Microsoft Windows ALPC 竞争条件问题漏洞

Microsoft Windows ALPC is a process-to-process communication tool for high-speed messaging from Microsoft, Inc. An elevation of privilege vulnerability exists in Microsoft Windows ALPC, which stems from improper privilege assignment in the application and can be exploited by an attacker to cause ...

The vulnerability in the implementation of the Internet Key Exchange (IKE) protocol in the Microsoft Windows operating system allows a hacker to induce a service failure.

The vulnerability of the Internet Key Exchange IKE protocol implementation in Microsoft Windows operating systems is related to insufficient validation of input data. Exploiting this vulnerability can allow a malicious actor to cause service failures by sending specially crafted IKEv1 packets...

The vulnerability of Microsoft Edge browser on Windows operating systems, related to synchronization errors when using a shared resource, allows attackers to perform spear-phishing attacks.

The vulnerability of Microsoft Edge browser on Windows operating systems is related to synchronization errors when using a shared resource. Exploiting this vulnerability allows a remote attacker to perform spear-phishing attacks...

The vulnerability of Mozilla Firefox and Mozilla Firefox ESR browsers for Windows, related to the lack of measures taken to clean data at the operating level, allows attackers to execute arbitrary commands.

The vulnerability of Mozilla Firefox and Mozilla Firefox ESR browsers for Windows is related to the lack of measures taken to clean data at the operating level. Exploiting this vulnerability allows a malicious actor to execute arbitrary commands remotely...

CVE-2022-34718

Windows TCP/IP Remote Code Execution Vulnerability...

Microsoft Windows 安全漏洞

Microsoft Windows is a suite of operating systems for use on personal devices from the U.S.-based Microsoft Corporation Microsoft. A security vulnerability exists in Microsoft Windows OLE. The following products and versions are affected: Windows 11 for ARM64-based Systems,Windows 10 Version 21H2...

Microsoft ODBC Driver 安全漏洞

Microsoft ODBC Driver is a driver from Microsoft. It allows applications to access data in a database management system DBMS using SQL as the standard for accessing data. A security vulnerability exists in the Microsoft Windows ODBC Driver. The following products and versions are affected: Window...

PT-2022-5739 · Microsoft · Odbc Driver +1

Name of the Vulnerable Software and Affected Versions: Microsoft ODBC Driver affected versions not specified Description: The issue exists due to insufficient input validation in the Microsoft ODBC driver for the Windows operating system. This allows a remote attacker to execute arbitrary code. T...

PT-2022-5745 · Microsoft · Windows +1

Name of the Vulnerable Software and Affected Versions: Microsoft WDAC OLE DB provider for SQL Server affected versions not specified Description: The issue exists due to insufficient input validation in the OLE DB driver for SQL Server on the Windows operating system. This allows a remote attacke...

PT-2022-5733 · Microsoft · Directx Graphics Kernel +1

Name of the Vulnerable Software and Affected Versions: DirectX Graphics Kernel affected versions not specified Description: The issue is related to unsafe privilege management in the DirectX Graphics Kernel driver of Microsoft Windows operating systems. This can allow an attacker to execute...

The vulnerability of the Win32k.sys component of the Windows operating system, which allows a hacker to increase their privileges

The vulnerability of the Microsoft Windows operating system is related to access control errors. Exploiting this vulnerability can allow an attacker to disclose protected information through a specially created application...

The vulnerability of the Point-to-Point Protocol (PPP) implementation in the Windows operating system arises from insufficient validation of input data, allowing a perpetrator to cause service failure.

The vulnerability of the Point-to-Point Protocol PPP implementation in the Windows operating system exists due to insufficient validation of input data. Exploiting this vulnerability can allow a malicious actor to cause service failures remotely...

The vulnerability of the Storage Spaces Direct distributed storage function in Windows operating systems allows attackers to exploit their privileges.

The vulnerability of the Storage Spaces Direct distributed storage function in Windows operating systems is related to deficiencies in access control. Exploiting this vulnerability can allow attackers to enhance their privileges...

The vulnerability of the Secure Socket Tunneling Protocol (SSTP) implementation in the Windows operating system allows a hacker to execute arbitrary code.

The vulnerability of the Secure Socket Tunneling Protocol SSTP implementation in the Windows operating system is related to synchronization errors when using a shared resource. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of the VMware Tools utility set for Windows operating systems allows attackers to execute XXE attacks.

The vulnerability of the VMware Tools utility set for Windows operating systems is related to incorrect restrictions on XML references to external objects. Exploiting this vulnerability could allow attackers to execute XXE attacks...

The vulnerability of the implementation of the Point-to-Point Protocol (PPP) in the Windows operating system allows a hacker to execute arbitrary code.

The vulnerability of the Point-to-Point Protocol PPP implementation in the Windows operating system exists due to insufficient validation of input data. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of the ATA Port driver for the Windows operating system, which allows a hacker to gain elevated privileges

The vulnerability of the ATA Port driver for the Windows operating system is related to deficiencies in access control. Exploiting this vulnerability can allow attackers to enhance their privileges...

The vulnerability of the Windows operating system’s Support Diagnostic Tool (MSDT), which allows a malicious individual to execute arbitrary code.

The vulnerability of the Windows operating system’s diagnostic data collection and troubleshooting tool, the Support Diagnostic Tool MSDT, is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

The vulnerability of the Secure Socket Tunneling Protocol (SSTP) implementation in the Windows operating system allows a hacker to execute arbitrary code.

The vulnerability of the Secure Socket Tunneling Protocol SSTP implementation in the Windows operating system is related to synchronization errors when using a shared resource. Exploiting this vulnerability allows an attacker who operates remotely to execute arbitrary code...

Microsoft Windows Point-to-Point Tunneling Protocol 安全漏洞

Microsoft Windows Point-to-Point Tunneling Protocol PPTP is a network protocol from Microsoft that enables the secure transmission of data from remote clients to private corporate servers by creating a virtual private network VPN over a TCP/IP-based data network. VPN. A security vulnerability...