3872 matches found
Microsoft Windows Core Memory Privilege Elevation Vulnerability (CNVD-2015-08020)
Microsoft Windows is a series of operating systems released by the American company Microsoft. An elevation of privilege vulnerability exists in the Microsoft Windows kernel that arises from a program's failure to properly handle objects in memory. An attacker could exploit the vulnerability to r...
Microsoft Windows Core Memory Privilege Elevation Vulnerability (CNVD-2015-08023)
Microsoft Windows is a series of operating systems released by the American company Microsoft. An elevation of privilege vulnerability exists in the Microsoft Windows kernel that arises from a program's failure to properly handle objects in memory. An attacker could exploit the vulnerability to r...
Microsoft Windows Core Memory Privilege Elevation Vulnerability (CNVD-2015-08022)
Microsoft Windows is a series of operating systems released by the American company Microsoft. An elevation of privilege vulnerability exists in the Microsoft Windows kernel that arises from a program's failure to properly handle objects in memory. An attacker can exploit the vulnerability to run...
Microsoft Windows Core Memory Privilege Elevation Vulnerability (CNVD-2015-08021)
Microsoft Windows is a series of operating systems released by the American company Microsoft. An elevation of privilege vulnerability exists in the Microsoft Windows kernel that arises from a program's failure to properly handle objects in memory. An attacker could exploit the vulnerability to r...
December 2015 Microsoft Patch Tuesday Security Bulletins
Forgive your local Windows admin if they’re a little shy on holiday cheer in the coming days. Blame instead Microsoft for foisting upon them on Tuesday 71 security patches, including two for vulnerabilities in Office and the Windows kernel currently under attack. Microsoft also issued a separate...
VulnCheck KEV: CVE-2015-6175
The kernel in Microsoft Windows contains a vulnerability that allows local users to gain privileges via a crafted application...
The vulnerability of the Windows operating system, which allows a hacker to bypass the KASLR security mechanism
The vulnerability of the Windows operating system’s kernel is related to the lack of protection for service data. Exploiting this vulnerability allows a local attacker to bypass the KASLR protection mechanism through a specially crafted application...
The vulnerability of the Windows operating system, which allows a hacker to increase their privileges
The vulnerability of the Windows operating system’s kernel is related to deficiencies in access control for certain functions. Exploiting this vulnerability allows a local attacker to enhance their privileges through a specially crafted application...
The vulnerability of the Windows operating system, which allows a hacker to bypass the KASLR security mechanism
The vulnerability of the Windows operating system’s kernel is related to the lack of protection for service data. Exploiting this vulnerability allows a local attacker to bypass the KASLR protection mechanism through a specially crafted application...
The vulnerability of the Windows operating system, which allows a hacker to increase their privileges
The vulnerability of the Windows operating system’s kernel is related to deficiencies in access control for certain functions. Exploiting this vulnerability allows a local attacker to enhance their privileges through a specially crafted application...
Microsoft Windows Kernel - Device Contexts and NtGdiSelectBitmap Use-After-Free (MS15-115)
Source: https://code.google.com/p/google-security-research/issues/detail?id=505 The attached testcase triggers a use-after-free condition in win32k. The attached debugger output was triggered on Windows 7 with Special Pool enabled on win32k.sys. --- Proof of Concept:...
Microsoft Windows Kernel - win32k.sys Malformed TrueType Program TTF Font Processing Pool-Based Buffer Overflow (MS15-115)
Microsoft Windows Kernel - win32k.sys Malformed TrueType Program TTF Font Processing Pool-Based Buffer Overflow MS15-115 Source: https://code.google.com/p/google-security-research/issues/detail?id=507 We have observed a number of Windows kernel crashes in the win32k.sys driver while processing...
Microsoft Windows Kernel - 'win32k.sys' Malformed TrueType Program TTF Font Processing Pool-Based Buffer Overflow (MS15-115)
Source: https://code.google.com/p/google-security-research/issues/detail?id=507 We have observed a number of Windows kernel crashes in the win32k.sys driver while processing corrupted TTF font files. An example of a crash log excerpt generated after triggering the bug is shown below: ---...
Microsoft Windows Kernel Information Disclosure Vulnerability (CNVD-2015-07594)
Microsoft Windows is a series of operating systems designed for personal computer and server users from the American company Microsoft. Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT Gold and...
Microsoft Windows Kernel Elevation of Privilege Vulnerability (CNVD-2015-07591)
Microsoft Windows is a series of operating systems designed for personal computer and server users from the American company Microsoft. Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT Gold and...
Microsoft Windows Kernel Elevation of Privilege Vulnerability (CNVD-2015-07592)
Microsoft Windows is a series of operating systems designed for personal computer and server users from the American company Microsoft. Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT Gold and...
The vulnerability of the Windows operating system, which allows a hacker to increase their privileges
The vulnerability of the Windows operating system’s kernel is related to deficiencies in access control for certain functions. Exploiting this vulnerability allows a local attacker to enhance their privileges through a specially crafted application...
The vulnerability of the Windows operating system, which allows a hacker to increase their privileges
The vulnerability of the Windows operating system’s kernel is related to deficiencies in access control for certain functions. Exploiting this vulnerability allows a local attacker to enhance their privileges through a specially crafted application...
The vulnerability of the Windows operating system, which allows a hacker to increase their privileges
The vulnerability of the Windows operating system’s kernel exists due to insufficient checks on input data. Exploiting this vulnerability can allow an attacker, operating locally, to enhance their privileges by manipulating the shell mechanism...
The vulnerability of the Windows operating system, which allows a hacker to increase their privileges
The vulnerability of the Windows operating system’s kernel is related to deficiencies in access control for certain functions. Exploiting this vulnerability allows a local attacker to enhance their privileges through a specially crafted application...