Privilege escalation

The kernel-mode driver in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 allows local users to gain privileges via a crafted application, aka "Win32k Elevation of Privilege...

Microsoft Windows Win32k Elevation of Privilege Vulnerability

Microsoft Windows is a series of operating systems released by the American company Microsoft. An elevation of privilege vulnerability exists in the Microsoft Windows kernel mode driver and can be exploited by an attacker to run arbitrary code in kernel mode...

The vulnerability of the Windows operating system, which allows a perpetrator to gain access to protected information

The vulnerability of kernel-level drivers in the Windows operating system is related to the lack of protection for privileged data. Exploiting this vulnerability can allow a local attacker to gain access to protected information through a specially crafted application...

Hacking Team attack code analysis Part 3 : the Adobe Font Driver kernel driver elevation of privilege vulnerability-vulnerability warning-the black bar safety net

In order to in IE and Chrome bypassing its sandbox mechanism to completely control the user's system, Hacking Team also utilizes a Windows kernel driver: the Adobe Font Driveratmfd.dllin the presence of a font 0day vulnerability to achieve privilege escalation and bypass the sandbox mechanism. Th...

Microsoft windows kernel mode driver kernel information disclosure vulnerability (CNVD-2015-01615)

Microsoft Windows is a popular operating system. The Microsoft Windows kernel mode driver leaks sensitive address information when calling functions, allowing attackers to exploit the vulnerability to obtain sensitive information and bypass ASLR protection...

MS15-010: Vulnerabilities in Windows kernel mode driver could allow remote code execution: February 10, 2015

Resolves vulnerabilities in Microsoft Windows that could allow remote code execution if an attacker convinces a user to open a specially crafted document or visit an untrusted website that contains embedded TrueType fonts.SummaryThis security update resolves one publicly disclosed and five...

McAfee Data Loss Prevention Endpoint Elevation of Privilege Vulnerability

McAfee Network Data Loss Prevention monitors network traffic and protects against data loss. An elevation of privilege vulnerability exists in McAfee Data Loss Prevention Endpoint, which could allow a remote attacker to obtain elevation of privilege by sending carefully constructed commands to th...

PT-2013-4700 · Microsoft · Windows Xp +8

Name of the Vulnerable Software and Affected Versions: Windows XP versions SP2 and SP3 Windows Server 2003 version SP2 Windows Vista version SP2 Windows Server 2008 versions SP2 and R2 SP1 Windows 7 version SP1 Windows 8 Windows Server 2012 Windows RT Description: An issue exists in the Windows...

PT-2013-3096 · Microsoft · Windows Server 2003 +6

Name of the Vulnerable Software and Affected Versions: Windows XP versions SP2 and SP3 Windows Server 2003 version SP2 Windows Vista version SP2 Windows Server 2008 versions SP2 and R2 SP1 Windows 7 version SP1 Windows 8 affected versions not specified Description: The issue allows local users to...

PT-2013-4199 · Microsoft · Windows Xp +8

Name of the Vulnerable Software and Affected Versions: Microsoft Windows XP versions SP2 through SP3 Microsoft Windows Server 2003 version SP2 Microsoft Windows Vista version SP2 Microsoft Windows Server 2008 versions SP2 through R2 SP1 Microsoft Windows 7 version SP1 Microsoft Windows 8 Microsof...

PT-2013-3024 · Microsoft · Windows Server 2003 +4

Name of the Vulnerable Software and Affected Versions: Microsoft Windows XP versions SP2 through SP3 Microsoft Windows Server 2003 version SP2 Microsoft Windows Vista version SP2 Microsoft Windows Server 2008 versions SP2 through R2 SP1 Microsoft Windows 7 versions Gold through SP1 Description: A...