org.secpod.oval:def:40447 CVE-2017-0271 Windows SMB Information Disclosure Vulnerability – CVE-2017-0271
oval:org.secpod.oval:def:40448 CVE-2017-0272 Windows SMB Remote Code Execution Vulnerability – CVE-2017-0272
oval:org.secpod.oval:def:40449 CVE-2017-0273 Windows SMB Denial of Service Vulnerability – CVE-2017-0273
oval:org.secpod.oval:def:40450 CVE-2017-0274 Windows SMB Information Disclosure Vulnerability – CVE-2017-0274
oval:org.secpod.oval:def:40451 CVE-2017-0275 Windows SMB Information Disclosure Vulnerability – CVE-2017-0275
oval:org.secpod.oval:def:40452 CVE-2017-0276 Windows SMB Information Disclosure Vulnerability – CVE-2017-0276
oval:org.secpod.oval:def:40453 CVE-2017-0277 Windows SMB Remote Code Execution Vulnerability – CVE-2017-0277
oval:org.secpod.oval:def:40454 CVE-2017-0278 Windows SMB Remote Code Execution Vulnerability – CVE-2017-0278
oval:org.secpod.oval:def:40455 CVE-2017-0279 Windows SMB Remote Code Execution Vulnerability – CVE-2017-0279
oval:org.secpod.oval:def:40456 CVE-2017-0280 Windows SMB Denial of Service Vulnerability – CVE-2017-0280
oval:org.secpod.oval:def:40457 CVE-2017-3068 Memory corruption vulnerability in Adobe Flash Player – CVE-2017-3068
oval:org.secpod.oval:def:40458 CVE-2017-3069 Memory corruption vulnerability in Adobe Flash Player – CVE-2017-3069
oval:org.secpod.oval:def:40459 CVE-2017-3070 Memory corruption vulnerability in Adobe Flash Player – CVE-2017-3070
oval:org.secpod.oval:def:40460 CVE-2017-3071 Use-after-free vulnerability in Adobe Flash Player – CVE-2017-3071
oval:org.secpod.oval:def:40461 CVE-2017-3072 Memory corruption vulnerability in Adobe Flash Player – CVE-2017-3072
oval:org.secpod.oval:def:40462 CVE-2017-3073 Memory corruption vulnerability in Adobe Flash Player – CVE-2017-3073
oval:org.secpod.oval:def:40463 CVE-2017-3074 Memory corruption vulnerability in Adobe Flash Player – CVE-2017-3074
oval:org.secpod.oval:def:40464 APSB17-15
CVE-2017-3068
CVE-2017-3069
CVE-2017-3070
CVE-2017-3071
CVE-2017-3072
CVE-2017-3073
CVE-2017-3074		 Multiple vulnerabilities in Adobe Flash player – APSB17-15
oval:org.secpod.oval:def:40465 CVE-2017-3068
CVE-2017-3069
CVE-2017-3070
CVE-2017-3071
CVE-2017-3072
CVE-2017-3073
CVE-2017-3074
KB4020821		 Multiple vulnerabilities in Adobe Flash player – KB4020821
oval:org.secpod.oval:def:40466 CVE-2017-0261 Microsoft Office Remote Code Execution Vulnerability – CVE-2017-0261
oval:org.secpod.oval:def:40467 CVE-2017-0281 Microsoft Office Remote Code Execution Vulnerability – CVE-2017-0281
oval:org.secpod.oval:def:40468 CVE-2017-0262 Microsoft Office Remote Code Execution Vulnerability – CVE-2017-0262
oval:org.secpod.oval:def:40469 CVE-2017-0254 Microsoft Office Memory Corruption Vulnerability – CVE-2017-0254
oval:org.secpod.oval:def:40470 CVE-2017-0255 Microsoft SharePoint XSS Vulnerability – CVE-2017-0255
