53 matches found
The vulnerability of the TSWbPrxy component in Windows operating systems, which allows attackers to increase their privileges
The vulnerability of the TSWbPrxy component in Windows operating systems is related to deficiencies in path validation for restricted access directories. Exploiting this vulnerability can allow an attacker to enhance their privileges remotely...
Vulnerability of the Windows OLE operating system component, allowing a hacker to execute arbitrary code
The vulnerability of the Windows OLE operating system is related to insufficient validation of input data. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
The vulnerability of the Win32k component of the Windows operating system, which allows a hacker to increase their privileges
The vulnerability of the Win32k component of the Windows operating system is related to errors in memory object handling. Exploiting this vulnerability can allow an attacker to increase their privileges...
The vulnerability of the win32k component of the Windows operating system, which allows a hacker to gain unauthorized access to protected information
The vulnerability of the win32k component of the Windows operating system is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...
Cryptic Rumblings Ahead of First 2020 Patch Tuesday
Sources tell KrebsOnSecurity that Microsoft Corp. is slated to release a software update on Tuesday to fix an extraordinarily serious security vulnerability in a core cryptographic component present in all versions of Windows. Those sources say Microsoft has quietly shipped a patch for the bug to...
CVE-2019-1394
An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1393, CVE-2019-1395, CVE-2019-1396, CVE-2019-1408, CVE-2019-1434...
CVE-2019-18631
The Windows component of Centrify Authentication and Privilege Elevation Services 3.4.0, 3.4.1, 3.4.2, 3.4.3, 3.5.0, 3.5.1 18.8, 3.5.2 18.11, and 3.6.0 19.6 does not properly handle an unspecified exception during use of partially trusted assemblies to serialize input data, which allows attackers...
CVE-2019-0616
An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows GDI Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0602, CVE-2019-0615, CVE-2019-0619, CVE-2019-0660, CVE-2019-0664...
Oracle MySQL Server Denial of Service Vulnerability (CNVD-2019-23149)
Oracle MySQL is an open source relational database management system from Oracle Corporation, of which MySQL Server is a database server component. A denial of service vulnerability exists in the Server: Windows component of Oracle MySQL Server. An attacker can exploit this vulnerability to cause...
PT-2018-2445 · Oracle +1 · Mysql Server
Name of the Vulnerable Software and Affected Versions: Oracle MySQL versions 8.0.12 and prior Description: The issue is related to insufficient access control in the MySQL Server component of Oracle MySQL, specifically affecting the Windows subcomponent. This can be exploited by a high-privileged...
Vulnerability of the Windows operating system component, allowing a hacker to execute arbitrary code
The vulnerability of the Windows operating system component is related to lack of access control. Exploiting this vulnerability allows an attacker to execute arbitrary code using a specially crafted Wi-Fi packet...
Unspecified Vulnerability in Oracle E-Business Suite Oracle Applications Framework Popup Windows Component
Oracle E-Business Suite is a new generation of e-business suite from Oracle. An unspecified security vulnerability exists in the Oracle E-Business Suite Oracle Applications Framework Popup Windows component, which could be exploited by remote attackers to submit a special request to modify data...
Microsoft fixes 8 security vulnerabilities, including Google's disclosure of 0day vulnerabilities-vulnerability warning-the black bar safety net
Microsoft has released the latest security patches, repair the content includes Google 9 0 days of the submitted 0day vulnerability, Microsoft this program 2 months to fix, but forced by Google reluctant to breach its 9 0-day cloth vulnerability details the policy had to advance the release patch...