One font vulnerability to rule them all #2: Adobe Reader RCE exploitation

Posted by Mateusz Jurczyk of Google Project Zero This is part 2 of the “One font vulnerability to rule them all” blog post series. In part 1 “introducing the BLEND vulnerability”, we discussed how developments in the digital typography field in the last four decades shaped the various font format...

July 2015 Microsoft Patch Tuesday Security Bulletins

Microsoft has patched a zero-day vulnerability in the Windows kernel uncovered and exploited by Hacking Team. The zero day was found among the 400 GB of data stolen from the Italian surveillance software maker and posted online July 5. A trio of Adobe Flash Player zero days were also uncovered...

Hacking Team Promises to Rebuild RCS

The aftermath of the Hacking Team attack raised legitimate questions about the controversial Italian surveillance software vendor’s long-term viability. With reams of sensitive internal data and intellectual property posted online, how could the company survive? For now, however, the company seem...

Adobe released official patch: fix Hacking Team leaked Flash 0day vulnerability-vulnerability warning-the black bar safety net

Adobe today released Flash Player update patches for the repair of Hacking Team to steal the 400G data is found in the 0day vulnerability. An attacker can use this vulnerability to make the target machine the system crashes and Access Control permissions. Vulnerability This 0day vulnerability by...

Hacking Team attack code analysis Part 3 : the Adobe Font Driver kernel driver elevation of privilege vulnerability-vulnerability warning-the black bar safety net

In order to in IE and Chrome bypassing its sandbox mechanism to completely control the user's system, Hacking Team also utilizes a Windows kernel driver: the Adobe Font Driveratmfd.dllin the presence of a font 0day vulnerability to achieve privilege escalation and bypass the sandbox mechanism. Th...

Adobe today released HackingTeam leaked 0day vulnerability patch-vulnerability warning-the black bar safety net

Spyware vendor Hacking Team is after the invasion, the internal 400GB data stolen and published online, and then, in Flash Player 0dayzero-daysecurity vulnerabilities will be crazy use. And Adobe is planning to release today this 0day vulnerability patch. Hacking Team, one of the world's most...

Взлом Hacking Team

В рунете тишина, давайте обсудим. Цитата: @cBekrar: I think I've spotted the name of the guy who sold the Windows Kernel EoP 0day to Hackingteam, 25K EUR is a decent price. --- Я думал все куда лучше, а тут директор vupen пишет, что это decent price...

Details Available on Patched Adobe, Windows Font Vulnerabilities

A Google Project Zero researcher has publicly disclosed details on a number of patched Adobe and Microsoft vulnerabilities, including one in the Adobe Type Manager Font Driver that could enable takeover of a number of systems supporting modern font engines. Mateusz Jurczyk pointed the finger at h...

CVE-2015-2360

win32k.sys in the kernel-mode drivers in Microsoft Windows Server 2003 SP2 and R2 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows local users to gain privileges or cause a denial...

Microsoft Windows Kernel 'Win32k.sys' local elevation of privilege vulnerability (CNVD-2015-03730)

Microsoft Windows is a popular operating system. An elevation of privilege vulnerability exists in Microsoft Windows Kernel 'Win32k.sys', which allows local attackers to exploit the vulnerability to elevate privileges...

Microsoft Windows Kernel 'Win32k.sys' Null Pointer Reference Vulnerability

Microsoft Windows is a popular operating system. A null pointer reference vulnerability in Microsoft Windows Kernel 'Win32k.sys' allows local attackers to exploit the vulnerability to execute arbitrary code with elevated privileges...

Microsoft Windows Kernel Local Information Disclosure Vulnerability

Microsoft Windows is a popular operating system. A security vulnerability exists in the Microsoft Windows kernel that allows a local attacker to exploit the vulnerability to gain access to sensitive kernel information...

Microsoft Windows Memory Misreference Vulnerability

Microsoft Windows is a popular operating system. A memory misreference vulnerability exists in the Microsoft Windows kernel processing object, which allows local attackers to exploit the vulnerability to execute arbitrary code with elevated privileges...

Microsoft Windows Kernel DLL Path Error Elevation of Privilege Vulnerability

Microsoft Windows is a popular operating system. A security vulnerability in the Microsoft windows kernel allows a local attacker to place a specially crafted dll file in a system directory or on a network share, which can be loaded by the target user to execute arbitrary code...

Microsoft Windows Kernel Bitmap Processing Memory Misreference Vulnerability

Microsoft Windows is a popular operating system. A memory misreference vulnerability exists in the Microsoft Windows kernel processing bitmap, which allows local attackers to exploit the vulnerability to execute arbitrary code with elevated privileges...

Microsoft Windows Kernel 'Win32k.sys' Driver Buffer Overflow Vulnerability

Microsoft Windows is a popular operating system. A security vulnerability in the Microsoft Windows Kernel 'Win32k.sys' kernel mode driver allows local attackers to exploit the vulnerability to elevate privileges...

Microsoft Windows Kernel Object Memory Misreference Vulnerability

Microsoft Windows is a popular operating system. A memory misreference vulnerability exists in the Microsoft Windows processing kernel object, which allows local attackers to exploit the vulnerability to execute arbitrary code with elevated privileges...

Microsoft Windows Kernel 'Win32k.sys' Memory Corruption Elevation of Privilege Vulnerability

Microsoft Windows is a popular operating system. A memory corruption vulnerability exists in the Microsoft Windows Kernel 'Win32k.sys' k, which allows local attackers to exploit the vulnerability to elevate privileges...

Microsoft Windows kernel brush object memory misreference vulnerability

Microsoft Windows is a popular operating system. A memory misreference vulnerability in the Microsoft Windows kernel's handling of the brush object allows local attackers to exploit the vulnerability to execute arbitrary code with elevated privileges...

VulnCheck KEV: CVE-2015-2360

Win32k.sys in the kernel-mode drivers in Microsoft Windows allows local users to gain privileges or cause denial-of-service DoS...