oval:org.secpod.oval:def:40471 CVE-2017-0248 Security feature bypass vulnerability in Microsoft .NET Framework – CVE-2017-0248
oval:org.secpod.oval:def:40472 CVE-2017-0248
KB4019115		 Security feature bypass vulnerability in Microsoft .NET Framework – KB4019115
oval:org.secpod.oval:def:40473 CVE-2017-0248
KB4019112		 Security feature bypass vulnerability in Microsoft .NET Framework – KB4019112
oval:org.secpod.oval:def:40474 CVE-2017-0248
KB4019113		 Security feature bypass vulnerability in Microsoft .NET Framework – KB4019113
oval:org.secpod.oval:def:40475 CVE-2017-0248
KB4019114		 Security feature bypass vulnerability in Microsoft .NET Framework – KB4019114
oval:org.secpod.oval:def:40476 CVE-2017-0238 Memory Corruption Vulnerability in Internet Explorer and Edge – CVE-2017-0238
oval:org.secpod.oval:def:40477 CVE-2017-0221 Memory Corruption Vulnerability in Microsoft Edge – CVE-2017-0221
oval:org.secpod.oval:def:40478 CVE-2017-0224 Memory Corruption Vulnerability in Microsoft Edge – CVE-2017-0224
oval:org.secpod.oval:def:40479 CVE-2017-0227 Memory Corruption Vulnerability in Microsoft Edge – CVE-2017-0227
oval:org.secpod.oval:def:40480 CVE-2017-0229 Memory Corruption Vulnerability in Microsoft Edge – CVE-2017-0229
oval:org.secpod.oval:def:40481 CVE-2017-0230 Memory Corruption Vulnerability in Microsoft Edge – CVE-2017-0230
oval:org.secpod.oval:def:40482 CVE-2017-0233 Memory Corruption Vulnerability in Microsoft Edge – CVE-2017-0233
oval:org.secpod.oval:def:40483 CVE-2017-0234 Memory Corruption Vulnerability in Microsoft Edge – CVE-2017-0234
oval:org.secpod.oval:def:40484 CVE-2017-0235 Memory Corruption Vulnerability in Microsoft Edge – CVE-2017-0235
oval:org.secpod.oval:def:40485 CVE-2017-0236 Memory Corruption Vulnerability in Microsoft Edge – CVE-2017-0236
oval:org.secpod.oval:def:40486 CVE-2017-0240 Memory Corruption Vulnerability in Microsoft Edge – CVE-2017-0240
oval:org.secpod.oval:def:40487 CVE-2017-0241 Memory Corruption Vulnerability in Microsoft Edge – CVE-2017-0241
oval:org.secpod.oval:def:40488 CVE-2017-0266 Memory Corruption Vulnerability in Microsoft Edge – CVE-2017-0266
oval:org.secpod.oval:def:40489 CVE-2017-0228 Memory Corruption Vulnerability in Internet Explorer and Edge – CVE-2017-0228
oval:org.secpod.oval:def:40490 CVE-2017-0231 Memory Corruption Vulnerability in Internet Explorer and Edge – CVE-2017-0231
oval:org.secpod.oval:def:40491 CVE-2017-0064 Memory Corruption Vulnerability in Internet Explorer – CVE-2017-0064
oval:org.secpod.oval:def:40492 CVE-2017-0222 Memory Corruption Vulnerability in Internet Explorer – CVE-2017-0222
oval:org.secpod.oval:def:40493 CVE-2017-0226 Memory Corruption Vulnerability in Internet Explorer – CVE-2017-0226
oval:org.secpod.oval:def:40494 CVE-2017-0064
CVE-2017-0077
CVE-2017-0190
CVE-2017-0212
CVE-2017-0213
CVE-2017-0214
