Lucene search
K

99 matches found

Exploit DB
Exploit DB
added 2015/09/22 12:0 a.m.42 views

Microsoft Windows Kernel - Use-After-Free with Cursor Object (MS15-097)

Source: https://code.google.com/p/google-security-research/issues/detail?id=457 --- The attached testcase crashes Win 7 with Special Pool enabled while accessing the freed global cursor object gpqCursor​. See poc.cpp for instructions on how to compile and run. Proof of Concept:...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2015/09/22 12:0 a.m.42 views

Microsoft Windows Kernel - 'NtGdiStretchBlt' Pool Buffer Overflow (MS15-097)

Source: https://code.google.com/p/google-security-research/issues/detail?id=415 --- Tested on Win 7 32-bit with Special Pool enabled. Multiple pool buffer overflows can be triggered through the NtGdiStretchBlt system call. The attached PoC demonstrates a write overflow and another read over flow...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2015/09/22 12:0 a.m.31 views

Microsoft Windows Kernel - bGetRealizedBrush Use-After-Free (MS15-097)

Microsoft Windows Kernel - bGetRealizedBrush Use-After-Free MS15-097 Source: https://code.google.com/p/google-security-research/issues/detail?id=458 --- The attached testcase crashes Win 7 with Special Pool on win32k while accessing freed memory in bGetRealizedBrush​​. --- Proof of Concept:...

0.4AI score
Exploits0
CNVD
CNVD
added 2015/09/09 12:0 a.m.6 views

Microsoft Windows Kernel Mode Driver Elevation of Privilege Vulnerability

Microsoft Windows Kernel Mode Driver is a monitor driver. An elevation of privilege vulnerability exists in Microsoft Windows Kernel Mode Driver, which can be exploited by an attacker to elevate privileges and execute arbitrary code...

8.2CVSS9.3AI score0.10929EPSS
Exploits1References1
Prion
Prion
added 2015/02/11 3:0 a.m.22 views

Privilege escalation

win32k.sys in the kernel-mode drivers in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows local users to gain privileges or cause a denial of service...

6.9CVSS7AI score0.04536EPSS
Exploits3References3Affected Software5
OpenVAS
OpenVAS
added 2014/03/12 12:0 a.m.42 views

Microsoft Windows Kernel Privilege Escalation Vulnerabilities (2930275)

This host is missing an important security update according to Microsoft Bulletin MS14-015 OpenVAS Vulnerability Test $Id: gbms14-015.nasl 6724 2017-07-14 09:57:17Z teissa $ Microsoft Windows Kernel Privilege Escalation Vulnerabilities 2930275 Authors: Antu Sanadi Copyright: Copyright C 2014...

7.2CVSS0.4AI score0.02947EPSS
Exploits2References3
Tenable Nessus
Tenable Nessus
added 2013/11/29 12:0 a.m.52 views

KB2914486: Vulnerability in Microsoft Windows Kernel Could Allow Elevation of Privilege

The remote host has an unspecified privilege elevation vulnerability in NDProxy.sys, a system-provided communications driver. Successful exploitation of this vulnerability could allow an attacker to run arbitrary code in kernel mode. Additionally, the attacker could view, change or even delete...

0.9AI score0.34893EPSS
Exploits16References3
OpenVAS
OpenVAS
added 2013/08/14 12:0 a.m.28 views

Microsoft Windows Kernel Privilege Elevation Vulnerabilities (2859537)

This host is missing an important security update according to Microsoft Bulletin MS13-063. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

7.5CVSS4.9AI score0.07575EPSS
Exploits3References6
securityvulns
securityvulns
added 2011/11/09 12:0 a.m.63 views

Microsoft Windows kernel UDP processing integer overflow

Integer overflow leads to code execution via the flow of UDP packets to closed port...

10CVSS4.9AI score0.33745EPSS
Exploits1Affected Software1
Check Point Advisories
Check Point Advisories
added 2011/04/03 12:0 a.m.16 views

Microsoft Windows Kernel win32k.sys DragObject Code Execution (MS11-034; CVE-2011-1238)

The Windows kernel is the core of the operating system. It provides system-level services such as device management and memory management, allocates processor time to processes, and manages error handling. An elevation of privilege vulnerability has been reported in the Windows kernel. The...

