Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
attackerkbAttackerKBAKB:2BE84F87-A38C-4B28-96BA-5EB60FB68D5E
HistoryOct 15, 2014 - 12:00 a.m.

CVE-2014-4113

2014-10-1500:00:00
attackerkb.com
23

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

JSON

win32k.sys in the kernel-mode drivers in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows local users to gain privileges via a crafted application, as exploited in the wild in October 2014, aka β€œWin32k.sys Elevation of Privilege Vulnerability.”

Recent assessments:

gwillcox-r7 at November 22, 2020 3:26am UTC reported:

Reported as exploited in the wild as part of Google’s 2020 0day vulnerability spreadsheet they made available at <https://docs.google.com/spreadsheets/d/1lkNJ0uQwbeC1ZTRrxdtuPLCIl7mlUreoKfSIgajnSyY/edit#gid=1869060786&gt;. Original tweet announcing this spreadsheet with the 2020 findings can be found at <https://twitter.com/maddiestone/status/1329837665378725888&gt;

Assessed Attacker Value: 0
Assessed Attacker Value: 0Assessed Attacker Value: 0

Related

threatpost 4
seebug 2
zdt 4
prion 1
exploitpack 2
cve 1
symantec 1
metasploit 3
cisa_kev 1
thn 4
packetstorm 4
exploitdb 5
nessus 1
myhack58 1
openvas 1
fireeye 1
githubexploit 1
securityvulns 1
kaspersky 1
threatpost
threatpost
50k Servers Infected with Cryptomining Malware in Nansh0u Campaign
2019-05-29 13:00:27
Malware Dropper Built to Target European Energy Company
2016-07-12 09:31:54
Researchers Crack Furtim, SFG Malware Connection
2016-07-18 13:26:09
seebug
seebug
MS14-058 Windowsε†…ζ ΈζζƒζΌζ΄ž (CVE-2014-4113)
2016-01-29 00:00:00
Windows TrackPopupMenu Win32k NULL Pointer Dereference
2014-11-13 00:00:00
zdt
zdt
Windows TrackPopupMenu Win32k NULL Pointer Dereference Exploit
2014-10-29 00:00:00
Microsoft Windows 8.1 / Server 2012 - Win32k.sys Local Privilege Escalation (MS14-058) Exploit
2019-05-30 00:00:00
Microsoft Windows - Kernel 'win32k.sys' Privilege Escalation (MS14-058)
2016-04-05 00:00:00
prion
prion
Privilege escalation
2014-10-15 10:55:00
exploitpack
exploitpack
Microsoft Windows Kernel - win32k.sys Local Privilege Escalation (MS14-058)
2016-04-05 00:00:00
Microsoft Windows 8.08.1 (x64) - TrackPopupMenu Local Privilege Escalation (MS14-058)
2015-05-19 00:00:00
cve
cve
CVE-2014-4113
2014-10-15 10:55:00
symantec
symantec
Microsoft Windows Kernel 'Win32k.sys' CVE-2014-4113 Local Privilege Escalation Vulnerability
2014-10-14 00:00:00
metasploit
metasploit
Windows TrackPopupMenu Win32k NULL Pointer Dereference
2014-10-23 23:51:30
Windows Net-NTLMv2 Reflection DCOM/RPC (Juicy)
2019-01-10 16:20:43
Windows Net-NTLMv2 Reflection DCOM/RPC
2018-08-03 06:09:24
cisa_kev
cisa_kev
Microsoft Win32k Privilege Escalation Vulnerability
2022-05-04 00:00:00
thn
thn
Hackers Infect 50,000 MS-SQL and PHPMyAdmin Servers with Rootkit Malware
2019-05-29 18:50:00
State-Sponsored SCADA Malware targeting European Energy Companies
2016-07-13 00:12:00
Microsoft Patches 3 Zero-day Vulnerabilities actively being Exploited in the Wild
2014-10-15 01:14:00
packetstorm
packetstorm
Windows TrackPopupMenu Win32k NULL Pointer Dereference
2014-10-28 00:00:00
Windows 8.0 / 8.1 x64 TrackPopupMenu Privilege Escalation
2015-05-21 00:00:00
Windows Net-NTLMv2 Reflection DCOM/RPC
2018-10-05 00:00:00
exploitdb
exploitdb
Microsoft Windows - TrackPopupMenu Win32k Null Pointer Dereference (MS14-058) (Metasploit)
2014-10-28 00:00:00
Microsoft Windows - Net-NTLMv2 Reflection DCOM/RPC (Metasploit)
2018-10-08 00:00:00
Microsoft Windows Kernel - &#039;win32k.sys&#039; Local Privilege Escalation (MS14-058)
2016-04-05 00:00:00
nessus
nessus
MS14-058: Vulnerabilities in Kernel-Mode Driver Could Allow Remote Code Execution (3000061)
2014-10-15 00:00:00
myhack58
myhack58
HEVD kernel vulnerability training-with Windows play-bug warning-the black bar safety net
2017-03-01 00:00:00
openvas
openvas
Microsoft Windows Kernel-Mode Driver Privilege Escalation and RCE Vulnerabilities (3000061)
2014-10-15 00:00:00
fireeye
fireeye
CARBANAK Week Part Two: Continuing the CARBANAK Source Code Analysis
2019-04-23 17:45:00
githubexploit
githubexploit
Exploit for Vulnerability in Winmagic Securedoc
2020-06-30 23:01:33
securityvulns
securityvulns
Microsoft Windows multiple security vulnerabilities
2014-10-15 00:00:00
kaspersky
kaspersky
KLA10601 Multiple vulnerabilities in Microsoft products
2014-11-11 00:00:00

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

JSON
Related for AKB:2BE84F87-A38C-4B28-96BA-5EB60FB68D5E
threatpost4seebug2zdt4prion1exploitpack2cve1symantec1metasploit3cisa_kev1thn4packetstorm4exploitdb5nessus1myhack581openvas1fireeye1githubexploit1securityvulns1kaspersky1