CVE-2017-0222
CVE-2017-0226
CVE-2017-0227
CVE-2017-0228
CVE-2017-0229
CVE-2017-0231
CVE-2017-0233
CVE-2017-0234
CVE-2017-0236
CVE-2017-0238
CVE-2017-0240
CVE-2017-0241
CVE-2017-0246
CVE-2017-0248
CVE-2017-0258
CVE-2017-0259
CVE-2017-0263
CVE-2017-0267
CVE-2017-0268
CVE-2017-0269
CVE-2017-0270
CVE-2017-0271
CVE-2017-0272
CVE-2017-0273
CVE-2017-0274
CVE-2017-0275
CVE-2017-0276
CVE-2017-0277
CVE-2017-0278
CVE-2017-0279
CVE-2017-0280
KB4019474		 Multiple vulnerabilities in Microsoft Windows – KB4019474
oval:org.secpod.oval:def:40495 CVE-2017-0064
CVE-2017-0077
CVE-2017-0171
CVE-2017-0190
CVE-2017-0212
CVE-2017-0213
CVE-2017-0214
CVE-2017-0221
CVE-2017-0222
CVE-2017-0226
CVE-2017-0227
CVE-2017-0228
CVE-2017-0229
CVE-2017-0230
CVE-2017-0231
CVE-2017-0233
CVE-2017-0234
CVE-2017-0236
CVE-2017-0238
CVE-2017-0240
CVE-2017-0241
CVE-2017-0246
CVE-2017-0248
CVE-2017-0258
CVE-2017-0259
CVE-2017-0263
CVE-2017-0266
CVE-2017-0267
CVE-2017-0268
CVE-2017-0269
CVE-2017-0270
CVE-2017-0271
CVE-2017-0272
CVE-2017-0273
CVE-2017-0274
CVE-2017-0275
CVE-2017-0276
CVE-2017-0277
CVE-2017-0278
CVE-2017-0279
CVE-2017-0280
KB4019472		 Multiple vulnerabilities in Microsoft Windows – KB4019472
oval:org.secpod.oval:def:40496 CVE-2017-0064
CVE-2017-0077
CVE-2017-0190
CVE-2017-0212
CVE-2017-0213
CVE-2017-0214
CVE-2017-0222
CVE-2017-0226
CVE-2017-0227
CVE-2017-0228
CVE-2017-0229
CVE-2017-0231
CVE-2017-0233
CVE-2017-0234
CVE-2017-0236
CVE-2017-0238
CVE-2017-0240
CVE-2017-0241
CVE-2017-0246
CVE-2017-0248
CVE-2017-0258
CVE-2017-0259
CVE-2017-0263
CVE-2017-0266
CVE-2017-0267
CVE-2017-0268
CVE-2017-0269
CVE-2017-0270
CVE-2017-0271
CVE-2017-0272
CVE-2017-0273
CVE-2017-0274
CVE-2017-0275
CVE-2017-0276
CVE-2017-0277
CVE-2017-0278
CVE-2017-0279
CVE-2017-0280
KB4019473		 Multiple vulnerabilities in Microsoft Windows – KB4019473
oval:org.secpod.oval:def:40497 CVE-2017-0228
CVE-2017-0229
CVE-2017-0230
CVE-2017-0231
CVE-2017-0233
CVE-2017-0234
CVE-2017-0235
CVE-2017-0236
CVE-2017-0238
CVE-2017-0240
CVE-2017-0241
CVE-2017-0246
CVE-2017-0248
CVE-2017-0258
CVE-2017-0259
CVE-2017-0263
CVE-2017-0266
CVE-2017-0267
CVE-2017-0268
CVE-2017-0269
CVE-2017-0270
CVE-2017-0271
CVE-2017-0272
CVE-2017-0273
CVE-2017-0274
CVE-2017-0275
CVE-2017-0276
CVE-2017-0277
CVE-2017-0278
CVE-2017-0279
CVE-2017-0280
KB4016871		 Multiple vulnerabilities in Microsoft Windows – KB4016871
oval:org.secpod.oval:def:40498 CVE-2017-0077
CVE-2017-0171
CVE-2017-0190
CVE-2017-0213
CVE-2017-0214
CVE-2017-0220
CVE-2017-0222
CVE-2017-0226
CVE-2017-0238
CVE-2017-0245
CVE-2017-0246
CVE-2017-0258
CVE-2017-0263
CVE-2017-0267
CVE-2017-0268
CVE-2017-0269
CVE-2017-0270
CVE-2017-0271
CVE-2017-0272
CVE-2017-0273
CVE-2017-0274
CVE-2017-0275
CVE-2017-0276
CVE-2017-0277
CVE-2017-0278
CVE-2017-0279
CVE-2017-0280
KB4019214		 Multiple vulnerabilities in Microsoft Windows – KB4019214
