Lucene search
K

3872 matches found

exploitpack
exploitpack
added 2016/11/24 12:0 a.m.24 views

Microsoft Windows Kernel - win32k.sys NtSetWindowLongPtr Local Privilege Escalation (MS16-135) (1)

Microsoft Windows Kernel - win32k.sys NtSetWindowLongPtr Local Privilege Escalation MS16-135 1 Complete Proof of Concept: https://github.com/offensive-security/exploitdb-bin-sploits/raw/master/bin-sploits/40823.zip Presentation:...

0.5AI score
Exploits0
0day.today
0day.today
added 2016/11/16 12:0 a.m.74 views

Microsoft Windows Kernel - Registry Hive Loading 'nt!RtlEqualSid' Out-of-Bounds Read (MS

Exploit for windows platform in category dos / poc Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=874 We have encountered a Windows kernel crash in the nt!RtlEqualSid function invoked through nt!SeAccessCheck by nt!CmpCheckSecurityCellAccess while loading corrupted registry hiv...

2.1CVSS6.3AI score0.04142EPSS
Exploits1
exploitpack
exploitpack
added 2016/11/15 12:0 a.m.11 views

Microsoft Windows Kernel - Registry Hive Loading nt!RtlEqualSid Out-of-Bounds Read (MS16-138)

Microsoft Windows Kernel - Registry Hive Loading nt!RtlEqualSid Out-of-Bounds Read MS16-138 Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=874 We have encountered a Windows kernel crash in the nt!RtlEqualSid function invoked through nt!SeAccessCheck by...

7.4AI score
Exploits0
OSV
OSV
added 2016/11/10 6:59 a.m.3 views

CVE-2016-7218

Bowser.sys in the kernel-mode drivers in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, and 1607, and Windows Server 2016 allows local users to obtain sensitive information via a...

4.7CVSS5.8AI score
Exploits0References3
OSV
OSV
added 2016/11/10 6:59 a.m.3 views

CVE-2016-7216

The kernel API in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, and Windows 7 SP1 mishandles permissions, which allows local users to gain privileges via a crafted application, aka "Windows Kernel Elevation of Privilege Vulnerability."...

5.5CVSS5.8AI score0.04142EPSS
Exploits1References4
OSV
OSV
added 2016/11/10 6:59 a.m.1 views

CVE-2016-7215

The kernel-mode drivers in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, and 1607, and Windows Server 2016 allow local users to gain privileges via a crafted application, aka...

7.8CVSS5.8AI score0.03019EPSS
Exploits0References4
OSV
OSV
added 2016/11/10 6:59 a.m.1 views

CVE-2016-7214

The kernel-mode drivers in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, and 1607, and Windows Server 2016 allow local users to bypass the ASLR protection mechanism via a crafted...

3.3CVSS5.8AI score0.03781EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2016/11/10 6:16 a.m.6 views

CVE-2016-7255

The kernel-mode drivers in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, and 1607, and Windows Server 2016 allow local users to gain privileges via a crafted application, aka...

8.1AI score0.80968EPSS
Exploits24References11
0day.today
0day.today
added 2016/11/10 12:0 a.m.189 views

Microsoft Windows Kernel - win32k Denial of Service (MS16-135) Exploit

Exploit for windows platform in category dos / poc / Source: https://github.com/tinysec/public/tree/master/CVE-2016-7255 Full Proof of Concept: https://github.com/tinysec/public/tree/master/CVE-2016-7255 https://github.com/offensive-security/exploit-database-bin-sploits/raw/master/sploits/40745.z...

7.2CVSS7.8AI score0.80968EPSS
Exploits24
CNVD
CNVD
added 2016/11/09 12:0 a.m.3 views

Microsoft Win32k Information Leakage Vulnerability

Microsoft Windows is a series of operating systems released by the American company Microsoft. An information disclosure vulnerability exists in the Microsoft Windows kernel. An attacker exploits the vulnerability to retrieve the memory address of a kernel object...

3.3CVSS6.1AI score0.03781EPSS
Exploits0References1
CNVD
CNVD
added 2016/11/09 12:0 a.m.2 views

Microsoft Win32k Elevation of Privilege Vulnerability (CNVD-2016-10937)

Microsoft Windows is a series of operating systems released by the American company Microsoft. An elevation of privilege vulnerability exists in the kernel mode driver for Microsoft Windows. An attacker could exploit this vulnerability to run arbitrary code in kernel mode...

