27 matches found
CVE-2021-28316
CVE-2021-28316 affects Windows WLAN AutoConfig, enabling a security feature bypass in that service. Reports indicate it is a local-attack surface with no public exploitation to date, and Microsoft released fixes as part of the September 2021 Patch Tuesday. The vulnerability’s impact is described ...
KLA12142 Multiple vulnerabilities in Microsoft Products (ESU)
Multiple vulnerabilities were found in Microsoft Products Extended Support Update. Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information, cause denial of service, gain privileges, bypass security restrictions, spoof user interface. Below is a...
KB5001339: Windows 10 version 1803 Security Update (April 2021)
The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities: - Win32k Elevation of Privilege Vulnerability CVE-2021-27072, CVE-2021-28310 - Windows Media Photo Codec Information Disclosure Vulnerability CVE-2021-27079 - Windows Event Tracing Elevati...
Microsoft Wireless LAN AutoConfig Service Remote Code Execution Vulnerability (970710)
This host is missing a critical security update according to Microsoft Bulletin MS09-049. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
Microsoft Windows无线LAN AutoConfig帧解析堆溢出漏洞(MS09-049)
BUGTRAQ ID: 36223 CVECAN ID: CVE-2009-1132 Microsoft Windows是微软发布的非常流行的操作系统。 无线局域网AutoConfig服务(wlansvc)解析无线网络上收到的特定帧的方式中存在堆溢出漏洞。如果启用了无线网络接口的客户端或服务器收到特制的无线帧,此漏洞可能允许远程执行代码。如果用户使用管理用户权限登录,成功利用此漏洞的攻击者可以安装程序;查看、更改或删除数据;或者创建拥有完全用户权限的新帐户。 Microsoft Windows Vista SP2 Microsoft Windows Vista SP1 Microsoft...
Microsoft Security Bulletin MS09-049 - Critical Vulnerability in Wireless LAN AutoConfig Service Could Allow Remote Code Execution (970710)
Microsoft Security Bulletin MS09-049 - Critical Vulnerability in Wireless LAN AutoConfig Service Could Allow Remote Code Execution 970710 Published: September 08, 2009 Version: 1.0 General Information Executive Summary This security update resolves a privately reported vulnerability in Wireless L...
MS09-049: Vulnerability in Wireless LAN AutoConfig Service Could Allow Remote Code Execution (970710)
A remote code execution vulnerability exists in the way that the Wireless LAN AutoConfig Service wlansvc parses specific frames received on the wireless network. This vulnerability could allow remote code execution if a client or server with a wireless network interface enabled receives specially...