CVE-2017-0166
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2017-0166
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
An elevation of privilege vulnerability exists in Windows when LDAP request buffer lengths are improperly calculated. In a remote attack scenario, an attacker could exploit this vulnerability by running a specially crafted application to send malicious traffic to a Domain Controller, aka "LDAP Elevation of Privilege Vulnerability."
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Microsoft Windows LDAP 权限许可和访问控制问题漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Microsoft Windows是美国微软(Microsoft)公司发布的一系列操作系统。 Microsoft Windows中的LDAP中存在提权漏洞,该漏洞源于程序没有正确的计算LDAP请求的缓冲区长度。攻击者可通过运行特制的应用程序利用该漏洞运行进程。以下版本受到影响:Microsoft Windows 10,Windows 7,Windows 8.1,Windows RT 8.1,Windows Server 2008 SP2,Windows Server 2008 R2 SP1,Windows
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| Microsoft Corporation | LDAP | Windows | - |
II. Public POCs for CVE-2017-0166
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2017-0166
请登录查看更多情报信息。
Same Patch Batch · Microsoft Corporation · 2017-04-12 · 42 CVEs total
| CVE-2017-0199 | Microsoft Office 安全漏洞 | |
| CVE-2017-0184 | Microsoft Windows Hyper-V 安全漏洞 | |
| CVE-2017-0185 | Microsoft Windows Hyper-V 安全漏洞 | |
| CVE-2017-0186 | Microsoft Windows Hyper-V 安全漏洞 | |
| CVE-2017-0188 | Microsoft Win32k 信息泄露漏洞 | |
| CVE-2017-0189 | Microsoft Win32k 权限许可和访问控制问题漏洞 | |
| CVE-2017-0191 | Microsoft Windows 安全漏洞 | |
| CVE-2017-0192 | Microsoft Windows 信息泄露漏洞 | |
| CVE-2017-0194 | Microsoft Office 信息泄露漏洞 | |
| CVE-2017-0195 | Microsoft Office 安全漏洞 | |
| CVE-2017-0197 | Microsoft Office 安全漏洞 | |
| CVE-2017-0183 | Microsoft Windows Hyper-V 安全漏洞 | |
| CVE-2017-0200 | Microsoft Edge 安全漏洞 | |
| CVE-2017-0201 | Microsoft Internet Explorer JScript和VBScript 安全漏洞 | |
| CVE-2017-0202 | Microsoft Internet Explorer 安全漏洞 | |
| CVE-2017-0204 | Microsoft Office 安全漏洞 | |
| CVE-2017-0205 | Microsoft Edge 安全漏洞 | |
| CVE-2017-0207 | Microsoft Outlook for Mac 安全漏洞 | |
| CVE-2017-0208 | Microsoft Edge 信息泄露漏洞 | |
| CVE-2017-0210 | Microsoft Internet Explorer 权限许可和访问控制问题漏洞 |
Showing top 20 of 42 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
V. Comments for CVE-2017-0166
No comments yet