7.2CVSS6.2AI score0.01434EPSS
Exploits0
securityvulns
securityvulns
added 2010/06/14 12:0 a.m.63 views

VUPEN Security Research - Microsoft Windows Kernel "GetDCEx()" Memory Corruption Vulnerability (CVE-2010-0484)

VUPEN Security Research - Microsoft Windows Kernel "GetDCEx" Memory Corruption Vulnerability CVE-2010-0484 http://www.vupen.com/english/research.php I. BACKGROUND --------------------- "Microsoft Windows is the operating system developed by Microsoft. As of May 2010, Windows was the most widely...

6.8CVSS7.7AI score0.01344EPSS
Exploits1
Check Point Advisories
Check Point Advisories
added 2009/03/10 12:0 a.m.47 views

Microsoft Windows Kernel Input Validation Remote Code Execution (MS09-006; CVE-2009-0081)

The Windows kernel is the core of the operating system. It provides system level services, allocates processor time to processes, and manages error handling. A remote code execution vulnerability has been discovered in the Windows kernel.The vulnerability is due to an error in the Windows kernel...

9.3CVSS7.3AI score0.32106EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2008/10/15 12:0 a.m.47 views

MS08-061: Microsoft Windows Kernel Multiple Privilege Elevation (954211)

The remote host contains a version of the Windows kernel that is vulnerable to a security flaw that could allow a local user to elevate his privileges or to crash it therefore causing a denial of service. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid34406;...

7.2CVSS5.4AI score0.019EPSS
Exploits1References4
securityvulns
securityvulns
added 2008/10/09 12:0 a.m.44 views

[W02-1008] GearSoftware Powered Products Local Privilege Escalation (Microsoft Windows Kernel IopfCompleteRequest Integer Overflow)

HTML FORMATED Advisory http://www.wintercore.com/advisories/advisoryW021008.html TEXT VERSION GearSoftware Powered Products Local Privilege Escalation + GEARASpiWDM.sys Insecure Method + Microsoft Windows Kernel IopfCompleteRequest Integer Overflow :: Summary 1. Background 2. Non-technical...

0.3AI score
Exploits0
CERT
CERT
added 2007/04/10 12:0 a.m.32 views

Microsoft Windows Kernel vulnerable to privilege escalation

Overview The Microsoft Windows Kernel contains a privilege escalation vulnerability that may allow a local attacker to take control of the system. Description The Microsoft Windows Kernel fails to properly set permissions when mapping to a memory segment. By running a specially crafted applicatio...

7.2CVSS6.8AI score0.02686EPSS
Exploits1References1
CERT
CERT
added 2005/01/07 12:0 a.m.36 views

Microsoft Windows kernel vulnerable to denial-of-service condition via animated cursor (.ani) rate number

Overview A vulnerability exists in the way the Microsoft Windows kernel processes animated cursor .ani files with a rate number set to zero. Exploitation of this vulnerability may allow a remote attacker to cause a denial-of-service condition. Description A vulnerability exists in the way the...

5CVSS5.7AI score0.6236EPSS
Exploits0References4
securityvulns
securityvulns
added 2004/12/24 12:0 a.m.27 views

Microsoft Windows Kernel ANI File Parsing Crash and DOS Vulnerability

Security Advisory Advisory: ADLAB-04005Microsoft Windows Kernel ANI File Parsing Crash and Dos Vulnerability Class: Design Error DATE:12/20/2004 Remote: Yes Vulnerable: Windows NT Windows 2000 SP0 Windows 2000 SP1 Windows 2000 SP2 Windows 2000 SP3 Windows 2000 SP4 Windows XP SP0 Windows XP SP1...

0.8AI score
Exploits0
Symantec
Symantec
added 2004/10/12 12:0 a.m.22 views

Microsoft Windows Kernel Virtual DOS Machine Privilege Escalation Vulnerability

Description Microsoft Windows Kernel Virtual DOS Machine is reported prone to a local privilege-escalation vulnerability. The Microsoft Virtual DOS Machine VDM is a protected environment that emulates MS-DOS on Windows NT-based operating systems. This issue is caused by an access-validation error...

1.7AI score
Exploits0References3Affected Software7
Microsoft Security Update
Microsoft Security Update
added 1970/01/01 12:0 a.m.7 views

Security Update for Windows 2000 (KB920958)

A security issue has been identified in the Windows Kernel that could allow an attacker to compromise your Windows-based system and gain control over it. You can help protect your computer by installing this update from Microsoft. After you install this item, you may have to restart your computer...

2.9AI score
Exploits0
Rows per page
Query Builder