edit-icon download-icon

[Vulnerability notice] Microsoft Patch Tuesday – November 2017

Last Updated: Mar 12, 2018

On November 14, 2017 (EST), Microsoft released the monthly security bulletin for November.

Overview

This bulletin states that Microsoft has fixed 53 vulnerabilities, with 19 of them rated critical, 31 rated important, and 3 rated moderate. These vulnerabilities affect the following Microsoft products: Edge, Internet Explorer, script engine, and so on.

The following vulnerabilities require special attention: Internet Explorer vulnerabilities (CVE-2017-11848 and CVE-2017-11827), ASP.NET information disclosure vulnerability (CVE-2017-8700), information disclosure vulnerability (CVE-2017-11832) in the Windows EOT font engine, and information disclosure vulnerability (CVE-2017-11853) in the Windows kernel.

See the following for more information about the vulnerability.


Affected products

The following Microsoft products are affected:

  • Internet Explorer
  • Microsoft Edge
  • Microsoft Windows
  • Microsoft Office and Microsoft Office Services and Web Apps
  • ASP.NET Core and .NET Core
  • Chakra Core

Vulnerabilities rated critical

The following vulnerabilities are rated “Critical” by Microsoft:

  • CVE-2017-11836 - Scripting Engine Memory Corruption Vulnerability
  • CVE-2017-11837 - Scripting Engine Memory Corruption Vulnerability
  • CVE-2017-11838 - Scripting Engine Memory Corruption Vulnerability
  • CVE-2017-11839 - Scripting Engine Memory Corruption Vulnerability
  • CVE-2017-11840 - Scripting Engine Memory Corruption Vulnerability
  • CVE-2017-11841 - Scripting Engine Memory Corruption Vulnerability
  • CVE-2017-11843 - Scripting Engine Memory Corruption Vulnerability
  • CVE-2017-11845 - Microsoft Edge Memory Corruption Vulnerability
  • CVE-2017-11846 - Scripting Engine Memory Corruption Vulnerability
  • CVE-2017-11855 - Internet Explorer Memory Corruption Vulnerability
  • CVE-2017-11856 - Internet Explorer Memory Corruption Vulnerability
  • CVE-2017-11858 - Scripting Engine Memory Corruption Vulnerability
  • CVE-2017-11861 - Scripting Engine Memory Corruption Vulnerability
  • CVE-2017-11862 - Scripting Engine Memory Corruption Vulnerability
  • CVE-2017-11866 - Scripting Engine Memory Corruption Vulnerability
  • CVE-2017-11869 - Scripting Engine Memory Corruption Vulnerability
  • CVE-2017-11870 - Scripting Engine Memory Corruption Vulnerability
  • CVE-2017-11871 - Scripting Engine Memory Corruption Vulnerability
  • CVE-2017-11873 - Scripting Engine Memory Corruption Vulnerability

Vulnerabilities rated important

The following vulnerabilities are rated “Important” by Microsoft:

  • CVE-2017-11768 - Windows Media Player Information Disclosure Vulnerability
  • CVE-2017-11770 - ASP.NET Core Denial Of Service Vulnerability
  • CVE-2017-11788 - Windows Search Denial of Service Vulnerability
  • CVE-2017-11791 - Scripting Engine Information Disclosure Vulnerability
  • CVE-2017-11803 - Microsoft Edge Information Disclosure Vulnerability
  • CVE-2017-11827 - Microsoft Browser Memory Corruption Vulnerability
  • CVE-2017-11830 - Device Guard Security Feature Bypass Vulnerability
  • CVE-2017-11831 - Windows Information Disclosure Vulnerability
  • CVE-2017-11832 - Windows EOT Font Engine Information Disclosure Vulnerability
  • CVE-2017-11833 - Microsoft Edge Information Disclosure Vulnerability
  • CVE-2017-11834 - Scripting Engine Information Disclosure Vulnerability
  • CVE-2017-11835 - Windows EOT Font Engine Information Disclosure Vulnerability
  • CVE-2017-11842 - Windows Kernel Information Disclosure Vulnerability
  • CVE-2017-11844 - Microsoft Edge Information Disclosure Vulnerability
  • CVE-2017-11847 - Windows Kernel Elevation of Privilege Vulnerability
  • CVE-2017-11849 - Windows Kernel Information Disclosure Vulnerability
  • CVE-2017-11850 - Microsoft Graphics Component Information Disclosure Vulnerability
  • CVE-2017-11851 - Windows Kernel Information Disclosure Vulnerability
  • CVE-2017-11852 - Windows GDI Information Disclosure Vulnerability
  • CVE-2017-11853 - Windows Kernel Information Disclosure Vulnerability
  • CVE-2017-11854 - Microsoft Word Memory Corruption Vulnerability
  • CVE-2017-11863 - Microsoft Edge Security Feature Bypass Vulnerability
  • CVE-2017-11872 - Microsoft Edge Security Feature Bypass Vulnerability
  • CVE-2017-11874 - Microsoft Edge Security Feature Bypass Vulnerability
  • CVE-2017-11877 - Microsoft Excel Security Feature Bypass Vulnerability
  • CVE-2017-11878 - Microsoft Excel Memory Corruption Vulnerability
  • CVE-2017-11879 - ASP.NET Core Elevation Of Privilege Vulnerability
  • CVE-2017-11880 - Windows Information Disclosure Vulnerability
  • CVE-2017-11882 - Microsoft Office Memory Corruption Vulnerability
  • CVE-2017-11884 - Microsoft Office Memory Corruption Vulnerability

Vulnerabilities rated moderate

The following vulnerabilities are rated “Moderate” by Microsoft:

  • CVE-2017-11848 - Internet Explorer Information Disclosure Vulnerability
  • CVE-2017-11876 - Microsoft Project Server Elevation of Privilege Vulnerability
  • CVE-2017-8700 - ASP.NET Core Information Disclosure Vulnerability

How to fix

Alibaba Cloud Security team recommends that you pay attention to these vulnerabilities and install patches suitable for your business to improve server security.

We recommend that you enable Windows Update, click Check for updates, and then download and install patches related to your business. After installing patches, restart the server and check the system running status.

Note: Before installing updates, test the updates and create data backups and snapshots to prevent data loss in case of exceptions during update installation.

Reference

[1]. https://portal.msrc.microsoft.com/en-us/security-guidance/releasenotedetail/bae9d0d8-e497-e711-80e5-000d3a32fc99
[2]. http://blog.talosintelligence.com/2017/11/ms-tuesday.html

Thank you! We've received your feedback.