The vulnerability of the Windows operating system’s kernel, which allows a hacker to disclose protected information

The vulnerability of the Windows operating system’s kernel is related to errors in memory object handling. Exploiting this vulnerability can allow an attacker to disclose sensitive information through a specially crafted application...

Microsoft Windows kernel elevation of privilege vulnerability (CNVD-2018-05040)

Microsoft Windows is a series of operating systems released by Microsoft Corporation in the U.S. Windows kernel is one of the operating system kernels. A privilege vulnerability exists in the Microsoft Windows kernel, which arises from a program's failure to properly handle objects in memory. The...

CVE-2017-17053

The initnewcontext function in arch/x86/include/asm/mmucontext.h in the Linux kernel before 4.12.10 does not correctly handle errors from LDT table allocation when forking a new process, allowing a local attacker to achieve a use-after-free or possibly have unspecified other impact by running a...

The vulnerability of Google Chrome browser allows a malicious actor to trigger a service denial.

The vulnerability in Google Chrome’s GPU/Blink/webGraphicsContext3dimpl.cc WebGL implementation allows a remote attacker to cause a service failure access outside of the boundary. This can be accomplished by using a specially crafted WebGL program, which triggers a state of uncertainty...

Design/Logic Flaw

Unquoted Windows search path vulnerability in the ptservice service prior to PrivateTunnel version 3.0 Windows and OpenVPN Connect version 3.1 Windows allows local users to gain privileges via a crafted program.exe file in the %SYSTEMDRIVE% folder...

CVE-2014-5455

Unquoted Windows search path vulnerability in the ptservice service prior to PrivateTunnel version 3.0 Windows and OpenVPN Connect version 3.1 Windows allows local users to gain privileges via a crafted program.exe file in the %SYSTEMDRIVE% folder...

PT-2014-6485

Name of the Vulnerable Software and Affected Versions PrivateTunnel versions prior to 3.0 OpenVPN Connect versions prior to 3.1 Description The issue allows local users to gain privileges via a crafted program.exe file in the %SYSTEMDRIVE% folder, due to an unquoted Windows search path...

Design/Logic Flaw

Unquoted Windows search path vulnerability in the QEMU Guest Agent service for Red Hat Enterprise Linux Desktop 6, HPC Node 6, Server 6, Workstation 6, Desktop Supplementary 6, Server Supplementary 6, Supplementary AUS 6.4, Supplementary EUS 6.4.z, and Workstation Supplementary 6, when installing...

DEBIAN-CVE-2013-0268

The msropen function in arch/x86/kernel/msr.c in the Linux kernel before 3.7.6 allows local users to bypass intended capability restrictions by executing a crafted application as root, as demonstrated by msr32.c...

Code injection

The kernel in Apple iOS before 6 dereferences invalid pointers during the handling of packet-filter data structures, which allows local users to gain privileges via a crafted program that makes packet-filter ioctl calls...

CVE-2012-3728

CVE-2012-3728 is an Apple iOS kernel vulnerability. It resides in the kernel’s handling of packet-filter data structures where an invalid pointer is dereferenced, enabling a local user to gain privileges via crafted packet-filter ioctl calls. Affected: iOS

Race condition

Race condition in DefenseWall Personal Firewall 3.00 on Windows XP allows local users to bypass kernel-mode hook handlers, and execute dangerous code that would otherwise be blocked by a handler but not blocked by signature-based malware detection, via certain user-space memory changes during...

Race condition

Race condition in VirusBuster Internet Security Suite 3.2 on Windows XP allows local users to bypass kernel-mode hook handlers, and execute dangerous code that would otherwise be blocked by a handler but not blocked by signature-based malware detection, via certain user-space memory changes durin...

Race condition

Race condition in Prevx 3.0.5.143 on Windows XP allows local users to bypass kernel-mode hook handlers, and execute dangerous code that would otherwise be blocked by a handler but not blocked by signature-based malware detection, via certain user-space memory changes during hook-handler execution...

Race condition

Race condition in Norman Security Suite PRO 8.0 on Windows XP allows local users to bypass kernel-mode hook handlers, and execute dangerous code that would otherwise be blocked by a handler but not blocked by signature-based malware detection, via certain user-space memory changes during...

Design/Logic Flaw

The kernel in Apple iOS before 5.1 does not properly handle debug system calls, which allows remote attackers to bypass sandbox restrictions and execute arbitrary code via a crafted program...

CVE-2011-3457

The OpenGL implementation in Apple Mac OS X before 10.7.3 does not properly perform OpenGL Shading Language aka GLSL compilation, which allows remote attackers to execute arbitrary code or cause a denial of service memory corruption and application crash via a crafted program...