CVE-2017-0108 : Security Advisory and Response

The Windows Graphics Component in various Microsoft products has a vulnerability that allows remote attackers to execute arbitrary code when accessing a specially crafted website.

Understanding CVE-2017-0108

What is CVE-2017-0108?

The vulnerability, known as "Graphics Component Remote Code Execution Vulnerability," affects Microsoft Office, Skype for Business, Lync, Live Meeting, Silverlight, and various Windows versions.

The Impact of CVE-2017-0108

The vulnerability allows remote attackers to execute arbitrary code, posing a significant security risk to affected systems and potentially leading to unauthorized access and control.

Technical Details of CVE-2017-0108

Vulnerability Description

The vulnerability in the Windows Graphics Component enables attackers to execute arbitrary code by exploiting a flaw in how the component handles website content.

Affected Systems and Versions

Microsoft Office 2007 SP3, 2010 SP2, Word Viewer
Skype for Business 2016, Lync 2013 SP1, Lync 2010, Live Meeting 2007
Silverlight 5, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1
Windows 7 SP1

Exploitation Mechanism

Attackers can exploit this vulnerability by enticing users to visit a malicious website containing specially crafted content that triggers the execution of arbitrary code.

Mitigation and Prevention

Immediate Steps to Take

Apply security patches provided by Microsoft to address the vulnerability promptly.
Educate users about the risks of visiting unknown or untrusted websites.
Implement network security measures to detect and block malicious web traffic.

Long-Term Security Practices

Regularly update and patch all software and operating systems to prevent known vulnerabilities.
Conduct security training for employees to enhance awareness of cybersecurity threats and best practices.

Patching and Updates

Microsoft has released security updates to fix the vulnerability; ensure timely installation of these patches to secure the affected systems.