MiracleLinux 3 : samba-3.0.33-3.38.0.1.AXS3 (AXSA:2012-264:01)

The remote MiracleLinux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2012-264:01 advisory. Samba is the suite of programs by which a lot of PC-related machines share files, printers, and other information such as lists of available files an...

November 11, 2025—KB5068908 (Security-only update)

November 11, 2025—KB5068908 Security-only update Windows Secure Boot certificate expirationImportant: Secure Boot certificates used by most Windows devices are set to expire starting in June 2026. Microsoft has been updating these certificates on consumer and non-managed business devices for the...

EUVD-2018-10703

Malware in sbrugna...

Microsoft Windows NTFS 缓冲区错误漏洞

Microsoft Windows NTFS is a file system from Microsoft USA that serves computer files. The file system has error warning, disk self-healing, and logging capabilities. A buffer error vulnerability exists in Microsoft Windows NTFS. An attacker could exploit the vulnerability to elevate privileges...

Microsoft Windows 安全漏洞

Microsoft Windows is a suite of operating systems for use on personal devices from Microsoft USA. A security vulnerability exists in Microsoft Windows. By exploiting this vulnerability, an attacker can bypass certain features. The following products and versions are affected:Windows Server 2025...

Microsoft Windows Deployment Services Unattend Retrieval

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Microsoft Windows Deployment Services Unattend Retrieval', 'Description' = %q This module retrieves the client unattend file from Windows...

Microsoft Windows Distributed File System Security Vulnerability

Microsoft Windows is a suite of operating systems for use on personal devices from Microsoft Corporation USA. A security vulnerability exists in Microsoft Windows Distributed File System DFS. An attacker exploiting this vulnerability could remotely execute code. The following products and version...

Unable to Create Memory Dump from Windows 2008 R2 Servers after Installing Service Pack 1

Unable to get the operating system to generate complete memory dumps on Windows 2008 R2 servers after updating the server to Service Pack 1 for Windows 2008 R2. The issue was observed on XenApp 6 servers in various environments: Physical servers XenServer virtual machine XenServer with Provisioni...

Microsoft Windows Cluster Server 安全漏洞

Microsoft Windows is a suite of operating systems for use on personal devices from the U.S.-based Microsoft Corporation Microsoft. A security vulnerability exists in Microsoft Windows Cluster Server. An attacker exploiting this vulnerability could remotely execute code. The following products and...

Microsoft Windows Common Log File System Driver 安全漏洞

The Microsoft Windows Common Log File System Driver is Microsoft's Common Log File System CLFS API that provides a high-performance, general-purpose log file subsystem that can be used by specialized client applications and shared by multiple clients to optimize logging and access. access. A...

Microsoft Windows Kerberos 安全漏洞

Microsoft Windows Kerberos is a software for authentication in network clusters from Microsoft Corporation.Kerberos also serves as a network authentication protocol designed to provide strong authentication services to client/server applications via a key system. A security vulnerability exists i...

Microsoft Windows iSCSI 安全漏洞

Microsoft Windows is a suite of operating systems for use on personal devices from Microsoft Corporation USA. A security vulnerability exists in Microsoft Windows iSCSI. The following products and editions are affected:Windows Server 2012,Windows Server 2012 Server Core installation,Windows Serve...

Microsoft Windows Hyper-V 信息泄露漏洞

Microsoft Windows Hyper-V is an application from Microsoft USA. A system hypervisor virtualization technology that enables desktop virtualization. An information disclosure vulnerability exists in Microsoft Windows Hyper-V. The following products and editions are affected: Windows 10 Version 21H1...

Detections Released for ESU Updates on EOL Windows 7, 2008 and 2008 R2

For the February 2020 Patch Tuesday, Microsoft released security updates for Windows 7, 2008 and 2008 R2 systems which are already end of life. Qualys released Patch Tuesday detections QIDs which check for these new ESU patches as well. Update: Qualys released IG QID 45424 to identify the presenc...

New EOL QIDs for Microsoft Windows 7 and 2008/R2

Qualys Vulnerability Signature, version 2.4.815-2, will include EOL QIDs detections for end-of-life software for Windows 7, Windows 2008, and Windows 2008 R2. Customers will be able to scan the QIDs shown below using Qualys Vulnerability Management VM: QID 105859 - EOL/Obsolete Operating System:...

Exploit for Use After Free in Microsoft

CVE-2019-0708 initial exploit for CVE-2019-0708, BlueKeep CVE-...

Restored UEFI-based Windows 2008 R2 SP1 cannot be booted in Hyper-V environment

Challenge After successfully restoring a UEFI-based machine running Server 2008 R2 SP1 to a Hyper-V host, the VM fails to boot. Cause The machine fails to boot due to a machine configuration that conflicts with Hyper-V. For Hyper-V guest Virtual Machines, Server 2008 R2 is only support for use wi...

Buffer overflow

WebAccess/SCADA, WebAccess/SCADA Version 8.3.2 installed on Windows 2008 R2 SP1. Lack of proper validation of user supplied input may allow an attacker to cause the overflow of a buffer on the stack...

CVE-2018-18999

WebAccess/SCADA, WebAccess/SCADA Version 8.3.2 installed on Windows 2008 R2 SP1. Lack of proper validation of user supplied input may allow an attacker to cause the overflow of a buffer on the stack...

CVE-2018-18999

WebAccess/SCADA, WebAccess/SCADA Version 8.3.2 installed on Windows 2008 R2 SP1. Lack of proper validation of user supplied input may allow an attacker to cause the overflow of a buffer on the stack...