oval:org.secpod.oval:def:40499 CVE-2017-0064
CVE-2017-0238
KB4018271		 Multiple vulnerabilities in Microsoft Windows – KB4018271
oval:org.secpod.oval:def:40500 CVE-2017-0064
CVE-2017-0077
CVE-2017-0171
CVE-2017-0190
CVE-2017-0213
CVE-2017-0214
CVE-2017-0222
CVE-2017-0226
CVE-2017-0228
CVE-2017-0231
CVE-2017-0238
CVE-2017-0246
CVE-2017-0258
CVE-2017-0259
CVE-2017-0263
CVE-2017-0267
CVE-2017-0268
CVE-2017-0269
CVE-2017-0270
CVE-2017-0271
CVE-2017-0272
CVE-2017-0273
CVE-2017-0274
CVE-2017-0275
CVE-2017-0276
CVE-2017-0277
CVE-2017-0278
CVE-2017-0279
CVE-2017-0280
KB4019215		 Multiple vulnerabilities in Microsoft Windows – KB4019215
oval:org.secpod.oval:def:40501 CVE-2017-0064
CVE-2017-0077
CVE-2017-0171
CVE-2017-0175
CVE-2017-0190
CVE-2017-0213
CVE-2017-0214
CVE-2017-0220
CVE-2017-0222
CVE-2017-0231
CVE-2017-0242
CVE-2017-0244
CVE-2017-0245
CVE-2017-0246
CVE-2017-0258
CVE-2017-0263
CVE-2017-0267
CVE-2017-0268
CVE-2017-0269
CVE-2017-0270
CVE-2017-0271
CVE-2017-0272
CVE-2017-0273
CVE-2017-0274
CVE-2017-0275
CVE-2017-0276
CVE-2017-0277
CVE-2017-0278
CVE-2017-0279
CVE-2017-0280
KB4019264		 Multiple vulnerabilities in Microsoft Windows – KB4019264
oval:org.secpod.oval:def:40502 CVE-2017-0267
CVE-2017-0268
CVE-2017-0269
CVE-2017-0270
CVE-2017-0271
CVE-2017-0272
CVE-2017-0273
CVE-2017-0274
CVE-2017-0275
CVE-2017-0276
CVE-2017-0277
CVE-2017-0278
CVE-2017-0279
CVE-2017-0280
KB4018466		 Security update for the Windows SMB Information Disclosure Vulnerability in Windows Server 2008 – KB4018466
oval:org.secpod.oval:def:40503 CVE-2017-0245
CVE-2017-0246
CVE-2017-0263
KB4019204		 Security update for the Windows win32k Information Disclosure Vulnerability in Windows Server 2008 – KB4019204
oval:org.secpod.oval:def:40504 CVE-2017-0213
CVE-2017-0214
CVE-2017-0244
CVE-2017-0258
KB4018556		 Security update for the Windows COM Elevation of Privilege Vulnerability in Windows Server 2008 – KB4018556
oval:org.secpod.oval:def:40505 CVE-2017-0077
KB4019149		 Security update for the Dxgkrnl.sys Elevation of Privilege Vulnerability in Windows Server 2008 – KB4019149
oval:org.secpod.oval:def:40506 CVE-2017-0171
KB4018196		 Security update for the Windows DNS Server Denial of Service Vulnerability in Microsoft Windows Server 2008 – KB4018196
oval:org.secpod.oval:def:40507 CVE-2017-0175
KB4018885		 Security update for the Windows Kernel Information Disclosure Vulnerability in Windows Server 2008 – KB4018885
oval:org.secpod.oval:def:40508 CVE-2017-0190
KB4019206		 Security update for the Windows GDI Information Disclosure Vulnerability in Windows Server 2008 – KB4019206
oval:org.secpod.oval:def:40509 CVE-2017-0220
KB4018821		 Security Update for the Windows Kernel Information Disclosure Vulnerability in Windows Server 2008 – KB4018821
oval:org.secpod.oval:def:40510 CVE-2017-0281
KB2596904		 Microsoft Office Remote Code Execution Vulnerability – KB2596904
