Lucene search
K

480 matches found

NVD
NVD
added 2017/03/17 12:59 a.m.25 views

CVE-2017-0007

Device Guard in Microsoft Windows 10 Gold, 1511, 1607, and Windows Server 2016 allows remote attackers to modify PowerShell script without invalidating associated signatures, aka "PowerShell Security Feature Bypass Vulnerability."...

5.5CVSS5.7AI score0.11264EPSS
Exploits1References4
OSV
OSV
added 2017/03/17 12:59 a.m.4 views

CVE-2017-0007

Device Guard in Microsoft Windows 10 Gold, 1511, 1607, and Windows Server 2016 allows remote attackers to modify PowerShell script without invalidating associated signatures, aka "PowerShell Security Feature Bypass Vulnerability."...

5.5CVSS5.8AI score0.11264EPSS
Exploits1References4
Prion
Prion
added 2017/03/17 12:59 a.m.25 views

Security feature bypass

Device Guard in Microsoft Windows 10 Gold, 1511, 1607, and Windows Server 2016 allows remote attackers to modify PowerShell script without invalidating associated signatures, aka "PowerShell Security Feature Bypass Vulnerability."...

2.1CVSS5.6AI score0.11264EPSS
Exploits1References4Affected Software1
CVE
CVE
added 2017/03/17 12:0 a.m.105 views

CVE-2017-0007

CVE-2017-0007 is a Device Guard security feature bypass in Windows 10 (Gold/1511/1607) and Windows Server 2016 where sign-checked PowerShell scripts could be modified without breaking the signature, allowing execution of unsigned/malicious code. Root cause: Device Guard’s validation of certain el...

5.5CVSS5.5AI score0.11264EPSS
Exploits1References4Affected Software2
Cvelist
Cvelist
added 2017/03/17 12:0 a.m.39 views

CVE-2017-0007

Device Guard in Microsoft Windows 10 Gold, 1511, 1607, and Windows Server 2016 allows remote attackers to modify PowerShell script without invalidating associated signatures, aka "PowerShell Security Feature Bypass Vulnerability."...

5.7AI score0.11264EPSS
Exploits1References4
CNVD
CNVD
added 2017/03/16 12:0 a.m.6 views

Microsoft Windows Device Guard Security Bypass Vulnerability

Microsoft Windows is an operating system developed by the American company Microsoft. A security bypass vulnerability exists where Device Guard fails to properly validate certain elements of signed PowerShell scripts. An attacker may be able to modify the contents of a PowerShell script without...

5.5CVSS6.7AI score0.11264EPSS
Exploits1References1
OpenVAS
OpenVAS
added 2017/03/15 12:0 a.m.135 views

Microsoft Windows Multiple Vulnerabilities (4013078)

This host is missing a critical security update according to Microsoft Bulletin MS17-012. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

9.3CVSS6.1AI score0.37493EPSS
Exploits5References8
Tenable Nessus
Tenable Nessus
added 2017/03/15 12:0 a.m.565 views

MS17-012: Security Update for Microsoft Windows (4013078)

The remote Windows host is missing a security update. It is, therefore, affected by multiple vulnerabilities : - A security feature bypass vulnerability exists in Device Guard due to improper validation of certain elements in a signed PowerShell script. An unauthenticated, remote attacker can...

9.3CVSS7.7AI score0.37493EPSS
Exploits5References7
Microsoft CVE
Microsoft CVE
added 2017/03/14 7:0 a.m.40 views

Device Guard Security Feature Bypass Vulnerability

A security feature bypass exists when Device Guard does not properly validate certain elements of a signed PowerShell script. An attacker who successfully exploited this vulnerability could modify the contents of a PowerShell script without invalidating the signature associated with the file...

5.5CVSS4.9AI score0.11264EPSS
Exploits1
Check Point Advisories
Check Point Advisories
added 2017/03/14 12:0 a.m.10 views

Microsoft Device Guard Security Feature Bypass (MS17-012: CVE-2017-0007)

A security feature bypass vulnerability has been reported in Microsoft Windows Device Guard. The vulnerability is due to the way Device Guard improperly validates certain elements of a signed PowerShell script. A remote attacker could exploit this vulnerability by enticing a target user to open a...

