CVE-2017-8668 — Sensitive Information Exposure in Corporation Volume Manager Driver

CWE-200 — Sensitive Information Exposure5 documents4 sources

Severity

5.5MEDIUMNVD

EPSS

2.9%

top 13.75%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

15

Microsoft Corporation Volume Manager Driver Microsoft Windows Server 2008 Microsoft Windows Server 2012 +12 more

Timeline

PublishedAug 8

Latest updateMay 17

Description

The Volume Manager Extension Driver in Microsoft Windows 7 SP1, Windows Server 2008 SP2 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2 allows an attacker to run a specially crafted application and obtain kernel information, aka "Volume Manager Extension Driver Information Disclosure Vulnerability".

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:NExploitability: 1.8 | Impact: 3.6

Affected Packages14 packages

▶msrcmsrc/windows_server_2012

▶msrcmsrc/windows_server_2012_r2

▶msrcmsrc/windows_server_2008_for_32-bit_systems_service_pack_2

▶msrcmsrc/windows_server_2008_for_x64-based_systems_service_pack_2

▶msrcmsrc/windows_server_2008_r2_for_x64-based_systems_service_pack_1

Patches

Patch: portal.msrc.microsoft.com ↗Patch: portal.msrc.microsoft.com ↗

🔴Vulnerability Details

1

GHSA

GHSA-w927-2fmj-w74v: The Volume Manager Extension Driver in Microsoft Windows 7 SP1, Windows Server 2008 SP2 and R2 SP1, Windows 8↗2022-05-17

▶

📋Vendor Advisories

1

Microsoft

Volume Manager Extension Driver Information Disclosure Vulnerability↗2017-08-08

▶

🕵️Threat Intelligence

2

Talos

Microsoft Patch Tuesday - August 2017↗2017-08-08

▶

Talos

Microsoft Patch Tuesday - August 2017↗2017-08-08

▶