125 matches found
Microsoft Windows ALPC 权限许可和访问控制问题漏洞
Microsoft Windows ALPC is a C/S model technology developed by Microsoft to replace LPC for native RPC. Microsoft Windows ALPC has an elevation of privilege vulnerability that can be exploited to gain elevated privileges on the system...
Google Android 竞争条件问题漏洞
Google Android is a Linux-based open source operating system from Google. Google Android suffers from an elevation of privilege vulnerability. The vulnerability stems from an incorrect programmatic call to an advanced local procedure. An attacker could use this vulnerability to cause a local...
Palo Alto Networks Cortex XDR 代码问题漏洞
Palo Alto Networks Cortex XDR is a security operations platform for remote endpoint-based detection from Palo Alto Networks Malaysia. An elevation of privilege vulnerability exists in the Palo Alto Networks Cortex XDR agent that originates from an incorrectly programmed call to an advanced local...
Huawei HarmonyOS 代码问题漏洞
Huawei Emui is a mobile operating system developed based on Android.Magic Ui is a mobile operating system developed based on Android. A security vulnerability exists in Huawei Emui and Magic UI, which stems from an incorrect programmatic call to an advanced local procedure. An attacker can exploi...
Lenovo Pcmanager 代码问题漏洞
Lenovo Pcmanager is a software from Lenovo, China, that provides comprehensive management of Pc devices. A code issue vulnerability exists in Lenovo PCManager prior to version 3.0.400.3252, which stems from an incorrect programmatic call to an advanced local procedure that can be exploited by an...
McAfee Agent Elevation of Privilege Vulnerability
McAfee Agent MA is a set of client components from McAfee, Inc. that provides secure communications between ePolicy Orchestrator antivirus management platform and managed products. An elevation of privilege vulnerability exists in McAfee Agent. The vulnerability stems from an incorrect programmat...
Huawei FusionCompute Local Elevation of Privilege Vulnerability
Huawei FusionCompute is a computer virtualization engine from Huawei China. The product provides Virtual Resource Manager VRM and Compute Node Agent CNA, among others. A local elevation of privilege vulnerability exists in Huawei FusionCompute version 8.0.0. The vulnerability stems from a failure...
CVE-2020-1396
An elevation of privilege vulnerability exists when Windows improperly handles calls to Advanced Local Procedure Call ALPC.An attacker who successfully exploited this vulnerability could run arbitrary code in the security context of the local system, aka 'Windows ALPC Elevation of Privilege...
The vulnerability of the Advanced Local Procedure Call operating system in Windows, related to insecure management of privileges, allows attackers to escalate their privileges.
The vulnerability of the Advanced Local Procedure Call operating system in Windows allows for the exploitation of insecure privileges management. Exploiting this vulnerability can enable an attacker to enhance their privileges...
Microsoft Windows Multiple Vulnerabilities (KB4541509)
This host is missing a critical security update according to Microsoft KB4541509 SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
The vulnerability of the Windows operating system, related to errors in processing Advanced Local Process Call (ALPC) calls, allows a perpetrator to increase their privileges and execute arbitrary code.
The vulnerability of the Windows operating system is related to errors in processing Advanced Local Process Call ALPC calls. Exploiting this vulnerability can allow an attacker to enhance their privileges and execute arbitrary code using a specially created application...
Microsoft Windows and Microsoft Windows Server Privilege Mobilization Vulnerability (CNVD-2019-31845)
Microsoft Windows and Microsoft Windows Server are both products of Microsoft Corporation.Microsoft Windows is an operating system for personal devices.Microsoft Windows Server is a server operating system. A privilege vulnerability exists in Microsoft Windows, which arises from a program's failu...
Microsoft Windows Multiple Vulnerabilities (KB4516070)
This host is missing a critical security update according to Microsoft KB4516070 Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This progra...
KB4516058: Windows 10 Version 1803 September 2019 Security Update
The remote Windows host is missing security update 4516058. It is, therefore, affected by multiple vulnerabilities : - An elevation of privilege vulnerability exists in Windows Text Service Framework TSF when the TSF server process does not validate the source of input or commands it receives. An...
KB4516066: Windows 10 Version 1709 September 2019 Security Update
The remote Windows host is missing security update 4516066. It is, therefore, affected by multiple vulnerabilities : - An elevation of privilege vulnerability exists in Windows Text Service Framework TSF when the TSF server process does not validate the source of input or commands it receives. An...
KB4516044: Windows 10 Version 1607 and Windows Server 2016 September 2019 Security Update
The remote Windows host is missing security update 4516044. It is, therefore, affected by multiple vulnerabilities : - An elevation of privilege vulnerability exists in Windows Text Service Framework TSF when the TSF server process does not validate the source of input or commands it receives. An...
Microsoft Windows and Windows Server Privilege Mobilization Vulnerability (CNVD-2019-34581)
Microsoft Windows and Microsoft Windows Server are both products of Microsoft Corporation.Microsoft Windows is an operating system for personal devices.Microsoft Windows Server is a server operating system. A privilege extraction vulnerability exists in Microsoft Windows, which arises from a...
Microsoft Windows Multiple Vulnerabilities (KB4512517)
This host is missing a critical security update according to Microsoft KB4512517 Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This progra...
Google Discloses 20-Year-Old Unpatched Flaw Affecting All Versions of Windows
Update — With this month's patch Tuesday updates, Microsoft has finally addressed this vulnerability, tracked as CVE-2019-1162, by correcting how the Windows operating system handles calls to Advanced Local Procedure Call ALPC. A Google security researcher has just disclosed details of a...
The vulnerability of the Windows operating system, related to errors in processing Advanced Local Process Call (ALPC) calls, allows a perpetrator to increase their privileges and execute arbitrary code.
The vulnerability of the Windows operating system is related to errors in processing Advanced Local Process Call ALPC calls. Exploiting this vulnerability can allow an attacker to enhance their privileges and execute arbitrary code using a specially created application...