oval:org.secpod.oval:def:40511 CVE-2017-0261
CVE-2017-0262
KB3118310		 Microsoft Office Remote Code Execution Vulnerability – KB3118310
oval:org.secpod.oval:def:40512 CVE-2017-0254
KB3162040		 Microsoft SharePoint Server Remote Code Execution Vulnerability – KB3162040
oval:org.secpod.oval:def:40513 CVE-2017-0261
CVE-2017-0262
KB3172458		 Microsoft Office Remote Code Execution Vulnerability – KB3172458
oval:org.secpod.oval:def:40514 CVE-2017-0254
KB3178729		 Microsoft Office Remote Code Execution Vulnerability – KB3178729
oval:org.secpod.oval:def:40515 CVE-2017-0254
KB3191835		 Microsoft Office Remote Code Execution Vulnerability – KB3191835
oval:org.secpod.oval:def:40516 CVE-2017-0254
KB3191836		 Microsoft Office Remote Code Execution Vulnerability – KB3191836
oval:org.secpod.oval:def:40517 CVE-2017-0254
CVE-2017-0281
KB3191839		 Microsoft Office Remote Code Execution Vulnerability – KB3191839
oval:org.secpod.oval:def:40518 CVE-2017-0254
KB3191843		 Microsoft Office Remote Code Execution Vulnerability – KB3191843
oval:org.secpod.oval:def:40519 CVE-2017-0281
KB3191858		 Microsoft Skype for Business Remote Code Execution Vulnerability – KB3191858
oval:org.secpod.oval:def:40520 CVE-2017-0281
KB3191863		 Microsoft Office Remote Code Execution Vulnerability – KB3191863
oval:org.secpod.oval:def:40521 CVE-2017-0254
CVE-2017-0281
KB3191865		 Microsoft Office Remote Code Execution Vulnerability – KB3191865
oval:org.secpod.oval:def:40522 CVE-2017-0254
CVE-2017-0281
KB3191880		 Microsoft Office Remote Code Execution Vulnerability – KB3191880
oval:org.secpod.oval:def:40523 CVE-2017-0281
KB3191881		 Microsoft Office Remote Code Execution Vulnerability – KB3191881
oval:org.secpod.oval:def:40524 CVE-2017-0281
KB3191885		 Microsoft Office Remote Code Execution Vulnerability – KB3191885
oval:org.secpod.oval:def:40525 CVE-2017-0254
CVE-2017-0281
KB3191888		 Microsoft Office Remote Code Execution Vulnerability – KB3191888
oval:org.secpod.oval:def:40526 CVE-2017-0281
KB3191890		 Microsoft Office Remote Code Execution Vulnerability – KB3191890
oval:org.secpod.oval:def:40527 CVE-2017-0281
KB3191895		 Microsoft Office Remote Code Execution Vulnerability – KB3191895
oval:org.secpod.oval:def:40528 CVE-2017-0281
KB3191899		 Microsoft Office Remote Code Execution Vulnerability – KB3191899
oval:org.secpod.oval:def:40529 CVE-2017-0254
CVE-2017-0281
KB3191904		 Microsoft Office Remote Code Execution Vulnerability – KB3191904
oval:org.secpod.oval:def:40530 CVE-2017-0254
KB3191909		 Microsoft Office Remote Code Execution Vulnerability – KB3191909
oval:org.secpod.oval:def:40531 CVE-2017-0281
KB3191913		 Microsoft Office Remote Code Execution Vulnerability – KB3191913
oval:org.secpod.oval:def:40532 CVE-2017-0255
KB3191914		 Microsoft Office Remote Code Execution Vulnerability – KB3191914