75 matches found
CVE-2020-9883
A buffer overflow issue was addressed with improved memory handling. This issue is fixed in iOS 13.6 and iPadOS 13.6, macOS Catalina 10.15.6, tvOS 13.4.8, watchOS 6.2.8, iTunes 12.10.8 for Windows, iCloud for Windows 11.3, iCloud for Windows 7.20. Processing a maliciously crafted image may lead t...
The vulnerability of Windows CDP user components in the Windows operating system, related to errors in memory object handling, allows attackers to exploit their privileges.
The vulnerability of Windows CDP user components in the Windows operating system is related to errors in object handling in memory. Exploiting this vulnerability can allow an attacker to enhance their privileges by running a specially created application...
CVE-2020-1549
An elevation of privilege vulnerability exists when the Windows CDP User Components improperly handle memory. To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted application to elevate privileges. The...
PT-2020-3757 · Microsoft · Windows Cdp User Components +1
Name of the Vulnerable Software and Affected Versions: Windows CDP User Components affected versions not specified Description: The issue is related to improper memory handling by the Windows CDP User Components, which can lead to an elevation of privilege. To exploit this, an attacker must first...
March 10, 2020—KB4540705 (OS Build 15063.2313)
March 10, 2020—KB4540705 OS Build 15063.2313 Current status of Windows 10, version 1703 Windows 10, version 1703 has reached end of service for all editions. To continue receiving security and quality updates, Microsoft recommends updating to the latest version of Windows 10 . Surface Hub devices...
April 14, 2020—KB4550917 (Monthly Rollup)
April 14, 2020—KB4550917 Monthly Rollup NEW IMPORTANT We have been evaluating the public health situation, and we understand this is impacting our customers. In response to these challenges, we are prioritizing our focus on security updates. Starting in May 2020, we are pausing all optional...
March 10, 2020—KB4541505 (Security-only update)
March 10, 2020—KB4541505 Security-only update Improvements and fixes This security update includes quality improvements. Key changes include: Security updates to Windows App Platform and Frameworks, Microsoft Graphics Component, Windows Silicon Platform, Windows Fundamentals, Windows...
Task Scheduler S4U Logon Elevation of Privilege
The windows task scheduler allows a split token administrator to register a task which runs as a batch job from a limited privilege context. This doesn’t require a user’s password to accomplish as the task will be run non-interactively and so doesn’t need access to the password in order to access...
February 11, 2020—KB4532691 (OS Build 17763.1039)
February 11, 2020—KB4532691 OS Build 17763.1039 Note This release also contains updates for Microsoft HoloLens OS Build 17763.1039 released February 11, 2020. Microsoft will release an update directly to the Windows Update Client to improve Windows Update reliability on Microsoft HoloLens that ha...
DEBIAN-CVE-2019-8535
A memory corruption issue was addressed with improved state management. This issue is fixed in iOS 12.2, tvOS 12.2, Safari 12.1, iTunes 12.9.4 for Windows, iCloud for Windows 7.11. Processing maliciously crafted web content may lead to arbitrary code execution...
UBUNTU-CVE-2019-8815
Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 13.2 and iPadOS 13.2, tvOS 13.2, Safari 13.0.3, iTunes for Windows 12.10.2, iCloud for Windows 11.0, iCloud for Windows 7.15. Processing maliciously crafted web content may lead to arbitrary...
September 10, 2019—KB4516033 (Security-only update)
September 10, 2019—KB4516033 Security-only update IMPORTANT Verify that you have installed the required updates listed in the How to get this update section before installing this update. Improvements and fixes This security update includes quality improvements. Key changes include: Provides...
webkitgtk: Multiple memory corruption issues leading to arbitrary code execution
Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, Safari 12.1.1, iTunes for Windows 12.9.5, iCloud for Windows 7.12. Processing maliciously crafted web content may lead to arbitrary code execution...
September 10, 2019—KB4516026 (Monthly Rollup)
September 10, 2019—KB4516026 Monthly Rollup Improvements and fixes This security update includes improvements and fixes that were a part of update KB4512499released August 17, 2019 and addresses the following issues: Provides protections against a new subclass of speculative execution side-channe...
August 13, 2019—KB4512518 (Monthly Rollup)
August 13, 2019—KB4512518 Monthly Rollup Improvements and fixes This security update includes improvements and fixes that were a part of update KB4507447 released July 16, 2019 and addresses the following issues: Security updates to Windows App Platform and Frameworks, Windows Wireless Networking...
August 13, 2019—KB4512482 (Security-only update)
August 13, 2019—KB4512482 Security-only update Improvements and fixes This security update includes quality improvements. Key changes include: Security updates to Windows App Platform and Frameworks, Windows Wireless Networking, Windows Storage and Filesystems, Windows Server, Windows Input and...
June 11, 2019—KB4503292 (Monthly Rollup)
June 11, 2019—KB4503292 Monthly Rollup Starting with KB4493472 Monthly Rollup updates will no longer include PciClearStaleCache.exe. This installation utility addressees inconsistencies in the internal PCI cache. This can cause the symptoms listed below when installing monthly updates that do NOT...
May 14, 2019—KB4499180 (Security-only update)
May 14, 2019—KB4499180 Security-only update Notice This security update can be installed on Windows Server 2008 Service Pack 2 and on Windows Vista. Improvements and fixes This security update includes quality improvements. Key changes include: Addresses an issue that may prevent applications tha...
May 14, 2019—KB4499149 (Monthly Rollup)
May 14, 2019—KB4499149 Monthly Rollup Customers who have applied KB4489887 or later Monthly Rollup Packages to Microsoft Server 2008 SP2 may notice a change to the operating system version string. The “build number” component of the version string increases by 1, and the revision number decreases...
May 14, 2019—KB4499158 (Security-only update)
May 14, 2019—KB4499158 Security-only update Improvements and fixes This security update includes quality improvements. Key changes include: Provides protections against a new subclass of speculative execution side-channel vulnerabilities, known as Microarchitectural Data Sampling , for 64-Bit x64...