79 matches found
CVE-2026-23674
Improper resolution of path equivalence in Windows MapUrlToZone allows an unauthorized attacker to bypass a security feature over a network...
EUVD-2026-10599
Improper resolution of path equivalence in Windows MapUrlToZone allows an unauthorized attacker to bypass a security feature over a network...
EUVD-2026-10598
Improper resolution of path equivalence in Windows MapUrlToZone allows an unauthorized attacker to bypass a security feature over a network...
CVE-2026-23674
Improper resolution of path equivalence in Windows MapUrlToZone allows an unauthorized attacker to bypass a security feature over a network...
CVE-2026-23674 MapUrlToZone Security Feature Bypass Vulnerability
...
CVE-2026-23674 MapUrlToZone Security Feature Bypass Vulnerability
...
CVE-2026-23674
Improper resolution of path equivalence in Windows MapUrlToZone allows an unauthorized attacker to bypass a security feature over a network...
CVE-2026-23674
CVE-2026-23674 relates to Windows MapUrlToZone: improper resolution of path equivalence allows a network-based bypass of a security feature. Affected component is the MapUrlToZone path resolution logic in Windows, with exploitation possible over the network and no user interaction required beyond...
Microsoft MapUrlToZone 安全漏洞
Microsoft MapUrlToZone is a lightweight console application written in C++ by Microsoft Corporation. There is a security vulnerability present in Microsoft MapUrlToZone. Attackers can exploit this vulnerability to bypass certain features. The following products and versions are affected: Windows ...
PT-2026-24277
Уязвимость метода MapUrlToZone операционных систем Windows связана с неправильным разрешением эквивалентности пути. Эксплуатация уязвимости может позволить нарушителю, действующему удаленно, обойти существующие механизмы безопасности...
A deep dive into MUTZ
AtDEF CON 33, we shared our research into MapUrlToZone, a critical Windows security component that determines whether a given path is local, on the intranet, or on the broader Internet. This classification drives several security decisions across Windows, for example, preventing a CreateFile call...
CVE-2025-59208
Out-of-bounds read in Windows MapUrlToZone allows an unauthorized attacker to disclose information over a network...
EUVD-2025-34292
Out-of-bounds read in Windows MapUrlToZone allows an unauthorized attacker to disclose information over a network...
CVE-2025-59208
Out-of-bounds read in Windows MapUrlToZone allows an unauthorized attacker to disclose information over a network...
CVE-2025-59208
Out-of-bounds read in Windows MapUrlToZone allows an unauthorized attacker to disclose information over a network...
CVE-2025-59208 Windows MapUrlToZone Information Disclosure Vulnerability
...
CVE-2025-59208 Windows MapUrlToZone Information Disclosure Vulnerability
...
CVE-2025-59208
CVE-2025-59208 is an out-of-bounds read in Windows MapUrlToZone that could allow an unauthenticated attacker to disclose information over a network. The description and connected documents confirm a network-based exposure affecting Windows, with the root cause being a memory read beyond bounds in...
Windows MapUrlToZone Information Disclosure Vulnerability
Out-of-bounds read in Windows MapUrlToZone allows an unauthorized attacker to disclose information over a network...
Microsoft MapUrlToZone 缓冲区错误漏洞
Microsoft MapUrlToZone is a lightweight console application written in C++ from Microsoft Corporation USA. A buffer error vulnerability exists in Microsoft MapUrlToZone, which can be exploited by an attacker to obtain sensitive information...