19 matches found
PT-2024-5709 · Microsoft · Windows
Name of the Vulnerable Software and Affected Versions: Windows affected versions not specified Description: The issue is related to a buffer overflow in memory, which can lead to the disclosure of protected information. This can be exploited by attackers to obtain sensitive information and affect...
PT-2024-1151 · Microsoft · Windows Cryptographic Services +1
Name of the Vulnerable Software and Affected Versions: Windows Cryptographic Services affected versions not specified Description: The issue is related to insufficient access control mechanisms in Windows Cryptographic Services, which can be exploited to disclose protected information. There is n...
Microsoft Windows 11 - (apds.dll) DLL hijacking (Forced) Exploit
--------------------------------------------------------- Title: Microsoft Windows 11 - 'apds.dll' DLL hijacking Forced Date: 2023-09-01 Author: Moein Shahabi Vendor: https://www.microsoft.com Version: Windows 11 Pro 10.0.22621 Tested on: Windows 11x64 eng...
A segmentation fault flaw was found in the Advancecomp package. This may lead to decreased availability.
...
Microsoft Excel 365 MSO (Version 2302 Build 16.0.16130.20186) 64-bit - Remote Code Execution (RCE)
Exploit Title: Microsoft Excel 365 MSO Version 2302 Build 16.0.16130.20186 64-bit - Remote Code Execution RCE Exploit Author: nu11secur1ty Date: 03.16.2023 Vendor: https://www.microsoft.com/en-us/microsoft-365/excel Software: https://www.microsoft.com/en-us/microsoft-365/excel Reference:...
Microsoft Exchange Active Directory Topology 15.02.1118.007 - Service MSExchangeADTopology Unquoted
Exploit Title: Microsoft Exchange Active Directory Topology 15.02.1118.007 - 'Service MSExchangeADTopology' Unquoted Service Path Exploit Author: Milad Karimi Ex3ptionaL Vendor : Microsoft Version : 15.02.1118.007 Tested on OS: Microsoft Exchange Server 2019 CU12 PoC : ============== C:\sc qc...
Vulristics May 2022 Update: CVSS redefinitions and bulk adding Microsoft products from MS CVE data
Hello everyone! In this episode, I want to talk about the latest updates to my open source vulnerability prioritization project Vulristics. Alternative video link for Russia: CVSS redefinitions A fairly common problem: we have a CVE without an available CVSS vector and score. For example, this wa...
PT-2022-1894 · Microsoft · Azure Site Recovery
Name of the Vulnerable Software and Affected Versions: Azure Site Recovery affected versions not specified Description: The issue is related to incorrect code generation management in Azure Site Recovery. It allows a remote attacker to execute arbitrary code. Recommendations: At the moment, there...
PT-2020-3805 · Microsoft · Windows Backup Engine +1
Name of the Vulnerable Software and Affected Versions: Windows Backup Engine affected versions not specified Description: The issue is related to an elevation of privilege vulnerability that occurs when the Windows Backup Engine improperly handles memory. To exploit this, an attacker must first...
Internet Explorer 9 XSS Filter Bypass
No description provided by source. Internet Explorer 9 XSS Filter Bypass Discovered by: Jean Pascal Pereira [email protected] Vendor information: Internet Explorer formerly Microsoft Internet Explorer and Windows Internet Explorer, commonly abbreviated IE or MSIE is a series of graphical web...
PT-2013-2098 · Microsoft · Internet Explorer
Name of the Vulnerable Software and Affected Versions: Microsoft Internet Explorer versions 6 through 10 Description: The issue is related to a use-after-free vulnerability that allows remote attackers to execute arbitrary code via a crafted web site. This is achieved by triggering access to a...
Microsoft Publisher 2013 - Crash (PoC)
Microsoft Publisher 2013 - Crash PoC Title : Microsoft Publisher 2013 memory corruption Version : Microsoft Office Publisher professional Plus 2013 Date : 2012-11-11 Vendor : http://office.microsoft.com Impact : Med/High Contact : coolkaveh at rocketmail.com Twitter : @coolkaveh tested : Windows ...
Microsoft Publisher 2013 - Crash (PoC)
Title : Microsoft Publisher 2013 memory corruption Version : Microsoft Office Publisher professional Plus 2013 Date : 2012-11-11 Vendor : http://office.microsoft.com Impact : Med/High Contact : coolkaveh at rocketmail.com Twitter : @coolkaveh tested : Windows 7 Bug : ---- memory corruption during...
Microsoft Excel - SxView Record Parsing Heap Memory Corruption
''' | / |/ \ /\ | | | | \ | \ / | | | | / \ | | | | | | | |/| | | | |/ /\ | | | | day 29 binary analysis | | | | || / \ || | | | || ||// \/|/ ''' Title : Microsoft Excel SxView Record Parsing Heap Memory Corruption Version : Excel 2002 SP3 Analysis : http://www.abysssec.com Vendor :...
Immunity Canvas: MSXEXCH50
Name| msxexch50 ---|--- CVE| CVE-2003-0714 Exploit Pack| CANVAS Description| MS Exchange 2000 XEXCH50 integer overflow ms03-046 Notes| CVE Name: CVE-2003-0714 VENDOR: Microsoft MSADV: MS03-046 MSRC: http://www.microsoft.com/technet/security/bulletin/ms03-046.asp NOTE: CVE Url:...
MS:154F5A6D-988A-4627-A4B2-EBA5D0FFC3BF
...
Security update 1970-01-01
...
Security update 1970-01-01
...
Security update 1970-01-01
...