The vulnerability of the Windows operating system’s kernel, related to deficiencies in access control, allows a hacker to execute arbitrary code in the kernel mode.

The vulnerability of the Windows operating system’s kernel is related to deficiencies in access control. Exploiting this vulnerability allows a remote attacker to execute arbitrary code in the kernel mode...

CODE EXECUTION (CVE-2018-5189) WALKTHROUGH ON JUNGO WINDRIVER 12.5.1

INTRODUCTION Windows kernel exploitation can be a daunting area to get into. There are tons of helpful tutorials out there and originally this post was going to add to that list. This is the story of how I found CVE-2018-5189 and a complete walkthrough of the exploit development cycle. The idea w...

January 3, 2018—KB4056890 (OS Build 14393.2007)

January 3, 2018—KB4056890 OS Build 14393.2007 Note The release also contains updates for Windows 10 Mobile OS Build 14393.2007 released on January 5, 2018 Improvements and fixes This update includes quality improvements. No new operating system features are being introduced in this update. Key...

January 3, 2018—KB4056893 (OS Build 10240.17738)

January 3, 2018—KB4056893 OS Build 10240.17738 Improvements and fixes This update includes quality improvements. No new operating system features are being introduced in this update. Key changes include: Addresses issue where using smart cards on a Windows Terminal Server system may cause excessi...

January 3, 2018—KB4056892 (OS Build 16299.192)

January 3, 2018—KB4056892 OS Build 16299.192 Improvements and fixes This update includes quality improvements. No new operating system features are being introduced in this update. Key changes include: Addresses issue that may uninstall some Microsoft Store apps on systems that have KB4054517...

Microsoft Windows Kernel Local Information Disclosure Vulnerability (CNVD-2018-00527)

Microsoft Windows 8.1 and others are operating systems released by Microsoft Corporation in the United States. kernel is one of the kernel components. A local information disclosure vulnerability exists in the kernel in Microsoft Windows. An attacker can exploit this vulnerability by logging on t...

Microsoft Windows Kernel Local Information Disclosure Vulnerability (CNVD-2018-00521)

Microsoft Windows 7 SP1 and others are products of Microsoft Corporation in the United States. Microsoft Windows 7 SP1 is an operating system for personal computers; Windows Server 2008 SP2 is a server operating system. kernel is a kernel used in it. An information disclosure vulnerability exists...

Microsoft Windows Kernel API elevation of privilege vulnerability (CNVD-2018-00526)

Microsoft Windows is a series of operating systems released by Microsoft Corporation in the U.S. The Kernel API is one of the kernel APIs. An elevation of privilege vulnerability exists in the Kernel API in Microsoft Windows. An attacker can exploit this vulnerability with a specially crafted...

Microsoft Windows Kernel Elevation of Privilege Vulnerability (CNVD-2018-00518)

Microsoft Windows is a series of operating systems released by Microsoft Corporation in the United States. kernel is one of the kernels. An elevation of privilege vulnerability exists in the kernel in Microsoft Windows, which arises from a program's failure to properly handle objects in memory. T...

CVE-2018-0751

The Windows Kernel API in Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703 and 1709, Windows Server 2016 and Windows Server, version 1709 allows an elevation of privilege vulnerability due to the way the Kernel API enforces permissions, aka "Windows Elevation ...

CVE-2018-0747

The Windows kernel in Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2008 SP2 and R2 SP1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703 and 1709, Windows Server 2016 and Windows Server, version 1709 allows an information disclosure vulnerability due to the way memory...

CVE-2018-0748

The Windows kernel in Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2008 SP2 and R2 SP1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703 and 1709, Windows Server 2016 and Windows Server, version 1709 allows an elevation of privilege vulnerability due to the way memory...

CVE-2018-0744

The Windows kernel in Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703 and 1709, Windows Server 2016 and Windows Server, version 1709 allows an elevation of privilege vulnerability due to the way objects are handled in memory, aka "Windows Elevation of Privile...

CVE-2018-0746

The Windows kernel in Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703 and 1709, Windows Server 2016 and Windows Server, version 1709 allows an information disclosure vulnerability due to the way memory addresses are handled, aka "Windows Information Disclosur...

CVE-2018-0752

The Windows Kernel API in Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703 and 1709, Windows Server 2016 and Windows Server, version 1709 allows an elevation of privilege vulnerability due to the way the Kernel API enforces permissions, aka "Windows Elevation ...

Information disclosure

The Windows kernel in Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703 and 1709, Windows Server 2016 and Windows Server, version 1709 allows an information disclosure vulnerability due to the way memory addresses are handled, aka "Windows Information Disclosur...

CVE-2018-0745

The Windows kernel in Windows 10 version 1703. Windows 10 version 1709, and Windows Server, version 1709 allows an information disclosure vulnerability due to the way objects are handled in memory, aka "Windows Information Disclosure Vulnerability". This CVE ID is unique from CVE-2018-0746 and...

CVE-2018-0748

The Windows kernel in Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2008 SP2 and R2 SP1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703 and 1709, Windows Server 2016 and Windows Server, version 1709 allows an elevation of privilege vulnerability due to the way memory...

EUVD-2018-1558

The Windows kernel in Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2008 SP2 and R2 SP1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703 and 1709, Windows Server 2016 and Windows Server, version 1709 allows an elevation of privilege vulnerability due to the way memory...

EUVD-2018-1555

The Windows kernel in Windows 10 version 1703. Windows 10 version 1709, and Windows Server, version 1709 allows an information disclosure vulnerability due to the way objects are handled in memory, aka "Windows Information Disclosure Vulnerability". This CVE ID is unique from CVE-2018-0746 and...