Privilege escalation

Microsoft Windows 7 SP1, Windows Server 2008 SP2 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an elevation of privilege vulnerability due to the way that the Windows Common Log File System CLFS driver...

Security update for the Windows CLFS elevation of privilege vulnerability in Windows Server 2008: July 11, 2017

Security update for the Windows CLFS elevation of privilege vulnerability in Windows Server 2008: July 11, 2017 Summary An elevation of privilege vulnerability exists when the Windows Common Log File System CLFS driver improperly handles objects in memory.To learn more about the vulnerability, se...

(Pwn2Own) Microsoft Windows CLFS Driver Uninitialized Memory Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on vulnerable installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the Common Log...

The vulnerability of the Windows operating system, which allows a hacker to increase their privileges

The vulnerability of the Windows operating system’s Common Log File System driver arises from operations that go beyond the buffer in memory. Exploiting this vulnerability can allow a remote attacker to increase their privileges through a specially created application...

CVE-2016-7295

The Common Log File System CLFS driver in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, and 1607, and Windows Server 2016 allows local users to obtain sensitive information from...

Microsoft Windows Local Information Disclosure Vulnerability

Microsoft Windows is a series of operating systems released by the American company Microsoft. An information disclosure vulnerability exists in the Microsoft Windows Universal Log File System driver, which arises from a failure of the program driver to properly handle objects in memory. The...

Microsoft Windows Common Log File System Driver Information Disclosure Vulnerability (3207328)

This host is missing an important security update according to Microsoft Bulletin MS16-153. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

December 2016 Security Only Quality Update for Windows 8.1 and Windows Server 2012 R2

December 2016 Security Only Quality Update for Windows 8.1 and Windows Server 2012 R2 Summary This security update resolves the following vulnerabilities in Windows 8.1 and Windows Server 2012 R2: MS16-153 Security update for common log file system driver MS16-151 Security update for Windows...

MS16-153: Description of the security update for Common Log File System driver: December 13, 2016

MS16-153: Description of the security update for Common Log File System driver: December 13, 2016 Summary This security update resolves a vulnerability in Microsoft Windows that could allow Information Disclosure when the Windows Common Log File System CLFS driver improperly handles objects in...

December 2016 Security Only Quality Update for Windows Server 2012

December 2016 Security Only Quality Update for Windows Server 2012 Summary This security update resolves the following vulnerabilities in Windows Server 2012: MS16-153 Security update for common log file system driver MS16-151 Security update for Windows kernel-mode drivers MS16-149 Security upda...

December 2016 Security Only Quality Update for Windows 7 SP1 and Windows Server 2008 R2 SP1

December 2016 Security Only Quality Update for Windows 7 SP1 and Windows Server 2008 R2 SP1 Summary This security update resolves the following vulnerabilities in Windows 7 and Windows Server 2008 R2: MS16-153 Security update for common log file system driver MS16-151 Security update for Windows...

Windows Common Log File System Driver Elevation of Privilege Vulnerability

An elevation of privilege vulnerability exists when the Windows Common Log File System CLFS driver improperly handles objects in memory. An attacker who successfully exploited this vulnerability could run processes in an elevated context. To exploit the vulnerability, an attacker would first have...

MS16-153: Security update for Common Log File System driver: December 13, 2016

Resolves a vulnerability in Windows that could allow information disclosure when the Windows Common Log File System CLFS driver improperly handles objects in memory. In a local attack scenario, an attacker could exploit this vulnerability by running a specially crafted application to bypass...

Microsoft Windows CLFS Driver Information Disclosure (MS16-153: CVE-2016-7295)

An elevation of privilege vulnerability exists in the Windows Common Log File System CLFS driver of Microsoft Windows. The vulnerability is due to the way Windows improperly handles objects in memory. An attacker who successfully exploited the vulnerability could run processes in an elevated...

KLA10924 Privilege escalation and information disclosure vulnerabilities in Microsoft Windows

Multiple serious vulnerabilities have been found in Microsoft Windows. Malicious users can exploit these vulnerabilities to obtain sensitive information or gain privileges. Below is a complete list of vulnerabilities: 1. An improper handling of objects in memory while running a Windows Crypto...

MS16-153: Security Update for Common Log File System Driver (3207328)

The remote Windows host is missing a security update. It is, therefore, affected by an information disclosure vulnerability in the Windows Common Log File System CLFS due to improper handling of objects in memory. A local attacker can exploit this vulnerability, via a specially crafted applicatio...

CVE-2016-7184

The Common Log File System CLFS driver in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, and 1607, and Windows Server 2016 allows local users to gain privileges via a crafted...

CVE-2016-3343

The Common Log File System CLFS driver in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, and 1607, and Windows Server 2016 allows local users to gain privileges via a crafted...

CVE-2016-3343

The Common Log File System CLFS driver in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, and 1607, and Windows Server 2016 allows local users to gain privileges via a crafted...

CVE-2016-3340

The Common Log File System CLFS driver in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, and 1607, and Windows Server 2016 allows local users to gain privileges via a crafted...