PT-2020-4273 · Microsoft · Windows Com Server +1

Name of the Vulnerable Software and Affected Versions: Windows COM Server affected versions not specified Description: The issue is related to errors in processing COM object creation, which can allow an attacker to elevate their privileges using a specially crafted application. To exploit this, ...

PT-2020-4266 · Microsoft · Windows

Name of the Vulnerable Software and Affected Versions: Windows affected versions not specified Description: The issue is related to an elevation of privilege vulnerability that exists when Windows improperly handles COM object creation. This could allow an attacker to run arbitrary code with...

The vulnerability of the Microsoft Component Object Model (COM) in Windows operating systems allows a hacker to execute arbitrary code.

The vulnerability of the Microsoft Component Object Model COM in Windows operating systems is related to errors in processing input data. Exploiting this vulnerability can allow a remote attacker to execute arbitrary code...

The vulnerability of the Microsoft COM component in Windows operating systems, which allows a hacker to escalate their privileges

The vulnerability of the Microsoft Component Object Model COM in Windows operating systems is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to enhance their privileges through a specially created file...

CVE-2020-1507

An elevation of privilege vulnerability exists in the way that Microsoft COM for Windows handles objects in memory. An attacker who successfully exploited the vulnerability could gain elevated privileges on a targeted system. To exploit the vulnerability, a user would have to open a specially...

CVE-2020-0922

A remote code execution vulnerability exists in the way that Microsoft COM for Windows handles objects in memory. An attacker who successfully exploited the vulnerability could execute arbitrary code on a target system. To exploit the vulnerability, a user would have to open a specially crafted...

Microsoft COM for Windows Remote Code Execution Vulnerability (CNVD-2021-01045)

Microsoft Windows and Microsoft Windows Server are both products of Microsoft Corporation.Microsoft Windows is an operating system for personal devices.Microsoft Windows Server is a server operating system. Windows COM is a binary interface standard for a set of software components from Microsoft...

PT-2020-3904 · Microsoft · Windows 10 +2

Name of the Vulnerable Software and Affected Versions: Microsoft Windows CloudExperienceHost versions prior to the fixed version Windows 10 versions 1909, 2004 Description: An elevation of privilege issue exists due to the failure of Microsoft Windows CloudExperienceHost to properly check COM...

PT-2020-3926 · Microsoft · Windows +1

Name of the Vulnerable Software and Affected Versions: Microsoft Component Object Model COM affected versions not specified Description: The issue is related to errors in processing input data in the Microsoft Component Object Model COM component of Windows operating systems. It allows a remote...

Microsoft Windows COM Server Elevation of Privilege Vulnerability

Microsoft Windows and Microsoft Windows Server are both products of Microsoft Corporation.Microsoft Windows is an operating system for personal devices.Microsoft Windows Server is a server operating system. An elevation of privilege vulnerability exists in Microsoft Windows COM Server, which aris...

The vulnerability of the Windows COM Server component of the Windows operating system, which allows attackers to escalate their privileges

The vulnerability of the Windows COM Server component of the operating system is related to errors in the processing of COM objects. Exploiting this vulnerability can allow attackers to enhance their privileges through a specially created application...

The vulnerability of the Microsoft Component Object Model (COM) in Windows operating systems allows a hacker to execute arbitrary code.

The vulnerability of the Microsoft Component Object Model COM in Windows operating systems is related to insecure management of privileges. Exploiting this vulnerability allows a malicious actor to execute arbitrary code through a specially created application...

CVE-2020-1311

An elevation of privilege vulnerability exists when Component Object Model COM client uses special case IIDs, aka 'Component Object Model Elevation of Privilege Vulnerability'...

CVE-2020-1311

An elevation of privilege vulnerability exists when Component Object Model COM client uses special case IIDs, aka 'Component Object Model Elevation of Privilege Vulnerability'...

KLA11806 Multiple vulnerabilities in Microsoft Products (ESU)

Multiple vulnerabilities were found in Microsoft Products Extended Support Update. Malicious users can exploit these vulnerabilities to obtain sensitive information, execute arbitrary code, gain privileges, cause denial of service, bypass security restrictions. Below is a complete list of...

Foxit PhantomPDF COM Object Mishandling Vulnerability

PhantomPDF is a Chinese Foxit Foxit company for enterprise-level users of PDF document processing software. A COM object mishandling vulnerability exists in Foxit PhantomPDF versions prior to 8.3.6 when using Microsoft Word. The vulnerability stems from the program not handling COM objects...

Fedora: Security Advisory for json-c (FEDORA-2020-847ad856ab)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

[SECURITY] Fedora 30 Update: json-c-0.13.1-12.fc30

JSON-C implements a reference counting object model that allows you to easily construct JSON objects in C, output them as JSON formatted strings and parse JSON formatted strings back into the C representation of JSON objects. It aims to conform to RFC 7159...

CVE-2020-1066

An elevation of privilege vulnerability exists in .NET Framework which could allow an attacker to elevate their privilege level.To exploit the vulnerability, an attacker would first have to access the local machine, and then run a malicious program.The update addresses the vulnerability by...

CVE-2020-7809

ALSong 3.46 and earlier version contain a Document Object Model DOM based cross-site scripting vulnerability caused by improper validation of user input. A remote attacker could exploit this vulnerability by tricking the victim to open ALSong Albumsab file...