3872 matches found
Privilege escalation
An elevation of privilege vulnerability exists when the Windows Kernel API improperly handles registry objects in memory. An attacker who successfully exploited the vulnerability could gain elevated privileges on a targeted system. A locally authenticated attacker could exploit this vulnerability...
Privilege escalation
An elevation of privilege vulnerability exists when the Windows Kernel API improperly handles registry objects in memory. An attacker who successfully exploited the vulnerability could gain elevated privileges on a targeted system. A locally authenticated attacker could exploit this vulnerability...
Information disclosure
An information disclosure vulnerability exists in the Windows kernel that could allow an attacker to retrieve information that could lead to a Kernel Address Space Layout Randomization ASLR bypass. An attacker who successfully exploited the vulnerability could retrieve the memory address of a...
Privilege escalation
An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode. An attacker could then install programs; view, change, or delete data; or create ne...
CVE-2020-1566 Windows Kernel Elevation of Privilege Vulnerability
...
CVE-2020-1486 Windows Kernel Elevation of Privilege Vulnerability
...
CVE-2020-1377
The connected materials describe CVE-2020-1377 within a broader Windows Registry/hive memory‑corruption research stream. They detail how hive memory corruption can be exploited locally via controlled regf data, use‑after‑free in security descriptors, and out‑of‑bounds cell indexes to pivot into k...
Microsoft Windows and Microsoft Windows Server Elevation of Privilege Vulnerability (CNVD-2020-48261)
Microsoft Windows and Microsoft Windows Server are both products of Microsoft Corporation.Microsoft Windows is an operating system for personal devices.Microsoft Windows Server is a server operating system. An elevation of privilege vulnerability exists in Microsoft Windows and Microsoft Windows...
Microsoft Windows Kernel Elevation of Privilege Vulnerability (CNVD-2020-52077)
Microsoft Windows and Microsoft Windows Server are both products of Microsoft Corporation.Microsoft Windows is an operating system for personal devices.Microsoft Windows Server is a server operating system. An elevation of privilege vulnerability exists in the Microsoft Windows Kernel, which aris...
Microsoft Windows Kernel Elevation of Privilege Vulnerability (CNVD-2020-52072)
Microsoft Windows and Microsoft Windows Server are both products of Microsoft Corporation.Microsoft Windows is an operating system for personal devices.Microsoft Windows Server is a server operating system. An elevation of privilege vulnerability exists in the Microsoft Windows Kernel, which aris...
Microsoft Windows Kernel Information Disclosure Vulnerability (CNVD-2020-46569)
Microsoft Windows and Microsoft Windows Server are both products of Microsoft Corporation.Microsoft Windows is an operating system for personal devices.Microsoft Windows Server is a server operating system. Windows Kernel is one of the Windows system kernels. An information disclosure vulnerabili...
The vulnerability of the Windows operating system’s kernel allows attackers to enhance their privileges.
The vulnerability of the kernel of Microsoft Windows relates to buffer overflow vulnerabilities in memory handling. Exploiting this vulnerability can allow an attacker to enhance their privileges through a specially created application...
The vulnerability of the kernel of Microsoft Windows, which allows a hacker to increase their privileges
The vulnerability of the kernel of Microsoft Windows is related to errors in memory object handling. Exploiting this vulnerability can allow an attacker to increase their privileges through a specially created application...
Microsoft Windows Multiple Vulnerabilities (KB4566782)
This host is missing a critical security update according to Microsoft KB4566782 SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Microsoft Windows Multiple Vulnerabilities (KB4565349)
This host is missing a critical security update according to Microsoft KB4565349 SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Microsoft Windows Multiple Vulnerabilities (KB4571729)
This host is missing a critical security update according to Microsoft KB4571729 SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
August 11, 2020—KB4571746 (Security-only update)
August 11, 2020—KB4571746 Security-only update IMPORTANT Verify that you have installed the required updates listed in the How to get this update section before installing this update. IMPORTANT WSUS scan cab files will continue to be available for Windows Server 2008 SP2. If you have a subset of...
PT-2020-3657 · Microsoft · Windows Kernel Api +1
Name of the Vulnerable Software and Affected Versions: Windows Kernel API affected versions not specified Description: An elevation of privilege issue exists due to the improper handling of registry objects in memory by the Windows Kernel API. This could allow a locally authenticated attacker, wh...
PT-2020-3673 · Microsoft · Windows
Name of the Vulnerable Software and Affected Versions: Windows affected versions not specified Description: An elevation of privilege issue exists due to the Windows kernel's improper handling of objects in memory. This could allow an attacker to run arbitrary code in kernel mode, enabling them t...
KLA11929 Multiple vulnerabilities in Microsoft Products (ESU)
Multiple vulnerabilities were found in Microsoft Products Extended Support Update. Malicious users can exploit these vulnerabilities to execute arbitrary code, gain privileges, obtain sensitive information, spoof user interface. Below is a complete list of vulnerabilities: 1. A memory corruption...