463 matches found
CVE-2018-0815
The Windows Graphics Device Interface GDI in Microsoft Windows Server 2008 SP2 and R2 SP1 and Windows 7 SP1 allows an elevation of privilege vulnerability due to the way objects are handled in memory, aka "Windows GDI Elevation of Privilege Vulnerability". This CVE is unique from CVE-2018-0816, a...
Microsoft Windows Multiple Vulnerabilities (KB4088782)
This host is missing a critical security update according to Microsoft KB4088782 SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Microsoft Windows Multiple Vulnerabilities (KB4088787)
This host is missing a critical security update according to Microsoft KB4088787 SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Microsoft Windows Multiple Vulnerabilities (KB4088786)
This host is missing a critical security update according to Microsoft KB4088786 SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Windows GDI Elevation of Privilege Vulnerability
An elevation of privilege vulnerability exists in the way that the Windows Graphics Device Interface GDI handles objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode. An attacker could then install programs; view, change, or delete...
openSUSE: Security Advisory for qemu (openSUSE-SU-2017:2941-1)
The remote host is missing an update for the Copyright C 2017 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
CVE-2017-11816
The Microsoft Windows Graphics Device Interface GDI on Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allows an information disclosure vulnerability in the wa...
CVE-2017-11816
The Microsoft Windows Graphics Device Interface GDI on Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allows an information disclosure vulnerability in the wa...
Microsoft Windows GDI Information Disclosure Vulnerability (CNVD-2017-30907)
Microsoft Windows is the popular computer operating system. An information disclosure vulnerability exists in the implementation of Microsoft Windows Graphics Device Interface GDI when memory objects are not handled correctly, which can be exploited by an attacker to obtain sensitive information...
Microsoft Live Meeting 2007 Add-in Multiple Vulnerabilities (KB4025869)
This host is missing an important security update according to Microsoft KB4025869 SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescriptio...
Microsoft Office 2010 Service Pack 2 Multiple Vulnerabilities (KB3213638)
This host is missing a critical security update according to Microsoft KB3213638 SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Microsoft Windows GDI+ Information Disclosure Vulnerability (CNVD-2017-33471)
Microsoft Windows Server 2008 SP2 and others are a series of operating systems released by Microsoft.GDI+ component is one of the graphics components. An information disclosure vulnerability exists in the GDI+ component of Microsoft Windows, which arises from a program's failure to properly publi...
Microsoft Lync 2010 Multiple Vulnerabilities (KB4025865)
This host is missing an important security update according to Microsoft KB4025865 SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescriptio...
KB4038782: Windows 10 Version 1607 and Windows Server 2016 September 2017 Cumulative Update
The remote Windows host is missing security update 4038782. It is, therefore, affected by multiple vulnerabilities : - A race condition that could lead to a remote code execution vulnerability exists in NetBT Session Services when NetBT fails to maintain certain sequencing requirements...
Microsoft Windows Graphics Device Interface CVE-2017-8676 Local Information Disclosure Vulnerability
Description Microsoft Windows is prone to a local information-disclosure vulnerability. Local attackers can exploit this issue to obtain sensitive information that may lead to further attacks. Technologies Affected Microsoft Live Meeting 2007 Add-in Microsoft Live Meeting 2007 Console Microsoft...
kernel: Use after free in SCSI generic device interface
It was found that the blkrqmapuseriov function in the Linux kernel's block device implementation did not properly restrict the type of iterator, which could allow a local attacker to read or write to arbitrary kernel memory locations or cause a denial of service use-after-free by leveraging write...
kernel: Use after free in SCSI generic device interface (CVE-2016-9576 regression)
It was found that the fix for CVE-2016-9576 was incomplete: the Linux kernel's sg implementation did not properly restrict write operations in situations where the KERNELDS option is set. A local attacker to read or write to arbitrary kernel memory locations or cause a denial of service...
kernel: Use after free in SCSI generic device interface
It was found that the blkrqmapuseriov function in the Linux kernel's block device implementation did not properly restrict the type of iterator, which could allow a local attacker to read or write to arbitrary kernel memory locations or cause a denial of service use-after-free by leveraging write...
PT-2017-10501 · Microsoft · Windows Gdi +2
Name of the Vulnerable Software and Affected Versions: Windows GDI component affected versions not specified Description: The issue allows attackers to obtain sensitive information and affect the system. It is an information disclosure vulnerability that exists when the Windows GDI component...
Microsoft Windows Graphics Device Interface Local Information Disclosure Vulnerability
Microsoft Windows is the popular computer operating system. Windows Graphics Device Interface GDI does not properly handle memory objects and is implemented with an information disclosure vulnerability that, if successfully exploited, could allow an attacker to obtain sensitive information...