Lucene search
K

3872 matches found

exploitpack
exploitpack
added 2009/06/18 12:0 a.m.11 views

DESlock+ 4.0.2 - dlpcrypt.sys Local Kernel Ring0 Code Execution

DESlock+ 4.0.2 - dlpcrypt.sys Local Kernel Ring0 Code Execution / deslock-dlpcrypt.c Copyright c 2009 by DESlock+ 4.0.2 local kernel SYSTEM exploit by mu-b - Thu 18 Jun 2009 - Tested on: dlpcrypt.sys 0.1.1.27 .text:0001BB2E: 'what do ya want for nothing?' - hmmm, something that doesn't pass kerne...

0.1AI score
Exploits0
Prion
Prion
added 2009/06/10 6:30 p.m.18 views

Input validation

The kernel in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista Gold, SP1, and SP2, and Server 2008 SP2 does not properly validate user-mode pointers in unspecified error conditions, which allows local users to gain privileges via a crafted application, aka "Windows Kernel Pointe...

7.2CVSS6.7AI score0.01438EPSS
Exploits1References8Affected Software1
Tenable Nessus
Tenable Nessus
added 2009/03/11 12:0 a.m.49 views

MS09-006: Vulnerabilities in Windows Kernel Could Allow Remote Code Execution (958690)

The remote host contains a version of the Windows kernel that is affected by vulnerabilities : - A remote code execution vulnerability exists due to improper validation of input passed from user mode through the kernel component of GDI. Successful exploitation requires that a user on the affected...

9.3CVSS6.4AI score0.32106EPSS
Exploits2References4
securityvulns
securityvulns
added 2009/03/10 12:0 a.m.76 views

Microsoft Security Bulletin MS09-006 – Critical Vulnerabilities in Windows Kernel Could Allow Remote Code Execution (958690)

Microsoft Security Bulletin MS09-006 – Critical Vulnerabilities in Windows Kernel Could Allow Remote Code Execution 958690 Published: March 10, 2009 Version: 1.0 General Information Executive Summary This security update resolves several privately reported vulnerabilities in the Windows kernel. T...

9.3CVSS2.1AI score0.32106EPSS
Exploits2
Positive Technologies
Positive Technologies
added 2009/03/10 12:0 a.m.6 views

PT-2009-2783 · Microsoft · Windows

Name of the Vulnerable Software and Affected Versions: Microsoft Windows versions prior to the fixed version Description: The issue arises from the improper handling of invalid pointers by the Windows kernel, allowing local users to gain privileges. This could enable an attacker to run arbitrary...

7.2CVSS6.4AI score0.01461EPSS
Exploits1References13
Positive Technologies
Positive Technologies
added 2009/03/10 12:0 a.m.7 views

PT-2009-2782 · Microsoft · Windows Xp +6

Name of the Vulnerable Software and Affected Versions: Microsoft Windows versions 2000 SP4, XP SP2, XP SP3, Server 2003 SP1, Server 2003 SP2, Vista Gold, Vista SP1, Server 2008 Description: The Windows kernel does not properly validate handles, allowing local users to gain privileges via a crafte...

7.8CVSS7.2AI score0.01353EPSS
Exploits1References14
Positive Technologies
Positive Technologies
added 2009/03/10 12:0 a.m.4 views

PT-2009-2781 · Microsoft · Windows

Name of the Vulnerable Software and Affected Versions: Microsoft Windows versions prior to the fixed version Description: The issue arises from the improper validation of input received from user mode by the graphics device interface GDI implementation in the kernel. This allows remote attackers ...

9.3CVSS7AI score0.32106EPSS
Exploits0References13
Check Point Advisories
Check Point Advisories
added 2009/03/10 12:0 a.m.21 views

Microsoft Windows Kernel Input Validation Remote Code Execution (MS09-006; CVE-2009-0081)

The Windows kernel is the core of the operating system. It provides system level services, allocates processor time to processes, and manages error handling. A remote code execution vulnerability has been discovered in the Windows kernel.The vulnerability is due to an error in the Windows kernel...

9.3CVSS7.3AI score0.32106EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2008/10/15 12:0 a.m.47 views

MS08-061: Microsoft Windows Kernel Multiple Privilege Elevation (954211)

The remote host contains a version of the Windows kernel that is vulnerable to a security flaw that could allow a local user to elevate his privileges or to crash it therefore causing a denial of service. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid34406;...

7.2CVSS5.4AI score0.019EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2008/10/14 12:0 a.m.4 views

PT-2008-3746 · Microsoft · Windows

Name of the Vulnerable Software and Affected Versions: Microsoft Windows versions prior to the fixed version Description: The issue is related to a double free condition in the Windows kernel, allowing local users to gain privileges via a crafted application. This could enable an attacker to run...

