222 matches found
Microsoft Windows 'HTTP.sys' - Remote Code Execution
HTTP.sys in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8, Windows 8.1, and Windows Server 2012 Gold and R2 allows remote attackers to execute arbitrary code via crafted HTTP requests, aka "HTTP.sys Remote Code Execution Vulnerability." id: CVE-2015-1635 info: name: Microsoft...
Exploit for Untrusted Pointer Dereference in Microsoft
CVE-2026-21250: Windows HTTP.sys Local Privilege Escalation W...
Windows 11 24H2 - Local Privilege Escalation
Exploit Title: Windows 11 24H2 - Local Privilege Escalation Google Dork: inurl:http.sys "Windows 11 24H2" vulnerability | intitle:"HTTP.sys" "CVE-2026-21250" "Elevation of Privilege" Date: 2026-02-27 Exploit Author: London foggy snow Vendor Homepage: https://www.microsoft.com/en-us/msrc Software...
HTTP.sys Denial of Service Vulnerability
Out-of-bounds read in Windows HTTP.sys allows an unauthorized attacker to deny service over a network...
PT-2026-32871
Name of the Vulnerable Software and Affected Versions Windows HTTP.sys affected versions not specified Description An out-of-bounds read in Windows HTTP.sys allows an unauthorized attacker to cause a denial of service over a network. Recommendations At the moment, there is no information about a...
Microsoft HTTP.sys 缓冲区错误漏洞
Microsoft HTTP.SYS is an HTTP application protocol developed by Microsoft Corporation. There is a buffer error vulnerability in Microsoft HTTP.SYS. Attackers can exploit this vulnerability to cause a denial-of-service attack on the system. The following products and versions are affected: Windows...
CVE-2026-21232
Untrusted pointer dereference in Windows HTTP.sys allows an authorized attacker to elevate privileges locally...
CVE-2026-21250
Untrusted pointer dereference in Windows HTTP.sys allows an authorized attacker to elevate privileges locally...
CVE-2026-21250
Untrusted pointer dereference in Windows HTTP.sys allows an authorized attacker to elevate privileges locally...
CVE-2026-21250
Untrusted pointer dereference in Windows HTTP.sys allows an authorized attacker to elevate privileges locally...
CVE-2026-21240
Time-of-check time-of-use toctou race condition in Windows HTTP.sys allows an authorized attacker to elevate privileges locally...
CVE-2026-21232
Untrusted pointer dereference in Windows HTTP.sys allows an authorized attacker to elevate privileges locally...
CVE-2026-21232
Untrusted pointer dereference in Windows HTTP.sys allows an authorized attacker to elevate privileges locally...
CVE-2026-21232
CVE-2026-21232 describes an untrusted pointer dereference in Windows HTTP.sys that enables local privilege escalation for an authorized user. Affected: Windows HTTP.sys component; root cause is a dereference of an untrusted pointer leading to elevation of privileges. Impact is high across confide...
CVE-2026-21232
Untrusted pointer dereference in Windows HTTP.sys allows an authorized attacker to elevate privileges locally...
CVE-2026-21232 Windows HTTP.sys Elevation of Privilege Vulnerability
...
CVE-2026-21240 Windows HTTP.sys Elevation of Privilege Vulnerability
...
CVE-2026-21240 Windows HTTP.sys Elevation of Privilege Vulnerability
...
CVE-2026-21240
Time-of-check time-of-use toctou race condition in Windows HTTP.sys allows an authorized attacker to elevate privileges locally...
CVE-2026-21240
CVE-2026-21240 describes a local, authenticated TOCTOU race in Windows HTTP.sys that can allow privilege escalation. Affected component: Windows HTTP.sys. Root cause: time-of-check/time-of-use race condition. Impact: high (local escalation of privileges, potential confidentiality, integrity, and ...