7.8CVSS7.4AI score0.80968EPSS
Exploits24References1
Exploit DB
Exploit DB
added 2016/11/09 12:0 a.m.98 views

Microsoft Windows Kernel - 'win32k' Denial of Service (MS16-135)

/ Source: https://github.com/tinysec/public/tree/master/CVE-2016-7255 Full Proof of Concept: https://github.com/tinysec/public/tree/master/CVE-2016-7255 https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/40745.zip Created: 2016-11-09 14:23:09 Filename: main.c Author:...

7.8CVSS7AI score0.80968EPSS
Exploits24
CNVD
CNVD
added 2016/11/09 12:0 a.m.5 views

Microsoft Win32k Elevation of Privilege Vulnerability (CNVD-2016-10936)

Microsoft Windows is a series of operating systems released by the American company Microsoft. An elevation of privilege vulnerability exists in the kernel mode driver for Microsoft Windows. An attacker could exploit this vulnerability to run arbitrary code in kernel mode...

7.8CVSS7.4AI score0.03019EPSS
Exploits0References1
CNVD
CNVD
added 2016/11/09 12:0 a.m.3 views

Microsoft Windows Kernel Local Privilege Elevation Vulnerability (CNVD-2016-11012)

Microsoft Windows is a series of operating systems released by Microsoft Corporation in the United States. kernel is one of the kernels. A local elevation of privilege vulnerability exists in the Microsoft Windows kernel. Due to a failure of the kernel API to properly handle privileges, a local...

5.5CVSS7AI score0.04142EPSS
Exploits1References1
ThreatPost
ThreatPost
added 2016/11/08 2:57 p.m.51 views

Microsoft Patches Zero Day Disclosed by Google

Microsoft followed through and today patched a zero-day vulnerability being exploited in public attacks that was disclosed by Google researchers nine days ago. The victims have yet to have been identified, but Microsoft did accuse the Sofacy APT gang of carrying out the attacks. Sofacy is general...

7.2CVSS0.3AI score0.80968EPSS
Exploits24References18
ThreatPost
ThreatPost
added 2016/11/08 11:17 a.m.40 views

Adobe Patches Nine Code Execution Flaws in Flash Player

Two weeks after rushing out an emergency patch for a zero-day vulnerability, Adobe today released another Flash Player security update. The new release patched nine vulnerabilities, all of which expose the host system to remote code execution. Adobe said it is not aware of public exploits against...

10CVSS0.9AI score0.25198EPSS
Exploits0References3
Microsoft KB
Microsoft KB
added 2016/11/08 8:0 a.m.80 views

November 2016 Security Monthly Quality Rollup for Windows 7 SP1 and Windows Server 2008 R2 SP1

November 2016 Security Monthly Quality Rollup for Windows 7 SP1 and Windows Server 2008 R2 SP1 Summary This security updates includes improvements and fixes from update 3192403. To learn more about the non-security improvements and fixes in this update, see the October 18, 2016 — KB3192403 Previe...

9.3CVSS7.7AI score0.80968EPSS
Exploits28
Microsoft KB
Microsoft KB
added 2016/11/08 8:0 a.m.59 views

MS16-135: Description of the security update for Windows kernel-mode drivers: November 8, 2016

MS16-135: Description of the security update for Windows kernel-mode drivers: November 8, 2016 Summary This security update resolves vulnerabilities in Microsoft Windows. The most severe of the vulnerabilities could allow elevation of privilege if an attacker logs on to an affected system and run...

4.7CVSS7.1AI score0.03457EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2016/11/08 8:0 a.m.37 views

Win32k Elevation of Privilege Vulnerability

An elevation of privilege vulnerability exists in Windows when the Windows kernel-mode driver fails to properly handle objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode. An attacker could then install programs; view, change, or...

7.8CVSS3.5AI score0.03019EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2016/11/08 8:0 a.m.25 views

Windows Kernel Information Disclosure Vulnerability

An information disclosure vulnerability exists in the Windows kernel that could allow an attacker to retrieve information that could lead to a Kernel Address Space Layout Randomization ASLR bypass. An attacker who successfully exploited the vulnerability could retrieve the memory address of a...

4.4CVSS5.4AI score0.03781EPSS
Exploits0
Rows per page
Query Builder