7.2CVSS6.7AI score0.01501EPSS
Exploits1References13
securityvulns
securityvulns
added 2008/10/09 12:0 a.m.43 views

[W02-1008] GearSoftware Powered Products Local Privilege Escalation (Microsoft Windows Kernel IopfCompleteRequest Integer Overflow)

HTML FORMATED Advisory http://www.wintercore.com/advisories/advisoryW021008.html TEXT VERSION GearSoftware Powered Products Local Privilege Escalation + GEARASpiWDM.sys Insecure Method + Microsoft Windows Kernel IopfCompleteRequest Integer Overflow :: Summary 1. Background 2. Non-technical...

0.3AI score
Exploits0
myhack58
myhack58
added 2008/04/13 12:0 a.m.55 views

Windows kernel vulnerability ms08025 analysis-vulnerability warning-the black bar safety net

Source:security focus Author: Polymorphours Email: [email protected] Homepage:http://www.whitecell.org Date: 2008-04-10 After internal discussion, it was decided to publish the analysis results. 4 on No. 8, microsoft again released a kernel patchKB941693, Microsoft the vulnerability is...

7.8AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2008/04/08 12:0 a.m.56 views

MS08-025: Vulnerability in Windows Kernel Could Allow Elevation of Privilege (941693)

The remote host contains a version of the Windows kernel that is vulnerable to a security flaw that could allow a local user to elevate his privileges or to crash it therefore causing a denial of service. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid31798;...

7.2CVSS5.4AI score0.06753EPSS
Exploits3References2
Positive Technologies
Positive Technologies
added 2008/04/08 12:0 a.m.5 views

PT-2008-2682 · Microsoft · Windows Server +1

Name of the Vulnerable Software and Affected Versions: Microsoft Windows versions 2000 SP4 through Vista SP1 Microsoft Windows Server versions 2003 SP1 through 2008 Description: The issue is related to improper input validation in the Windows kernel, allowing local users to execute arbitrary code...

7.2CVSS7.4AI score0.06753EPSS
Exploits3References15
Check Point Advisories
Check Point Advisories
added 2008/01/09 12:0 a.m.7 views

Microsoft Windows ICMP Fragmented Packet Denial of Service (MS08-001; CVE-2007-0066)

The Internet Control Message Protocol ICMP is one of the core protocols of the Internet protocol suite. The vulnerability is due to an error in the way that Windows Kernel processes fragmented router advertisement ICMP queries. Successful exploitation could allow a denial of service on the affect...

7.1CVSS6AI score0.31525EPSS
Exploits1
securityvulns
securityvulns
added 2007/12/12 12:0 a.m.65 views

Microsoft Security Bulletin MS07-066 – Important Vulnerability in Windows Kernel Could Allow Elevation of Privilege (943078)

Microsoft Security Bulletin MS07-066 – Important Vulnerability in Windows Kernel Could Allow Elevation of Privilege 943078 Published: December 11, 2007 Version: 1.0 General Information Executive Summary This important security update resolves a privately reported vulnerability in the Windows...

7.2CVSS1.3AI score0.037EPSS
Exploits1
NVD
NVD
added 2007/04/11 11:19 p.m.21 views

CVE-2007-1973

Race condition in the Virtual DOS Machine VDM in the Windows Kernel in Microsoft Windows NT 4.0 allows local users to modify memory and gain privileges via the temporary \Device\PhysicalMemory section handle, a related issue to CVE-2007-1206...

6.9CVSS6.2AI score0.01487EPSS
Exploits0References4
CVE
CVE
added 2007/04/11 11:0 p.m.66 views

CVE-2007-1973

CVE-2007-1973 describes a race condition in the Windows NTVDM (VDM) path where incorrect permissions on a mapped memory segment (PAGE_READWRITE to a PhysicalMemory view) allow a local user to modify memory and gain privileges via the \Device\PhysicalMemory handle. The related details indicate aff...

6.9CVSS6.3AI score0.01487EPSS
Exploits0References4Affected Software1
Prion
Prion
added 2007/04/10 9:19 p.m.25 views

Race condition

The Virtual DOS Machine VDM in the Windows Kernel in Microsoft Windows NT 4.0; 2000 SP4; XP SP2; Server 2003, 2003 SP1, and 2003 SP2; and Windows Vista before June 2006; uses insecure permissions PAGEREADWRITE for a physical memory view, which allows local users to gain privileges by modifying th...

7.2CVSS6.3AI score0.02686EPSS
Exploits1References12Affected Software1
ATTACKERKB
ATTACKERKB
added 2007/04/10 9:19 p.m.4 views

CVE-2007-1206

The Virtual DOS Machine VDM in the Windows Kernel in Microsoft Windows NT 4.0; 2000 SP4; XP SP2; Server 2003, 2003 SP1, and 2003 SP2; and Windows Vista before June 2006; uses insecure permissions PAGEREADWRITE for a physical memory view, which allows local users to gain privileges by modifying th...

7.2CVSS5.5AI score0.02686EPSS
Exploits1References13
Rows per page
Query Builder