The vulnerability in the implementation of the Remote Desktop Protocol (RDP) for Windows operating systems allows a perpetrator to cause a service failure.

The vulnerability of the Remote Desktop Protocol RDP implementation in Windows operating systems is related to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to cause service interruptions by connecting to a vulnerable system using the RDP network...

The vulnerability of the Terminal Services component in Windows operating systems allows a perpetrator to execute arbitrary code.

The vulnerability of the Terminal Services component in Windows operating systems is related to insufficient validation of input data. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of the DirectX component of the Windows operating system, which allows a hacker to disclose protected information

The vulnerability of the DirectX component of the Windows operating system is related to errors in object handling in memory. Exploiting this vulnerability can allow an attacker to disclose sensitive information through a specially created application...

The vulnerability of the Cryptography Next Generation (CNG) service on the Windows operating system allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the Cryptography Next Generation CNG service for the Windows operating system relates to the execution of operations beyond the buffer in memory. Exploiting this vulnerability can allow an attacker, working remotely, to gain unauthorized access to protected information...

The vulnerability of Microsoft Hyper-V’s hardware virtualization technology and the Windows operating system allows a perpetrator to trigger a service failure.

The vulnerability of Microsoft Hyper-V hardware virtualization technology and the Windows operating system is related to insufficient validation of input data. Exploiting this vulnerability can allow a malicious actor to cause service interruptions remotely...

Design/Logic Flaw

Command line arguments could have been injected during Firefox invocation as a shell handler for certain unsupported file types. This required Firefox to be configured as the default handler for a given file type and for a file downloaded to be opened in a third party application that...

CVE-2020-6799

Command line arguments could have been injected during Firefox invocation as a shell handler for certain unsupported file types. This required Firefox to be configured as the default handler for a given file type and for a file downloaded to be opened in a third party application that...

The vulnerability of the win32k component in Windows operating systems, which allows a hacker to increase their privileges

The vulnerability of the win32k component in Windows operating systems is related to errors in memory object handling. Exploiting this vulnerability can allow an attacker to enhance their privileges through a specially created application...

The vulnerability of the win32k component in Windows operating systems, which allows a hacker to increase their privileges

The vulnerability of the win32k component in Windows operating systems is related to errors in memory object handling. Exploiting this vulnerability can allow an attacker to enhance their privileges through a specially created application...

Vulnerability of Windows operating systems, related to errors in processing files with the .LNK extension, allows a hacker to execute arbitrary code.

The vulnerability of Windows operating systems is related to errors in processing files with the extension .LNK. Exploiting this vulnerability allows a remote attacker to execute arbitrary code using a specially crafted .LNK file...

Exploit for CVE-2017-0213

windows-kernel-exploits 简介 windows-kernel-exploits 漏洞列表 Security Bulletin KB Description Operating System - MS17-017 KB4013081 GDI Palette Objects Local Privilege Escalation windows 7/8 - CVE-2017-8464 LNK Remote Code Execution Vulnerability windows 10/8.1/7/2016/2010/2008 - CVE-2017-0213...

Microsoft Windows and Microsoft Windows Server Elevation of Privilege Vulnerability (CNVD-2020-13557)

Microsoft Windows and Microsoft Windows Server are both products of Microsoft Corporation.Microsoft Windows is an operating system for personal devices.Microsoft Windows Server is a server operating system. An elevation of privilege vulnerability exists in Microsoft Windows and Microsoft Windows...

Microsoft Windows and Microsoft Windows Server Elevation of Privilege Vulnerability (CNVD-2020-13559)

Microsoft Windows and Microsoft Windows Server are both products of Microsoft Corporation.Microsoft Windows is an operating system for personal devices.Microsoft Windows Server is a server operating system. An elevation of privilege vulnerability exists in Microsoft Windows and Microsoft Windows...

UBUNTU-CVE-2014-9748

The uvrwlockt fallback implementation for Windows XP and Server 2003 in libuv before 1.7.4 does not properly prevent threads from releasing the locks of other threads, which allows attackers to cause a denial of service deadlock or possibly have unspecified other impact by leveraging a race...

The vulnerability of the win32k component of the Windows operating system, which allows a hacker to increase their privileges

The vulnerability of the win32k component in the Windows operating system is related to insecure management of privileges. Exploiting this vulnerability can allow a hacker to enhance their privileges...

Intel® Processor Graphics Advisory

Summary: A potential security vulnerability in Intel® Processor Graphics may allow information disclosure. Intel is releasing software updates to mitigate this potential vulnerability. Vulnerability Details: CVEID: CVE-2019-14615 Description: Insufficient control flow in certain data structures f...

The vulnerability of the Windows Common Log File System (CLFS) driver in the Windows operating system allows a hacker to disclose protected information.

The vulnerability of the Windows Common Log File System CLFS driver in the Windows operating system is related to errors in memory object handling. Exploiting this vulnerability can allow an attacker to disclose sensitive information through a specially created application...

The vulnerability of the Win32k component of the Windows operating system, which allows a hacker to increase their privileges

The vulnerability of the Win32k component of the Windows operating system is related to errors in memory object handling. Exploiting this vulnerability can allow an attacker to enhance their privileges through a specially created application...

Microsoft Windows Search Indexer elevation of privilege vulnerability (CNVD-2020-16672)

Microsoft Windows is a series of operating systems released by the American company Microsoft. An elevation of privilege vulnerability exists in the way memory objects are handled in Microsoft Windows Search Indexer. An attacker could exploit the vulnerability to execute code with elevated...

The Basics of Exploit Development 1: Win32 Buffer Overflows

In this article we will cover the creation of an exploit for a 32-bit Windows application vulnerable to a buffer overflow using X64dbg and the associated ERC plugin. As this is the first article in this series, we will be looking at an exploit where we have a complete EIP overwrite and ESP points...