- Threat Encyclopedia
- Vulnerability
- December 2017 - Microsoft Releases 34 Security Patches
Microsoft addresses several vulnerabilities in its December batch of patches, several of which addresses remote code execution vulnerabilities.
Trend Micro Deep Security shields networks through the following Deep Packet Inspection (DPI) rules. Trend Micro customers using the Vulnerability Protection product or OfficeScan with Intrusion Defense Firewall (IDF) plugin are also protected from attacks using these vulnerabilities.
Vulnerability ID | DPI Rule Number | DPI Rule Name | Release Date | Vulnerability Protection and IDF Compatibility |
CVE-2017-11893 | 1008774 | Microsoft Edge Memory Corruption Vulnerability (CVE-2017-11893) | 12-Dec-17 | YES |
CVE-2107-11914 | 1008783 | MMicrosoft Edge Memory Corruption Vulnerability (CVE-2017-11914) | 12-Dec-17 | YES |
CVE-2017-11930 | 1008787 | Microsoft Internet Explorer And Edge Memory Corruption Vulnerability (CVE-2017-11930) | 12-Dec-17 | YES |
CVE-2017-11903 | 1008778 | Microsoft Internet Explorer Scripting Engine Memory Corruption Vulnerability (CVE-2017-11903) | 12-Dec-17 | YES |
CVE-2017-8710 | 1008672 | Microsoft Windows XML External Entity Information Disclosure Vulnerability (CVE-2017-8710) | 12-Dec-17 | YES |
CVE-2017-11811 | 1008682 | Microsoft Edge Scripting Engine Memory Corruption Vulnerability (CVE-2017-11811) | 12-Dec-17 | YES |
CVE-2017-11894 | 1008775 | Microsoft Internet Explorer And Edge Memory Corruption Vulnerability (CVE-2017-11894) | 12-Dec-17 | YES |
CVE-2017-11909 | 1008780 | Microsoft Edge Memory Corruption Vulnerability (CVE-2017-11909) | 12-Dec-17 | YES |
CVE-2017-11895 | 1008776 | Microsoft Internet Explorer And Edge Memory Corruption Vulnerability (CVE-2017-11895) | 12-Dec-17 | YES |
CVE-2017-11916 | 1008784 | Microsoft Edge Memory Corruption Vulnerability (CVE-2017-11916) | 12-Dec-17 | YES |
CVE-2017-11901 | 1008777 | Microsoft Internet Explorer Scripting Engine Memory Corruption Vulnerability (CVE-2017-11901) | 12-Dec-17 | YES |
CVE-2017-11889 | 1008772 | Microsoft Edge Memory Corruption Vulnerability (CVE-2017-11889) | 12-Dec-17 | YES |
CVE-2017-11888 | 1008771 | Microsoft Edge Memory Corruption Vulnerability (CVE-2017-11888) | 12-Dec-17 | YES |
CVE-2017-11937 | 1008789 | Microsoft Malware Protection Engine Remote Code Execution Vulnerability (CVE-2017-11937) | 12-Dec-17 | YES |
CVE-2017-11913 | 1008782 | Microsoft Internet Explorer Scripting Engine Memory Corruption Vulnerability (CVE-2017-11913) | 12-Dec-17 | YES |
CVE-2017-11911 | 1008781 | Microsoft Edge Memory Corruption Vulnerability (CVE-2017-11911) | 12-Dec-17 | YES |
CVE-2017-11918 | 1008785 | Microsoft Edge Memory Corruption Vulnerability (CVE-2017-11918) | 12-Dec-17 | YES |
CVE-2017-11886 | 1008770 | Microsoft Internet Explorer Scripting Engine Memory Corruption Vulnerability (CVE-2017-11886) | 12-Dec-17 | YES |
CVE-2017-11907 | 1008779 | Microsoft Internet Explorer Scripting Engine Memory Corruption Vulnerability (CVE-2017-11907) | 12-Dec-17 | YES |
CVE-2017-11890 | 1008773 | Microsoft Internet Explorer Scripting Engine Memory Corruption Vulnerability (CVE-2017-11890) | 12-Dec-17 | YES |
CVE-2017-11885 | 1008769 | Microsoft Windows RRAS Service Remote Code Execution Vulnerability (CVE-2017-11885) | 12-Dec-17 | YES |
CVE-2017-11935 | 1008788 | Microsoft Excel Remote Code Execution Vulnerability (CVE-2017-11935) | 12-Dec-17 | YES |