The vulnerability of Microsoft Office packages and Microsoft Office Web Apps arises from improper code generation management, allowing an attacker to execute arbitrary code.

The vulnerability of Microsoft Office packages and Microsoft Office Web Apps is related to improper code generation during the processing of COM objects. Exploiting this vulnerability allows an attacker to execute arbitrary code using a specially created malware file or a specially crafted...

PT-2020-4273 · Microsoft · Windows Com Server +1

Name of the Vulnerable Software and Affected Versions: Windows COM Server affected versions not specified Description: The issue is related to errors in processing COM object creation, which can allow an attacker to elevate their privileges using a specially crafted application. To exploit this, ...

The vulnerability of the Microsoft COM component in Windows operating systems, which allows a hacker to escalate their privileges

The vulnerability of the Microsoft Component Object Model COM in Windows operating systems is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to enhance their privileges through a specially created file...

CVE-2020-1507

An elevation of privilege vulnerability exists in the way that Microsoft COM for Windows handles objects in memory. An attacker who successfully exploited the vulnerability could gain elevated privileges on a targeted system. To exploit the vulnerability, a user would have to open a specially...

The vulnerability of the Windows COM Server component of the Windows operating system, which allows attackers to escalate their privileges

The vulnerability of the Windows COM Server component of the operating system is related to errors in the processing of COM objects. Exploiting this vulnerability can allow attackers to enhance their privileges through a specially created application...

The vulnerability of the Microsoft Component Object Model (COM) in Windows operating systems allows a hacker to execute arbitrary code.

The vulnerability of the Microsoft Component Object Model COM in Windows operating systems is related to insecure management of privileges. Exploiting this vulnerability allows a malicious actor to execute arbitrary code through a specially created application...

CVE-2020-1066

An elevation of privilege vulnerability exists in .NET Framework which could allow an attacker to elevate their privilege level.To exploit the vulnerability, an attacker would first have to access the local machine, and then run a malicious program.The update addresses the vulnerability by...

PT-2020-3051

Name of the Vulnerable Software and Affected Versions Microsoft .NET Framework affected versions not specified Description The issue is related to insufficient access restrictions in the Microsoft .NET Framework, allowing a remote attacker to elevate their privileges. To exploit this, an attacker...

The vulnerability of the Windows COM Server component of the Windows operating system, which allows a perpetrator to increase their privileges

The vulnerability of the Windows COM Server component of the operating system is related to errors in the processing of COM objects. Exploiting this vulnerability can allow attackers to enhance their privileges through a specially created application...

The vulnerability of the Windows COM Server component of the Windows operating system, which allows a perpetrator to increase their privileges

The vulnerability of the Windows COM Server component of the operating system is related to errors in the processing of COM objects. Exploiting this vulnerability can allow attackers to enhance their privileges through a specially created application...

The vulnerability of the Core Shell COM Server component in Windows operating systems allows attackers to exploit their privileges.

The vulnerability of the Core Shell COM Server component in Windows operating systems is related to errors in handling COM calls. Exploiting this vulnerability can allow attackers to enhance their privileges through a specially created application...

Microsoft Windows and Windows Server Privilege Permission and Access Control Issues Vulnerability

Microsoft Windows and Microsoft Windows Server are both products of Microsoft Corporation.Microsoft Windows is an operating system for personal devices.Microsoft Windows Server is a server operating system. A privilege-granting and access-control issue vulnerability exists in Microsoft Windows an...

CVE-2019-1184

An elevation of privilege vulnerability exists when Windows Core Shell COM Server Registrar improperly handles COM calls. An attacker who successfully exploited this vulnerability could potentially set certain items to run at a higher level and thereby elevate permissions. To exploit this...

The vulnerability of VMware Workstation’s virtualization platform, related to deficiencies in protection mechanisms for handling COM classes, allows attackers to escalate their privileges.

The vulnerability of VMware Workstation’s virtualization platform is related to deficiencies in protection mechanisms for handling COM classes. Exploiting this vulnerability can allow attackers to gain increased privileges...

Vulnerability of Microsoft COM components in Windows operating systems, allowing attackers to execute arbitrary code

The vulnerability of the Microsoft Component Object Model COM in Windows operating systems is related to the restoration of a dubious data structure in memory. Exploiting this vulnerability allows an attacker to execute arbitrary code using a specially created file or script...

CVE-2018-8349

A remote code execution vulnerability exists in "Microsoft COM for Windows" when it fails to properly handle serialized objects, aka "Microsoft COM for Windows Remote Code Execution Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server...

CVE-2018-0824

A remote code execution vulnerability exists in "Microsoft COM for Windows" when it fails to properly handle serialized objects, aka "Microsoft COM for Windows Remote Code Execution Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server...

CVE-2017-0214

Windows COM in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allows an elevation privilege vulnerability when Windows fails to properly validate input before...

Microsoft Windows COM Local Elevation of Privilege Vulnerability

Microsoft Windows is the popular computer operating system. Microsoft Windows does not properly validate inputs before loading type librariesA local elevation of privilege vulnerability exists in the implementation, where a local attacker could elevate its privileges...

Microsoft Windows HelpPane Elevation of Privilege Vulnerability

Microsoft Windows is a series of operating systems released by the American company Microsoft. An elevation of privilege vulnerability exists in Microsoft Windows HelpPane. When registering a DCOM object, the Windows COM session name does not properly implement the RunAs privilege, which can be...