3059 matches found
CVE-2019-0588
CVE-2019-0588 affects Microsoft Exchange Server. The vulnerability is an information disclosure arising when the Exchange PowerShell API grants calendar contributors more view permissions than intended. Root cause: mis-scoped permissions in the PowerShell API lead to unauthorized calendar data ex...
January 8, 2019—KB4480975 (Monthly Rollup)
January 8, 2019—KB4480975 Monthly Rollup Improvements and fixes This security update addresses the following issues: Provides protections against an additional subclass of speculative execution side-channel vulnerability known as Speculative Store Bypass CVE-2018-3639 for AMD-based computers. The...
January 8, 2019—KB4480962 (OS Build 10240.18094)
January 8, 2019—KB4480962 OS Build 10240.18094 Improvements and fixes This update includes quality improvements. No new operating system features are being introduced in this update. Key changes include: Addresses an issue that affects PowerShell remoting loop back using non-administrator account...
January 8, 2019—KB4480116 (OS Build 17763.253)
January 8, 2019—KB4480116 OS Build 17763.253 Improvements and fixes This update includes quality improvements. No new operating system features are being introduced in this update. Key changes include: Addresses an issue that affects PowerShell remoting loop back using non-administrator accounts...
Microsoft Exchange Information Disclosure Vulnerability
An information disclosure vulnerability exists when the Microsoft Exchange PowerShell API grants calendar contributors more view permissions than intended. To exploit this vulnerability, an attacker would need to be granted contributor access to an Exchange Calendar by an administrator via...
January 8, 2019—KB4480972 (Security-only update)
January 8, 2019—KB4480972 Security-only update Improvements and fixes This security update includes quality improvements. No new operating system features are being introduced in this update. Key changes include: Provides protections against an additional subclass of speculative execution...
January 8, 2019—KB4480963 (Monthly Rollup)
January 8, 2019—KB4480963 Monthly Rollup Improvements and fixes This security update addresses the following issues: Provides protections against an additional subclass of speculative execution side-channel vulnerability known as Speculative Store Bypass CVE-2018-3639 for AMD-based computers. The...
January 8, 2019—KB4480957 (Security-only update)
January 8, 2019—KB4480957 Security-only update Improvements and fixes This security update includes quality improvements. No new operating system features are being introduced in this update. Key changes include: Provides protections against an additional subclass of speculative execution...
January 8, 2019—KB4480970 (Monthly Rollup)
January 8, 2019—KB4480970 Monthly Rollup Improvements and fixes This security update addresses the following issues: Provides protections against an additional subclass of speculative execution side-channel vulnerability known as Speculative Store Bypass CVE-2018-3639 for AMD-based computers. The...
January 8, 2019—KB4480964 (Security-only update)
January 8, 2019—KB4480964 Security-only update Improvements and fixes This security update includes quality improvements. No new operating system features are being introduced in this update. Key changes include: Provides protections against an additional subclass of speculative execution...
January 8, 2019—KB4480960 (Security-only update)
January 8, 2019—KB4480960 Security-only update Improvements and fixes This security update includes quality improvements. No new operating system features are being introduced in this update. Key changes include: Provides protections against an additional subclass of speculative execution...
January 8, 2019—KB4480978 (OS Build 16299.904)
January 8, 2019—KB4480978 OS Build 16299.904 Improvements and fixes This update includes quality improvements. No new operating system features are being introduced in this update. Key changes include: Addresses an issue that affects PowerShell remoting loop back using non-administrator accounts...
January 8, 2019—KB4480968 (Monthly Rollup)
January 8, 2019—KB4480968 Monthly Rollup Improvements and fixes This security update addresses the following issues: Provides protections against an additional subclass of speculative execution side-channel vulnerability known as Speculative Store Bypass CVE-2018-3639 for AMD-based computers. The...
January 8, 2019—KB4480966 (OS Build 17134.523)
January 8, 2019—KB4480966 OS Build 17134.523 Improvements and fixes This update includes quality improvements. No new operating system features are being introduced in this update. Key changes include: Addresses an issue that affects PowerShell remoting loop back using non-administrator accounts...
January 8, 2019—KB4480973 (OS Build 15063.1563)
January 8, 2019—KB4480973 OS Build 15063.1563 Windows 10, version 1703, reached end of service on October 8, 2018 . Devices running Windows 10 Home, Pro, Pro for Workstation, and IoT Core editions will no longer receive monthly security and quality updates that contain protection from the latest...
CVE-2018-6668
A whitelist bypass vulnerability in McAfee Application Control / Change Control 7.0.1 and before allows execution bypass, for example, with simple DLL through interpreters such as PowerShell...
Security feature bypass
A whitelist bypass vulnerability in McAfee Application Control / Change Control 7.0.1 and before allows execution bypass, for example, with simple DLL through interpreters such as PowerShell...
CVE-2018-6668 Bypass Application Control with simple DLL
A whitelist bypass vulnerability in McAfee Application Control / Change Control 7.0.1 and before allows execution bypass, for example, with simple DLL through interpreters such as PowerShell...
CVE-2018-6668 Bypass Application Control with simple DLL
A whitelist bypass vulnerability in McAfee Application Control / Change Control 7.0.1 and before allows execution bypass, for example, with simple DLL through interpreters such as PowerShell...
CVE-2018-6668
CVE-2018-6668 affects McAfee Application Control and Change Control, version 7.0.1 and earlier. A whitelist bypass vulnerability allows execution bypass, e.g., via a simple DLL through interpreters such as PowerShell. The connected sources confirm the issue and its impact is constrained to bypass...