edit-icon download-icon

[Vulnerability notice] Microsoft Patch Tuesday – September 2017

Last Updated: Mar 12, 2018

On September 12, 2017, Microsoft released the monthly security advisory, disclosing the identified and addressed vulnerabilities in Microsoft products. The security advisory addresses 81 new vulnerabilities, with 27 of them rated critical, 52 rated important, and 2 rated moderate.

Among these vulnerabilities, CVE-2017-8759 is a .NET zero-day vulnerability that affects the .NET framework. This vulnerability allows attackers to obtain sensitive data or the server operation privilege by remotely executing code. It is rated important.

In addition, Microsoft released an update of Adobe Flash Player embedded in Edge and Internet Explorer.

Alibaba Cloud Security recommends that you pay attention to these vulnerabilities and install updates related to your business.

See the following for more information about the vulnerability.


Affected products

Edge, Hyper-V, Internet Explorer, Office, remote desktop protocol, SharePoint, Windows graphical interface, Windows kernel-mode driver, and so on.

Vulnerabilities rated critical

The following vulnerabilities are rated “Critical” by Microsoft:

  • CVE-2017-8747 - Internet Explorer Memory Corruption Vulnerability
  • CVE-2017-8749 - Internet Explorer Memory Corruption Vulnerability
  • CVE-2017-8750 - Microsoft Browser Memory Corruption Vulnerability
  • CVE-2017-8731 - Microsoft Edge Memory Corruption Vulnerability
  • CVE-2017-8734 - Microsoft Edge Memory Corruption Vulnerability
  • CVE-2017-8751 - Microsoft Edge Memory Corruption Vulnerability
  • CVE-2017-8755 - Microsoft Edge Memory Corruption Vulnerability
  • CVE-2017-8756 - Microsoft Edge Memory Corruption Vulnerability
  • CVE-2017-11766 - Microsoft Edge Memory Corruption Vulnerability
  • CVE-2017-8757 - Microsoft Edge Remote Code Execution Vulnerability
  • CVE-2017-8696 - Microsoft Graphics Component Remote Code Execution
  • CVE-2017-8728 - Microsoft PDF Remote Code Execution Vulnerability
  • CVE-2017-8737 - Microsoft PDF Remote Code Execution Vulnerability
  • CVE-2017-0161 - NetBIOS Remote Code Execution Vulnerability
  • CVE-2017-8649 - Scripting Engine Memory Corruption Vulnerability
  • CVE-2017-8660 - Scripting Engine Memory Corruption Vulnerability
  • CVE-2017-8729 - Scripting Engine Memory Corruption Vulnerability
  • CVE-2017-8738 - Scripting Engine Memory Corruption Vulnerability
  • CVE-2017-8740 - Scripting Engine Memory Corruption Vulnerability
  • CVE-2017-8741 - Scripting Engine Memory Corruption Vulnerability
  • CVE-2017-8748 - Scripting Engine Memory Corruption Vulnerability
  • CVE-2017-8752 - Scripting Engine Memory Corruption Vulnerability
  • CVE-2017-8753 - Scripting Engine Memory Corruption Vulnerability
  • CVE-2017-11764 - Scripting Engine Memory Corruption Vulnerability
  • CVE-2017-8682 - Win32k Graphics Remote Code Execution Vulnerability
  • CVE-2017-8686 - Windows DHCP Server Remote Code Execution Vulnerability
  • CVE-2017-8676 - Windows GDI+ Information Disclosure Vulnerability

Vulnerabilities rated important

The following vulnerabilities are rated “Important” by Microsoft:

