60 matches found
EUVD-2019-9894
Malware in sbrugna...
CVE-2020-1014
An elevation of privilege vulnerability exists in the Microsoft Windows Update Client when it does not properly handle privileges, aka 'Microsoft Windows Update Client Elevation of Privilege Vulnerability'...
CVE-2019-1336
An elevation of privilege vulnerability exists in the Microsoft Windows Update Client when it does not properly handle privileges, aka 'Microsoft Windows Update Client Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1323...
CVE-2019-1337
An information disclosure vulnerability exists when Windows Update Client fails to properly handle objects in memory, aka 'Windows Update Client Information Disclosure Vulnerability'...
CVE-2019-1323
An elevation of privilege vulnerability exists in the Microsoft Windows Update Client when it does not properly handle privileges, aka 'Microsoft Windows Update Client Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1336...
North Korean Hackers Using Windows Update Service to Infect PCs with Malware
The notorious Lazarus Group actor has been observed mounting a new campaign that makes use of the Windows Update service to execute its malicious payload, expanding the arsenal of living-off-the-land LotL techniques leveraged by the APT group to further its objectives. The Lazarus Group, also kno...
Privilege escalation
Microsoft Windows Update Client Elevation of Privilege Vulnerability...
September 14, 2021—KB5005566 (OS Build 18363.1801)
September 14, 2021—KB5005566 OS Build 18363.1801 EXPIRATION NOTICE As of 9/12/2023, KB5005566 is only available from Windows Update. This update is no longer available from the Microsoft Update Catalog, or other release channels. We recommend that you update your devices to the latest security...
PT-2021-6358 · Microsoft · Windows Update Client +1
Name of the Vulnerable Software and Affected Versions: Microsoft Windows Update Client affected versions not specified Description: The issue is related to insufficient access control in the Microsoft Windows Update Client, which can be exploited to elevate privileges. This could allow an attacke...
December 8, 2020—KB4592473 (OS Build 15063.2584)
December 8, 2020—KB4592473 OS Build 15063.2584 Current status of Windows 10, version 1703 Surface Hub devices remain in support. Starting on November 12, 2019, updates for Windows 10, version 1703 will be available only for Surface Hub devices. Update information and Surface Hub known issues will...
November 19, 2020—KB4594441 (OS Build 14393.4048) Out-of-band
November 19, 2020—KB4594441 OS Build 14393.4048 Out-of-band UPDATED 11/19/20 For information about Windows update terminology, see the article about the types of Windows updates and the monthly quality update types. To view other notes and messages, see the Windows 10, version 1607 update history...
October 13, 2020—KB4580370 (OS Build 15063.2525)
October 13, 2020—KB4580370 OS Build 15063.2525 NEW IMPORTANT Release notes are changing! To learn about the new URL, metadata updates, and more, see What’s next for Windows release notes. Current status of Windows 10, version 1703 Windows 10, version 1703 has reached end of service for all...
August 11, 2020—KB4571692 (OS Build 10240.18666)
August 11, 2020—KB4571692 OS Build 10240.18666 For more information about the various types of Windows updates, such as critical, security, driver, service packs, and so on, please see the following article. IMPORTANT Starting in July 2020, all Windows Updates will disable the RemoteFX vGPU featu...
Microsoft Windows Update Client Privilege Vulnerability
Microsoft Windows and Microsoft Windows Server are both products of Microsoft Corporation, U.S.A. Microsoft Windows is an operating system for personal devices.Microsoft Windows Server is a server operating system. Windows Update Client is one of the Windows system update clients. An elevation of...
CVE-2020-1014
An elevation of privilege vulnerability exists in the Microsoft Windows Update Client when it does not properly handle privileges, aka 'Microsoft Windows Update Client Elevation of Privilege Vulnerability'...
CVE-2020-1014
An elevation of privilege vulnerability exists in the Microsoft Windows Update Client when it does not properly handle privileges, aka 'Microsoft Windows Update Client Elevation of Privilege Vulnerability'...
Privilege escalation
An elevation of privilege vulnerability exists in the Microsoft Windows Update Client when it does not properly handle privileges, aka 'Microsoft Windows Update Client Elevation of Privilege Vulnerability'...
CVE-2020-1014
An elevation of privilege vulnerability exists in the Microsoft Windows Update Client when it does not properly handle privileges, aka 'Microsoft Windows Update Client Elevation of Privilege Vulnerability'...
KLA11743 Multiple vulnerabilities in Microsoft products (ESU)
Multiple vulnerabilities were found in Microsoft products Extended Support Update. Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information, gain privileges, cause denial of service. Below is a complete list of vulnerabilities: 1. A memory corrupti...
KB4550957: Windows Server 2008 April 2020 Security Update
The remote Windows host is missing security update 4550957 or cumulative update 4550951. It is, therefore, affected by multiple vulnerabilities : - An elevation of privilege vulnerability exists in Windows when the Windows kernel-mode driver fails to properly handle objects in memory. An attacker...