Intel Graphics Driver for Windows Kernel Mode Driver Double Release Vulnerability

Intel Graphics Driver for Windows is an Intel graphics driver for the Windows platform.Kernel Mode Driver is one of the kernel mode drivers. A double release vulnerability exists in the Kernel Mode Driver of the Intel Graphics Driver for Windows. A local attacker could exploit this vulnerability ...

Intel Graphics Driver for Windows Kernel Mode Driver Out-of-Bounds Memory Read Vulnerability

Intel Graphics Driver for Windows is an Intel graphics driver for the Windows platform.Kernel Mode Driver is one of the kernel mode drivers. A security vulnerability exists in the Kernel Mode Driver of the Intel Graphics Driver for Windows platforms, which arises from the program failing to perfo...

Intel Graphics Driver for Windows Kernel Mode Driver Memory Corruption Vulnerability (CNVD-2019-26187)

Intel Graphics Driver for Windows is an Intel graphics driver for the Windows platform.Kernel Mode Driver is one of the kernel mode drivers. A security vulnerability exists in Intel Graphics Driver for Windows. A local attacker can exploit this vulnerability to cause a denial of service memory...

Intel Graphics Driver for Windows Kernel Mode Driver Arbitrary Code Execution Vulnerability (CNVD-2019-26188)

Intel Graphics Driver for Windows is an Intel graphics driver for the Windows platform.Kernel Mode Driver is one of the kernel mode drivers. A security vulnerability exists in the Kernel Mode Driver of the Intel Graphics Driver for Windows platforms, which arises from the program failing to perfo...

CVE-2018-12214

Potential memory corruption in Kernel Mode Driver in IntelR Graphics Driver for Windows before versions 10.18.x.5059 aka 15.33.x.5059, 10.18.x.5057 aka 15.36.x.5057, 20.19.x.5063 aka 15.40.x.5063 21.20.x.5064 aka 15.45.x.5064 and 24.20.100.6373 potentially enables a privileged user to execute...

Windows Net-NTLMv2 Reflection DCOM/RPC Exploit

This Metasploit module utilizes the Net-NTLMv2 reflection between DCOM/RPC to achieve a SYSTEM handle for elevation of privilege. Currently the module does not spawn as SYSTEM, however once achieving a shell, one can easily use incognito to impersonate the token. This module requires Metasploit:...

The vulnerability of the Win32k component in Windows operating systems, which allows a hacker to execute arbitrary code

The vulnerability of the Win32k component in Windows operating systems is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability allows an attacker to execute arbitrary code in kernel mode using a specially created application...

KB4338814: Windows 10 Version 1607 and Windows Server 2016 July 2018 Security Update

The remote Windows host is missing security update 4338814. It is, therefore, affected by multiple vulnerabilities : - An elevation of privilege vulnerability exists in .NET Framework which could allow an attacker to elevate their privilege level. CVE-2018-8202 - A remote code execution...

KB4088776: Windows 10 Version 1709 and Windows Server Version 1709 March 2018 Security Update

The remote Windows host is missing security update 4088776. It is, therefore, affected by multiple vulnerabilities : - An information disclosure vulnerability exists when Microsoft Edge improperly handles objects in memory. An attacker who successfully exploited the vulnerability could obtain...

October 10, 2017—KB4041678 (Security-only update)

October 10, 2017—KB4041678 Security-only update Improvements and fixes This security update includes quality improvements. No new operating system features are being introduced in this update. Key changes include: Security updates to Microsoft Windows Search Component, Windows kernel-mode drivers...

Microsoft Patch Tuesday - October 2017

Microsoft has released its monthly set of security advisories for vulnerabilities that have been identified and addressed in various products. This month's advisory release addresses 63 new vulnerabilities with 28 of them rated critical and 35 rated important. These vulnerabilities impact Graphic...

September 12, 2017—KB4038793 (Security-only update)

September 12, 2017—KB4038793 Security-only update Improvements and fixes This security update includes quality improvements. No new operating system features are being introduced in this update. Key changes include: Addressed issue in NPS server where EAP TLS authentication was broken. Re-release...

Microsoft Win32k Elevation of Privilege (CVE-2017-8694)

An elevation of privilege vulnerability exists in Windows Kernel-Mode Driver. The vulnerability is due to an error in the way Microsoft Windows kernel-mode driver fails to properly handle objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in kern...

September 12, 2017—KB4038786 (Security-only update)

September 12, 2017—KB4038786 Security-only update Improvements and fixes This security update includes quality improvements. No new operating system features are being introduced in this update. Key changes include: Addressed issue where the WordPad application can sometimes crash on launch. The...

Microsoft Win32k Elevation of Privilege (CVE-2017-8468)

An elevation of privilege vulnerability exists in Microsoft Windows. The vulnerability is caused when the Windows kernel-mode fails to properly handle objects in memory. A remote attacker can exploit this vulnerability by enticing a user to run a specially crafted executable file...

Microsoft Plugs Three Zero Day Holes as Part of May Patch Tuesday

Microsoft patched three zero day vulnerabilities actively under attack today as part of its May Patch Tuesday release. Researchers with FireEye who uncovered the three vulnerabilities said the bugs were actively being exploited by threat actors Turla and APT28. Two of the zero day vulnerabilities...

Microsoft Windows Monthly Rollup (KB4015549)

This host is missing a monthly rollup according to Microsoft security update KB4015549. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

KB4015219: Windows 10 Version 1511 April 2017 Cumulative Update

The remote Windows 10 version 1511 host is missing security update KB4015219. It is, therefore, affected by multiple vulnerabilities : - An information disclosure vulnerability exists in the open-source libjpeg image processing library due to improper handling of objects in memory. An...

The vulnerability of the Windows operating system, which allows a hacker to increase their privileges

The vulnerability of Windows operating system’s kernel mode drivers is related to deficiencies in access control. Exploiting this vulnerability allows a malicious actor, operating locally, to enhance their privileges through a specially created application...

March 2017 Security Monthly Quality Rollup for Windows Server 2012

March 2017 Security Monthly Quality Rollup for Windows Server 2012 Summary This security update resolves the following vulnerabilities in Windows Server 2012: MS17-022 Security update for Microsoft XML Core Services MS17-019 Security update for Active Directory Federation Services MS17-018 Securi...