2.1CVSS3.9AI score0.11264EPSS
Exploits1
Symantec
Symantec
added 2017/03/14 12:0 a.m.69 views

Microsoft Windows Device Guard CVE-2017-0007 Security Bypass Vulnerability

Description Microsoft Windows is prone to a security-bypass vulnerability. An attacker can exploit this issue to bypass certain security restrictions and perform unauthorized actions. This may aid in further attacks. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems...

2.1CVSS1AI score0.11264EPSS
Exploits1Affected Software2
Lenovo
Lenovo
added 2016/11/17 12:0 a.m.23 views

Microsoft Device Guard protection bypass - Lenovo Support US

No description provided...

5AI score
Exploits0
Lenovo
Lenovo
added 2016/11/17 12:0 a.m.59 views

Microsoft Device Guard protection bypass - us

Lenovo Security Advisory: LEN-8327 Potential Impact: Denial of service Severity: Medium Scope of Impact: Lenovo-specific CVE Identifier: CVE-2016-8222 Summary Description: A vulnerability has been identified in a signed kernel driver for the BIOS of some ThinkPad systems that can allow an attacke...

4.7CVSS5AI score0.00304EPSS
Exploits0
CNVD
CNVD
added 2016/05/12 12:0 a.m.5 views

Microsoft Internet Explorer Security Feature Bypass Vulnerability

Microsoft Internet Explorer IE is a Web browser developed by the American company Microsoft and is the default browser that comes with the Windows operating system. A security feature bypass vulnerability exists in the User Mode Code Integrity UMCI component of Device Guard in Microsof IE version...

9.3CVSS7.2AI score0.18331EPSS
Exploits0References1
OSV
OSV
added 2016/05/11 1:59 a.m.2 views

CVE-2016-0188

The User Mode Code Integrity UMCI implementation in Device Guard in Microsoft Internet Explorer 11 allows remote attackers to bypass a code-signing protection mechanism via unspecified vectors, aka "Internet Explorer Security Feature Bypass."...

8.8CVSS5.8AI score0.18331EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2016/05/11 1:59 a.m.4 views

CVE-2016-0188

The User Mode Code Integrity UMCI implementation in Device Guard in Microsoft Internet Explorer 11 allows remote attackers to bypass a code-signing protection mechanism via unspecified vectors, aka "Internet Explorer Security Feature Bypass."...

9.3CVSS8.1AI score0.18331EPSS
Exploits0References4
Prion
Prion
added 2016/05/11 1:59 a.m.24 views

Security feature bypass

The User Mode Code Integrity UMCI implementation in Device Guard in Microsoft Internet Explorer 11 allows remote attackers to bypass a code-signing protection mechanism via unspecified vectors, aka "Internet Explorer Security Feature Bypass."...

9.3CVSS7.1AI score0.18331EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2016/05/11 1:0 a.m.28 views

CVE-2016-0188

The User Mode Code Integrity UMCI implementation in Device Guard in Microsoft Internet Explorer 11 allows remote attackers to bypass a code-signing protection mechanism via unspecified vectors, aka "Internet Explorer Security Feature Bypass."...

8.7AI score0.18331EPSS
Exploits0References3
CVE
CVE
added 2016/05/11 1:0 a.m.63 views

CVE-2016-0188

CVE-2016-0188 affects Internet Explorer 11 via the Device Guard UMCI component, enabling a remote attacker to bypass code-signing protections and run unsigned code. The vulnerability stems from UMCI policy validation weaknesses in IE’s User Mode Code Integrity, allowing code that should be blocke...

9.3CVSS8.5AI score0.18331EPSS
Exploits0References3Affected Software1
Kaspersky
Kaspersky
added 2016/05/10 12:0 a.m.393 views

KLA10806 Multiple vulnerabilities in Microsoft Internet Explorer and Edge

Multiple serious vulnerabilities have been found in Microsoft Internet Explorer and Edge. Malicious users can exploit these vulnerabilities to execute arbitrary code, bypass security restrictions or obtain sensitive information. Below is a complete list of vulnerabilities 1. An improper memory...

9.3CVSS8.4AI score0.93165EPSS
Exploits10References15
Rows per page
Query Builder