Windows Uniscribe Remote Code Execution Vulnerability for Skype for Business 2015 (KB3191939) 64-Bit Edition
Risk Information
Base Score
8.7
MODERATE
Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C
EPSS Score
Exploitation Probability
56.001%
CVE Information
Patch Details
Patch associated with this vulnerability is supported by ManageEngine.
Patch ID
22646
Patch Description
Security Update for Skype for Business 2015 (KB3191939) 64-Bit Edition
References
http://www.securityfocus.com/bid/98920
http://www.securityfocus.com/bid/98933
http://www.securitytracker.com/id/1038675
http://www.securitytracker.com/id/1038680
https://0patch.blogspot.com/2017/07/0patching-quick-brown-fox-of-cve-2017.html
https://bugs.chromium.org/p/project-zero/issues/detail?id=1198
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2017-0283
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2017-8527
https://www.exploit-db.com/exploits/42234/