3872 matches found
Microsoft Windows Kernel - NtGdiGetTextExtentExW Out-of-Bounds Memory Read
Microsoft Windows Kernel - NtGdiGetTextExtentExW Out-of-Bounds Memory Read Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=685 The attached Proof-of-Concept crashes Windows 7 with special pool enabled on win32k.sys. The crash is due accessing memory past the end of a buffer. Pro...
Microsoft Windows Kernel - 'NtGdiGetTextExtentExW' Out-of-Bounds Memory Read
Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=685 The attached Proof-of-Concept crashes Windows 7 with special pool enabled on win32k.sys. The crash is due accessing memory past the end of a buffer. Proof of Concept:...
The vulnerability of the Windows operating system, which allows a hacker to increase their privileges
The vulnerability of the Windows operating system’s kernel mode driver is related to deficiencies in access control for certain functions. Exploiting this vulnerability can allow a local attacker to enhance their privileges through a specially created application...
Safari, Flash Fall at Pwn2Own 2016 Day One
Apple Safari and Adobe Flash have proved to be Pwn2Own 2016’s biggest punching bags so far—hackers took down both, earning $282,500 in prizes at the first day of the annual hacking challenge in Vancouver on Wednesday. There were four successful attempts, one partial, and one failed attempt at the...
Microsoft Windows Kernel - 'ATMFD.dll' OTF Font Processing Stack Corruption (MS16-026)
Source: https://code.google.com/p/google-security-research/issues/detail?id=682 We have encountered a Windows kernel crash in the ATMFD.DLL OpenType driver while processing a corrupted OTF font file: --- DRIVEROVERRANSTACKBUFFER f7 A driver has overrun a stack-based buffer. This overrun could...
Microsoft Windows Win32k Elevation of Privilege Vulnerability (CNVD-2016-01559)
Microsoft Windows is a series of operating systems released by the American company Microsoft. An elevation of privilege vulnerability exists in the kernel mode driver for Microsoft Windows, which arises from a program's failure to properly handle objects in memory. A local attacker could exploit...
Microsoft Windows Win32k Elevation of Privilege Vulnerability (CNVD-2016-01557)
Microsoft Windows is a series of operating systems released by the American company Microsoft. An elevation of privilege vulnerability exists in the kernel mode driver for Microsoft Windows, which arises from a program's failure to properly handle objects in memory. A local attacker could exploit...
CVE-2016-0095
The kernel-mode driver in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 allows local users to gain privileges via a crafted application, aka "Win32k Elevation of Privilege...
Privilege escalation
The kernel-mode driver in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 allows local users to gain privileges via a crafted application, aka "Win32k Elevation of Privilege...
The vulnerability of the Windows operating system, which allows a hacker to increase their privileges
The vulnerability of the Windows operating system’s kernel is related to deficiencies in access control. Exploiting this vulnerability allows a local attacker to enhance their privileges through a specially created application...
Exploit for CVE-2016-0040
cve-2016-0040 poc for cve-2016-0040 bug found and exp...
Microsoft Windows Elevation of Privilege Vulnerability (CNVD-2016-01082)
Microsoft Windows is a series of operating systems released by the American company Microsoft. An elevation of privilege vulnerability exists in the kernel of Microsoft Windows, which arises from a program's failure to properly handle objects in memory. A local attacker could exploit the...
CVE-2016-0048
The kernel-mode drivers in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 allow local users to gain privileges via a crafted application, aka "Win32k Elevation of Privilege...
MS14-058 Windows内核提权漏洞 (CVE-2014-4113)
No description provided by source...
The vulnerability of the Windows operating system, which allows a hacker to circumvent access restrictions to the file system
The vulnerability of the Windows operating system’s kernel is related to security configuration errors. Exploiting this vulnerability can allow a malicious actor to circumvent restrictions on access to the file system locally...
The vulnerability of the Windows operating system, which allows a hacker to increase their privileges
The vulnerability of the Windows operating system is related to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker, operating locally, to increase their privileges by using a special application known as “Microsoft Windows Kernel Bitmap Handling Use After Fre...
The vulnerability of the Windows operating system, which allows a hacker to increase their privileges
The vulnerability of the Windows operating system’s kernel is related to the handling of objects in memory. Exploiting this vulnerability can allow a local attacker to increase their privileges through a specially created application...
Microsoft Windows Kernel - win32k!OffsetChildren Null Pointer Dereference
Microsoft Windows Kernel - win32k!OffsetChildren Null Pointer Dereference Source: https://code.google.com/p/google-security-research/issues/detail?id=544 The attached PoC triggers a null pointer vulnerability in OffsetChildren on Windows 7 32-bit. By mapping the null page an attacker can leverage...
Microsoft Windows Kernel - 'win32k!OffsetChildren' Null Pointer Dereference
Source: https://code.google.com/p/google-security-research/issues/detail?id=544 The attached PoC triggers a null pointer vulnerability in OffsetChildren on Windows 7 32-bit. By mapping the null page an attacker can leverage this vulnerability to write to an arbitrary address. --- Proof of Concept...
Microsoft Windows Kernel win32k!OffsetChildren - Null Pointer Dereference
Exploit for windows platform in category dos / poc Source: https://code.google.com/p/google-security-research/issues/detail?id=544 The attached PoC triggers a null pointer vulnerability in OffsetChildren on Windows 7 32-bit. By mapping the null page an attacker can leverage this vulnerability to...