TTCSIRT-107.040618: TT-CSIRT Advisory – Microsoft Security Updates
Microsoft has released a security update stating that when the Microsoft update for meltdown is installed on a Windows 7 x64 or Windows Server 2008 R2 x64 system, an unprivileged process may be able to read and write the entire memory space available to the Windows kernel.
Basically, an attacker with the ability to run code on an affected platform as an unprivileged user may be able to read from and write to the entire contents of system memory.
Further information on this vulnerability and how it can be mitigated can be found on the Vulnerability Notes Database at https://www.kb.cert.org/vuls/id/277400 |