  • CVE-2017-8759 - .NET Framework Remote Code Execution Vulnerability
  • CVE-2017-9417 - Broadcom BCM43xx Remote Code Execution Vulnerability
  • CVE-2017-8746 - Device Guard Security Feature Bypass Vulnerability
  • CVE-2017-8695 - Graphics Component Information Disclosure Vulnerability
  • CVE-2017-8704 - Hyper-V Denial of Service Vulnerability
  • CVE-2017-8706 - Hyper-V Information Disclosure Vulnerability
  • CVE-2017-8707 - Hyper-V Information Disclosure Vulnerability
  • CVE-2017-8711 - Hyper-V Information Disclosure Vulnerability
  • CVE-2017-8712 - Hyper-V Information Disclosure Vulnerability
  • CVE-2017-8713 - Hyper-V Information Disclosure Vulnerability
  • CVE-2017-8733 - Internet Explorer Spoofing Vulnerability
  • CVE-2017-8628 - Microsoft Bluetooth Driver Spoofing Vulnerability
  • CVE-2017-8736 - Microsoft Browser Information Disclosure Vulnerability
  • CVE-2017-8597 - Microsoft Edge Information Disclosure Vulnerability
  • CVE-2017-8643 - Microsoft Edge Information Disclosure Vulnerability
  • CVE-2017-8648 - Microsoft Edge Information Disclosure Vulnerability
  • CVE-2017-8754 - Microsoft Edge Security Feature Bypass Vulnerability
  • CVE-2017-8724 - Microsoft Edge Spoofing Vulnerability
  • CVE-2017-8758 - Microsoft Exchange Cross-Site Scripting Vulnerability
  • CVE-2017-11761 - Microsoft Exchange Information Disclosure Vulnerability
  • CVE-2017-8630 - Microsoft Office Memory Corruption Vulnerability
  • CVE-2017-8631 - Microsoft Office Memory Corruption Vulnerability
  • CVE-2017-8632 - Microsoft Office Memory Corruption Vulnerability
  • CVE-2017-8744 - Microsoft Office Memory Corruption Vulnerability
  • CVE-2017-8725 - Microsoft Office Publisher Remote Code Execution
  • CVE-2017-8567 - Microsoft Office Remote Code Execution
  • CVE-2017-8745 - Microsoft SharePoint Cross Site Scripting Vulnerability
  • CVE-2017-8629 - Microsoft SharePoint XSS Vulnerability
  • CVE-2017-8742 - PowerPoint Remote Code Execution Vulnerability
  • CVE-2017-8743 - PowerPoint Remote Code Execution Vulnerability
  • CVE-2017-8714 - Remote Desktop Virtual Host Remote Code Execution Vulnerability
  • CVE-2017-8739 - Scripting Engine Information Disclosure Vulnerability
  • CVE-2017-8692 - Uniscribe Remote Code Execution Vulnerability
  • CVE-2017-8675 - Win32k Elevation of Privilege Vulnerability
  • CVE-2017-8720 - Win32k Elevation of Privilege Vulnerability
  • CVE-2017-8683 - Win32k Graphics Information Disclosure Vulnerability
  • CVE-2017-8677 - Win32k Information Disclosure Vulnerability
  • CVE-2017-8678 - Win32k Information Disclosure Vulnerability
  • CVE-2017-8680 - Win32k Information Disclosure Vulnerability
  • CVE-2017-8681 - Win32k Information Disclosure Vulnerability
  • CVE-2017-8687 - Win32k Information Disclosure Vulnerability
  • CVE-2017-8702 - Windows Elevation of Privilege Vulnerability
  • CVE-2017-8684 - Windows GDI+ Information Disclosure Vulnerability
  • CVE-2017-8685 - Windows GDI+ Information Disclosure Vulnerability
  • CVE-2017-8688 - Windows GDI+ Information Disclosure Vulnerability
  • CVE-2017-8710 - Windows Information Disclosure Vulnerability
  • CVE-2017-8679 - Windows Kernel Information Disclosure Vulnerability
  • CVE-2017-8708 - Windows Kernel Information Disclosure Vulnerability
  • CVE-2017-8709 - Windows Kernel Information Disclosure Vulnerability
  • CVE-2017-8719 - Windows Kernel Information Disclosure Vulnerability
  • CVE-2017-8716 - Windows Security Feature Bypass Vulnerability
  • CVE-2017-8699 - Windows Shell Remote Code Execution Vulnerability

Vulnerabilities rated moderate

The following vulnerabilities are rated “Moderate” by Microsoft:

  • CVE-2017-8723 - Microsoft Edge Security Feature Bypass Vulnerability
  • CVE-2017-8735 - Internet Explorer Memory Corruption Vulnerability

How to fix

Alibaba Cloud Security team recommends that you pay attention to these vulnerabilities and install patches suitable for your business to improve server security.

We recommend that you enable Windows Update, click Check for updates, and then download and install patches related to your business. After installing patches, restart the server and check the system running status.

Note: Before installing updates, test the updates and create data backups and snapshots to prevent data loss in case of exceptions during update installation.

Reference

[1]. https://portal.msrc.microsoft.com/en-us/security-guidance
[2]. http://blog.talosintelligence.com/2017/09/ms-tuesday.html

Thank you! We've received your feedback.