CVE-2017-8710 : The Microsoft Common Console Document (.msc) in Microsoft Windows 7 SP1, Windows Server 2008 SP2 and R2 SP1 allows an at

The Microsoft Common Console Document (.msc) in Microsoft Windows 7 SP1, Windows Server 2008 SP2 and R2 SP1 allows an attacker to read arbitrary files via an XML external entity (XXE) declaration, due to the way that the Microsoft Common Console Document (.msc) parses XML input containing a reference to an external entity, aka "Windows Information Disclosure Vulnerability".

Published 2017-09-13 01:29:11

Updated 2019-10-03 00:03:26

Source Microsoft Corporation

View at NVD, CVE.org

Vulnerability category: XML external entity (XXE) injectionInformation leak

Exploit prediction scoring system (EPSS) score for CVE-2017-8710

Probability of exploitation activity in the next 30 days: 0.63%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 77 % EPSS Score History EPSS FAQ

CVSS scores for CVE-2017-8710

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
4.3	MEDIUM	AV:N/AC:M/Au:N/C:P/I:N/A:N	8.6	2.9	NIST
Access Vector: Network Access Complexity: Medium Authentication: None Confidentiality Impact: Partial Integrity Impact: None Availability Impact: None
5.5	MEDIUM	CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N	1.8	3.6	NIST
Attack Vector: Local Attack Complexity: Low Privileges Required: None User Interaction: Required Scope: Unchanged Confidentiality: High Integrity: None Availability: None

CWE ids for CVE-2017-8710

CWE-611 Improper Restriction of XML External Entity Reference

The product processes an XML document that can contain XML entities with URIs that resolve to documents outside of the intended sphere of control, causing the product to embed incorrect documents into its output.

Assigned by: nvd@nist.gov (Primary)

References for CVE-2017-8710

http://www.securitytracker.com/id/1039325

Windows Kernel Multiple Flaws Let Local Users Obtain Potentially Sensitive Information, Bypass Security Features, and Gain Elevated Privileges on the Target System - SecurityTracker
Third Party Advisory;VDB Entry

CVEs referencing this url
http://www.securityfocus.com/bid/100793

Microsoft Windows CVE-2017-8710 Information Disclosure Vulnerability
Third Party Advisory;VDB Entry
https://www.vulnerability-lab.com/get_content.php?id=2094

Exploit;Third Party Advisory
https://www.youtube.com/watch?v=bIFot3a-58I

Microsoft Windows CVE-2017-8710 .MSC XXE Data Exfiltration - Information Disclosure Vulnerability - YouTube
Exploit;Third Party Advisory
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8710

CVE-2017-8710 | Windows System Information Console Information Disclosure Vulnerability
Patch;Vendor Advisory

Products affected by CVE-2017-8710

Microsoft » Windows Server 2008 » Version: N/A Update SP2
cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:*
Matching versions
Microsoft » Windows Server 2008 » Version: R2 Update SP1 For Itanium
cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:itanium:*
Matching versions
Microsoft » Windows Server 2008 » Version: R2 Update SP1 For X64
cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*
Matching versions
Microsoft » Windows 7 » Version: N/A Update SP1
cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:*:*
Matching versions

Vulnerability Details : CVE-2017-8710

Exploit prediction scoring system (EPSS) score for CVE-2017-8710

CVSS scores for CVE-2017-8710

CWE ids for CVE-2017-8710

References for CVE-2017-8710

Products affected by CVE-2017-8710