22 matches found
EUVD-2001-1269
Malware in sbrugna...
Session Appears Down in XenApp Farm and Csrss.exe Process Remains Active in Session
Session appears in astate in the XenApp farm. Csrss.exe process remains active in the session. This generally means that the session had problems on logoff and remains hung until it is manually terminated or the server is restarted. Additionally, if the server has sessions in this state and is...
Microsoft Windows DosDevices Activation Context Cache Poisoning Local Privilege Escalation Vulnerability
This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the CSRSS.exe...
Microsoft Client Server Run-time Subsystem (CSRSS) Privilege Elevation Vulnerability
Microsoft Client Server Run-time Subsystem is a client/server run-time subsystem from Microsoft Corporation of the United States, manifested as the csrss.exe process. It is a component of the Windows NT operating system family, appearing in Windows NT 3.1 and later systems, providing the user mod...
Backdoor.Win32.LanFiltrator.11.b Code Execution
Discovery / credits: Malvuln - malvuln.com c 2021 Original source: https://malvuln.com/advisory/9f87546e667e5af59a8580ddf7fd43c7.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Backdoor.Win32.LanFiltrator.11.b Vulnerability: Unauthenticated Remote Command Execution Description...
Microsoft’s Latest Patch Hoses Some Antivirus Software
Microsoft’s April 9 security update is bogging down systems running antivirus software packages made by McAfee, Avast, ArcaBit, Avira and Sophos. According to Microsoft, the company’s April Patch Tuesday security update is causing some systems to have slow startup times, sluggish performance or...
Windows Win32k Pointer Dereferencement PoC (MS10-098)
Exploit for windows platform in category dos / poc / MS10-098 CVE-2010-3944 Microsoft Windows Win32k pointer dereferencement -------------------- Affected Software ------------------------ Microsoft Windows 7 / 2008 -------------------- Consequences ----------------------- An unprivileged user ma...
Microsoft Windows - Win32k Pointer Dereferencement (PoC) (MS10-098)
/ MS10-098 CVE-2010-3944 Microsoft Windows Win32k pointer dereferencement -------------------- Affected Software ------------------------ Microsoft Windows 7 / 2008 -------------------- Consequences ----------------------- An unprivileged user may be able to cause a bugcheck, or possibly execute...
Microsoft Windows - Win32k Pointer Dereferencement (PoC) (MS10-098)
Microsoft Windows - Win32k Pointer Dereferencement PoC MS10-098 / MS10-098 CVE-2010-3944 Microsoft Windows Win32k pointer dereferencement -------------------- Affected Software ------------------------ Microsoft Windows 7 / 2008 -------------------- Consequences ----------------------- An...
Exploits Microsoft Windows NtRaiseHardError Csrss.exe-winsrv.dll Double Free
No description provided by source. ///////////////////////////////////////// ///////////////////////////////////////// ///// Microsoft Windows NtRaiseHardError ///// Csrss.exe-winsrv.dll Double Free ///////////////////////////////////////// ///// Ruben Santamarta ///// ruben at reversemode dot co...
Microsoft Windows - 'Csrss.exe/winsrv.dll' NtRaiseHardError Double-Free
///////////////////////////////////////// ///////////////////////////////////////// ///// Microsoft Windows NtRaiseHardError ///// Csrss.exe-winsrv.dll Double Free ///////////////////////////////////////// ///// Ruben Santamarta ///// ruben at reversemode dot com ///// www.reversemode.com...
MS Windows NtRaiseHardError Csrss.exe-winsrv.dll Double Free
No description provided by source. ///////////////////////////////////////// ///////////////////////////////////////// ///// Microsoft Windows NtRaiseHardError ///// Csrss.exe-winsrv.dll Double Free ///////////////////////////////////////// ///// Ruben Santamarta ///// ruben at reversemode dot co...
MS Windows NtRaiseHardError Csrss.exe-winsrv.dll Double Free
Exploit for unknown platform in category dos / poc ============================================================ MS Windows NtRaiseHardError Csrss.exe-winsrv.dll Double Free ============================================================ /////////////////////////////////////////...
Microsoft Windows - Csrss.exewinsrv.dll NtRaiseHardError Double-Free
Microsoft Windows - Csrss.exewinsrv.dll NtRaiseHardError Double-Free ///////////////////////////////////////// ///////////////////////////////////////// ///// Microsoft Windows NtRaiseHardError ///// Csrss.exe-winsrv.dll Double Free ///////////////////////////////////////// ///// Ruben Santamarta...
MS Windows NtRaiseHardError Csrss.exe Memory Disclosure Exploit
No description provided by source. ///////////////////////////////////////// ///////////////////////////////////////// ///// Microsoft Windows NtRaiseHardError ///// Csrss.exe memory disclosure ///////////////////////////////////////// ///// Ruben Santamarta ///// ruben at reversemode dot com ///...
csrssexe.txt
Hi, I have been taking a look at the NtRaiseHardError bug and just for fun I've coded an exploit. Watch out, not for the double free vulnerability indeed I have not analyzed that piece of code yet but just relying on NtRaiseHardError internals and how is dispatched a MessageBox with...
Microsoft Windows - NtRaiseHardError Csrss.exe Memory Disclosure
Microsoft Windows - NtRaiseHardError Csrss.exe Memory Disclosure ///////////////////////////////////////// ///////////////////////////////////////// ///// Microsoft Windows NtRaiseHardError ///// Csrss.exe memory disclosure ///////////////////////////////////////// ///// Ruben Santamarta /////...
MS Windows NtRaiseHardError Csrss.exe Memory Disclosure Exploit
Exploit for unknown platform in category local exploits =============================================================== MS Windows NtRaiseHardError Csrss.exe Memory Disclosure Exploit =============================================================== /////////////////////////////////////////...
Microsoft Windows - NtRaiseHardError 'Csrss.exe' Memory Disclosure
///////////////////////////////////////// ///////////////////////////////////////// ///// Microsoft Windows NtRaiseHardError ///// Csrss.exe memory disclosure ///////////////////////////////////////// ///// Ruben Santamarta ///// ruben at reversemode dot com ///// www.reversemode.com...
iDEFENSE Security Advisory 04.12.05: Microsoft Windows CSRSS.EXE Stack Overflow Vulnerability
Microsoft Windows CSRSS.EXE Stack Overflow Vulnerability iDEFENSE Security Advisory 04.12.05 www.idefense.com/application/poi/display?id=230&type=vulnerabilities April 12, 2005 I. BACKGROUND The Win32 application-programming interface API offers a console windows feature that provides a means to...