CVE-2007-1206

CVE-2007-1206 describes a Windows Kernel local privilege elevation due to incorrect permissions on a mapped memory segment (PAGE_READWRITE) for a physical memory view, enabling an unprivileged user to modify the zero page and gain privileges. Affected systems include Windows NT 4.0; 2000 SP4; XP ...

MS07-022: Vulnerability in Windows Kernel Could Allow Elevation of Privilege (931784)

The remote host contains a version of the Windows kernel that is vulnerable to a security flaw which could allow a local user to elevate privileges or to crash it therefore causing a denial of service. Tenable Network Security, Inc. include"compat.inc"; if description scriptid25025;...

Microsoft Windows Kernel vulnerable to privilege escalation

Overview The Microsoft Windows Kernel contains a privilege escalation vulnerability that may allow a local attacker to take control of the system. Description The Microsoft Windows Kernel fails to properly set permissions when mapping to a memory segment. By running a specially crafted applicatio...

Windows kernel GDI structures privilege escalation

It's possible to remap read-only share memory section in write mode...

Multiple Windows kernel security vulnerabilities

Buffer overflow vulnerability allows privilege escalation, WinLogon user profile DLL privilege escalation, unhandled exception code execution vulnerability...

MS Windows (Windows Kernel) Privilege Escalation Exploit (MS06-049)

Exploit for unknown platform in category local exploits =================================================================== MS Windows Windows Kernel Privilege Escalation Exploit MS06-049 =================================================================== / MS06-049 Windows ZwQuerySystemInformati...

Microsoft Windows Kernel vulnerable to privilege escalation

Overview Microsoft Windows contains a privilege escalation vulnerability that could allow an authenticated, local attacker to gain complete control of the affected system. Description Winlogon is the component of Microsoft Windows responsible for interactive, security related functions. Upon logo...

Microsoft Security Bulletin MS06-049 Vulnerability in Windows Kernel Could Result in Elevation of Privilege (920958)

Microsoft Security Bulletin MS06-049 Vulnerability in Windows Kernel Could Result in Elevation of Privilege 920958 Published: August 8, 2006 Version: 1.0 Summary Who Should Read this Document: Customers who use Microsoft Windows Impact of Vulnerability: Elevation of Privilege Maximum Severity...

Microsoft Security Bulletin MS06-051 Vulnerability in Windows Kernel Could Result in Remote Code Execution (917422)

Microsoft Security Bulletin MS06-051 Vulnerability in Windows Kernel Could Result in Remote Code Execution 917422 Published: August 8, 2006 Version: 1.0 Summary Who Should Read this Document: Customers who use Microsoft Windows Impact of Vulnerability: Remote Code Execution Maximum Severity Ratin...

MS06-049: Vulnerability in Windows Kernel Could Result in Elevation of Privilege (920958)

The remote host contains a version of the Windows kernel that could allow a local user to elevate his privileges or to crash it therefore causing a denial of service. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid22191; scriptversion"1.30"; scriptcvsdate"Date:...

Microsoft Security Bulletin MS05-055 Vulnerability in Windows Kernel Could Allow Elevation of Privilege (908523)

Microsoft Security Bulletin MS05-055 Vulnerability in Windows Kernel Could Allow Elevation of Privilege 908523 Published: December 13, 2005 Version: 1.0 Summary Who should read this document: Customers who use Microsoft Windows Impact of Vulnerability: Elevation of Privilege Maximum Severity...

[EEYEB-20050523] Windows Kernel APC Data-Free Local Privilege Escalation Vulnerability

Windows Kernel APC Data-Free Local Privilege Escalation Vulnerability Release Date: December 13, 2005 Date Reported: May 23, 2005 External Refferences: eEye ID EEYEB-20050523 OSVDB ID 18823 CVE CAN-2005-2827 Microsoft MS05-055 Severity: Medium Local Privilege Escalation to Kernel Systems Affected...

MS05-055: Vulnerability in Windows Kernel Could Allow Elevation of Privilege (908523)

The remote host contains a version of the Windows kernel that may allow a local user to elevate his privileges or to crash it therefore causing a denial of service. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid20298; scriptversion"1.32"; scriptcvsdate"Date:...

CVE-2003-1233

Pedestal Software Integrity Protection Driver IPD 1.3 and earlier allows privileged attackers, such as rootkits, to bypass file access restrictions to the Windows kernel by using the NtCreateSymbolicLinkObject function to create a symbolic link to 1 \Device\PhysicalMemory or 2 to a drive letter...

CVE-2003-1233

Pedestal Software Integrity Protection Driver (IPD) 1.3 and earlier is affected. The root cause is the ability to create a symbolic link via NtCreateSymbolicLinkObject to access sensitive kernel resources, specifically to \Device\PhysicalMemory or via a drive letter created with subst. This bypas...

Microsoft Security Bulletin MS05-018 Vulnerabilities in Windows Kernel Could Allow Elevation of Privilege and Denial of Service (890859)

Microsoft Security Bulletin MS05-018 Vulnerabilities in Windows Kernel Could Allow Elevation of Privilege and Denial of Service 890859 Issued: April 12, 2005 Version: 1.0 Summary Who should read this document: Customers who use Microsoft Windows Impact of Vulnerability: Elevation of Privilege...

Microsoft Windows Kernel Vulnerability

Overview A privilege elevation vulnerability exists in the way that the Windows' kernel processes certain access requests. This vulnerability could allow a logged on user to take complete control of the system. Description A locally authenticated user could potentially exploit a vulnerability in...

MS05-018: Vulnerabilities in Windows Kernel (890859)

The remote host contains a version of the Windows kernel that is vulnerable to a security flaw that could allow a local user to elevate his privileges or to crash the remote host therefore causing a denial of service. C Tenable Network Security, Inc. include"compat.inc"; if description...

MS05-002: Cursor and Icon Format Handling Code Execution (891711)

The remote host contains a version of the Windows kernel that is affected by a security flaw in the way that cursors and icons are handled. An attacker may be able to execute arbitrary code on the remote host by constructing a malicious web page and entice a victim to visit this web page. An...

CVE-2004-0893

The Local Procedure Call LPC interface of the Windows Kernel for Windows NT 4.0, Windows 2000, Windows XP, and Windows Server 2003 does not properly validate the lengths of messages sent to the LPC port, which allows local users to gain privileges, aka "Windows Kernel Vulnerability."...