Microsoft Windows Remote Desktop Protocol 缓冲区错误漏洞

Microsoft Windows Remote Desktop Protocol RDP is a Microsoft application for connecting to remote Windows desktops. A buffer error vulnerability exists in Microsoft Windows Remote Desktop Protocol. The following products and versions are affected: Windows 10 Version 21H2 for ARM64-based...

Microsoft Windows 竞争条件问题漏洞

Microsoft Windows is a suite of operating systems for use on personal devices from Microsoft Corporation USA. A vulnerability exists in the Microsoft Windows DWM Core Library for competitive conditions. The following products and versions are affected: Windows Server, version 20H2 Server Core...

Microsoft Windows 安全漏洞

Microsoft Windows is a suite of operating systems for use on personal devices from the U.S.-based Microsoft Corporation Microsoft. A security vulnerability exists in the Microsoft Windows HTTP Protocol Stack. The following products and editions are affected:Windows 10 Version 1809 for 32-bit...

Microsoft Windows Local Security Authority Subsystem Service 安全特征问题漏洞

The Microsoft Windows Local Security Authority Subsystem Service is an internal Microsoft program that runs Windows system security policies. It authenticates users when they log on to a computer standalone or server, manages user password changes, and generates access characters. It also leaves...

PT-2022-1513 · Microsoft · Windows

Name of the Vulnerable Software and Affected Versions: Windows affected versions not specified Description: The issue is related to insecure privilege management in the Tablet Windows User Interface Application Core component of the Windows operating system. Exploitation of this issue may allow a...

PT-2022-1504 · Microsoft · Windows Accounts Control +1

Name of the Vulnerable Software and Affected Versions: Windows Accounts Control affected versions not specified Description: The issue is related to insecure privilege management in the Windows Accounts Control component of the Windows operating system. It allows an attacker to elevate their...

PT-2022-1495 · Microsoft · Windows

Name of the Vulnerable Software and Affected Versions: Windows affected versions not specified Description: The issue is related to the incorrect clearing or release of resources in the Windows IKE extension, which can lead to a denial-of-service condition. This can be exploited by a remote...

The vulnerability of the isolated programming environment AppContainer in Microsoft Windows operating systems allows attackers to circumvent security restrictions and gain increased privileges.

The vulnerability of the isolated programming environment AppContainer in Microsoft Windows operating systems is related to deficiencies in access control. Exploiting this vulnerability can allow attackers to circumvent security restrictions and enhance their privileges...

The vulnerability in the Google Updater application for browser-based downloads in Google Chrome and the Windows operating system arises from insecure privilege management. This allows a malicious individual to escalate their privileges through a created file.

The vulnerability of the Google Updater application for browser-based downloads in Google Chrome and Windows operating systems is related to insecure management of privileges. Exploiting this vulnerability allows a malicious actor to elevate their privileges through a specially created file...

The vulnerability of the Hyper-V hardware virtualization system of the Microsoft Windows operating system, which allows a hacker to trigger a service failure.

The vulnerability of the Hyper-V hardware virtualization technology of the Microsoft Windows operating system is related to insufficient validation of input data. Exploiting this vulnerability can allow a malicious actor to cause service interruptions remotely...

The vulnerability of the Hyper-V hardware virtualization system of the Microsoft Windows operating system, which allows a hacker to trigger a service failure.

The vulnerability of the Hyper-V hardware virtualization technology of the Microsoft Windows operating system is related to insufficient validation of input data. Exploiting this vulnerability can allow a malicious actor to cause service interruptions remotely...

The vulnerability of the DNS Server component of the Microsoft Windows operating system, which allows a perpetrator to execute arbitrary code.

The vulnerability of the DNS Server component of the Microsoft Windows operating system is related to improper code generation. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of the Microsoft Windows Media Foundation component in the Windows operating system allows a hacker to execute arbitrary code.

The vulnerability of the Microsoft Windows Media Foundation component in the Windows operating system is related to improper code generation. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

The vulnerability of the Windows operating system arises from insufficient validation of input data, allowing attackers to trigger a service failure.

The vulnerability of the Windows operating system exists due to insufficient checking of input data. Exploiting this vulnerability can allow a malicious actor to cause service failures remotely...

The vulnerability of Remote Desktop Services (RDS) on the Microsoft Windows operating system allows a perpetrator to execute arbitrary code.

The vulnerability of Remote Desktop Services RDS on the Microsoft Windows operating system arises due to errors in checking RDS service requests when connecting via the RDP protocol. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

December 14, 2021—KB5008206 (OS Build 18363.1977)

December 14, 2021—KB5008206 OS Build 18363.1977 EXPIRATION NOTICE As of 9/12/2023, KB5008206 is only available from Windows Update. This update is no longer available from the Microsoft Update Catalog, or other release channels. We recommend that you update your devices to the latest security...

Microsoft Windows Common Log File System Driver 权限许可和访问控制问题漏洞

The Microsoft Windows Common Log File System Driver is Microsoft's Common Log File System CLFS API that provides a high-performance, general-purpose log file subsystem that can be used by specialized client applications and shared by multiple clients to optimize logging and access. access. A...

PT-2021-6190 · Microsoft · Windows +1

Name of the Vulnerable Software and Affected Versions: Microsoft Message Queuing MSMQ affected versions not specified Description: The issue is related to an information disclosure in the error data area of Microsoft Message Queuing MSMQ in the Microsoft Windows operating system. It may allow a...

The vulnerability of the Remote Access Connection Manager (RASMan) service in the Microsoft Windows operating system allows a hacker to compromise and disclose sensitive information.

The vulnerability of the Remote Access Connection Manager RASMan service in the Microsoft Windows operating system is related to the disclosure of information. Exploiting this vulnerability could allow a attacker to disclose the protected information...

The vulnerability of the Desktop Bridge application converter in the Microsoft Windows operating system allows a hacker to elevate their privileges within the system.

The vulnerability of the Desktop Bridge application converter in the Microsoft Windows operating system is related to insecure management of privileges. Exploiting this vulnerability can allow an attacker to elevate their privileges within the system...