Medium severity4.7NVD Advisory· Published May 12, 2017· Updated Jun 17, 2026
CVE-2017-0220
CVE-2017-0220
Description
The Windows kernel in Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, and Windows Server 2012 Gold allows authenticated attackers to obtain sensitive information via a specially crafted document, aka "Windows Kernel Information Disclosure Vulnerability," a different vulnerability than CVE-2017-0175, CVE-2017-0258, and CVE-2017-0259.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
8cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:*:*+ 2 more
- cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_server_2008:*:sp2:*:*:*:*:*:*
- (no CPE)
cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*
- (no CPE)
- Microsoft Corporation/Microsoft Windowsv5Range: Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, and Windows Server 2012 Gold
Patches
Vulnerability mechanics
References
4- portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-0220nvdPatchVendor Advisory
- www.securityfocus.com/bid/98111nvdThird Party AdvisoryVDB Entry
- www.securitytracker.com/id/1038445nvd
- www.exploit-db.com/exploits/42009/nvd
News mentions
0No linked articles in our index yet.