CVE-2020-16898

Windows TCP/IP Remote Code   Execution Vulnerability

Important

A remote code execution   vulnerability exists when the Windows TCP/IP stack improperly handles ICMPv6   Router Advertisement packets. An attacker who successfully exploited this   vulnerability could gain the ability to execute code on the target server or   client.

CVE-2020-16911

GDI+ Remote Code Execution   Vulnerability

Important

A remote code execution   vulnerability exists in the way that the Windows Graphics Device Interface   (GDI) handles objects in the memory. An attacker who successfully exploited   this vulnerability could take control of the affected system.

CVE-2020-16891

Windows Hyper-V Remote Code   Execution Vulnerability

Important

A remote code execution   vulnerability exists when Windows Hyper-V on a host server fails to properly   validate input from an authenticated user on a guest operating system. To   exploit the vulnerability, an attacker could run a specially crafted   application on a guest operating system that could cause the Hyper-V host   operating system to execute arbitrary code.

CVE-2020-16951

CVE-2020-16952

Microsoft SharePoint Code Execution   Vulnerability

Important

A remote code execution   vulnerability exists in Microsoft SharePoint when the software fails to check   the source markup of an application package. An attacker who successfully   exploited the vulnerability could run arbitrary code in the context of the   SharePoint application pool and the SharePoint server farm account.

CVE-2020-16947

Microsoft Outlook Remote Code   Execution Vulnerability

Important

A remote code execution   vulnerability exists in Microsoft Outlook software when the software fails to   properly handle objects in memory. An attacker who successfully exploited the   vulnerability could run arbitrary code in the context of the System user.

CVE-2020-17003

Base3D Remote Code Execution   Vulnerability

Important

A remote code execution   vulnerability exists when the Base3D rendering engine improperly handles   memory. An attacker who successfully exploited the vulnerability would gain   execution on a victim system.

CVE-2020-16915

Media Foundation Memory   Corruption Vulnerability

Important

A memory corruption   vulnerability exists when Windows Media Foundation improperly handles objects   in memory. An attacker who successfully exploited the vulnerability could   install programs; view, change, or delete data; or create new accounts with   full user rights.

CVE-2020-16923

Microsoft Graphics Components   Remote Code Execution Vulnerability

Important

A remote code execution   vulnerability exists in the way that Microsoft Graphics Components handle   objects in memory. An attacker who successfully exploited this vulnerability   could execute arbitrary code on the target system.

CVE-2020-16968

Windows Camera Codec Pack   Remote Code Execution Vulnerability

Important

A remote code execution   vulnerability exists when the Windows Camera Codec Pack improperly handles   objects in memory. An attacker who successfully exploited the vulnerability   could run arbitrary code in the context of the current user.

CVE-2020-16967

Windows Camera Codec Pack   Remote Code Execution Vulnerability

Important

A remote code execution   vulnerability exists when the Windows Camera Codec Pack improperly handles   objects in memory. An attacker who successfully exploited the vulnerability   could run arbitrary code in the context of the current user.