Lucene search
K

13 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 4:6 p.m.16 views

CVE-2020-1054

An elevation of privilege vulnerability exists in Windows when the Windows kernel-mode driver fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1143...

7.8CVSS7.7AI score0.52778EPSS
Exploits5References1
The Hacker News
The Hacker News
added 2024/02/09 4:32 p.m.71 views

Raspberry Robin Malware Upgrades with Discord Spread and New Exploits

The operators of Raspberry Robin are now using two new one-day exploits to achieve local privilege escalation, even as the malware continues to be refined and improved to make it stealthier than before. This means that "Raspberry Robin has access to an exploit seller or its authors develop the...

8.4CVSS7.9AI score0.78376EPSS
Exploits32
Rapid7 Blog
Rapid7 Blog
added 2020/12/18 7:15 p.m.200 views

Metasploit Wrap-Up

It's the week of December 17th and that can only mean one thing: a week until Christmas! For those of you who don't celebrate Christmas, a very happy Hanukkah/Chanukah, Kwanzaa, Diwali, Chinese New Year, Winter Solstice and Las Posadas to you all! This is our last weekly wrap-up this year, but as...

10CVSS9.3AI score0.80291EPSS
Exploits36
Metasploit
Metasploit
added 2020/12/15 5:41 p.m.115 views

Microsoft Windows DrawIconEx OOB Write Local Privilege Elevation

This module exploits CVE-2020-1054, an out of bounds write reachable from DrawIconEx within win32k. The out of bounds write can be used to overwrite the pvbits of a SURFOBJ. By utilizing this vulnerability to execute controlled writes to kernel memory, an attacker can gain arbitrary code executio...

7.8CVSS7.9AI score0.52778EPSS
Exploits5
Packet Storm
Packet Storm
added 2020/12/15 12:0 a.m.371 views

Microsoft Windows DrawIconEx Local Privilege Escalation

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core/post/file' require 'msf/core/exploit/exe' require 'msf/core/post/windows/priv' class MetasploitModule 'Microsoft Windows DrawIconEx OOB Write Local...

7.2CVSS0.5AI score0.52778EPSS
Exploits5
0day.today
0day.today
added 2020/12/15 12:0 a.m.113 views

Microsoft Windows DrawIconEx Local Privilege Escalation Exploit

This Metasploit module exploits CVE-2020-1054, an out of bounds write reachable from DrawIconEx within win32k. The out of bounds write can be used to overwrite the pvbits of a SURFOBJ. By utilizing this vulnerability to execute controlled writes to kernel memory, an attacker can gain arbitrary co...

7.8CVSS9AI score0.52778EPSS
Exploits5
GithubExploit
GithubExploit
added 2020/06/16 11:22 p.m.131 views

Exploit for Out-of-bounds Write in Microsoft

CVE-2020-1054 CVE-2020-1054 LPE for Windows 7x64 !image 1d...

7.8CVSS7.9AI score0.52778EPSS
Exploits5
NVD
NVD
added 2020/05/21 11:15 p.m.20 views

CVE-2020-1143

An elevation of privilege vulnerability exists in Windows when the Windows kernel-mode driver fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1054...

7.8CVSS8.7AI score0.01284EPSS
Exploits0References1
OSV
OSV
added 2020/05/21 11:15 p.m.2 views

CVE-2020-1054

An elevation of privilege vulnerability exists in Windows when the Windows kernel-mode driver fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1143...

7.8CVSS7.1AI score0.52778EPSS
Exploits5References3
Prion
Prion
added 2020/05/21 11:15 p.m.25 views

Privilege escalation

An elevation of privilege vulnerability exists in Windows when the Windows kernel-mode driver fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1054...

7.2CVSS7.6AI score0.52778EPSS
Exploits5References1Affected Software4
CVE
CVE
added 2020/05/21 10:52 p.m.1209 views

CVE-2020-1054

CVE-2020-1054 is a Win32k kernel-mode elevation of privilege vulnerability in Windows where the Windows kernel-driver mishandles memory objects. The CVE entry is distinct from CVE-2020-1143. Public references in the provided set show an exploit for CVE-2020-1054 (Out-of-bounds write in Microsoft ...

7.8CVSS7.8AI score0.52778EPSS
In wildExploits5References3Affected Software17
ATTACKERKB
ATTACKERKB
added 2020/05/21 12:0 a.m.42 views

CVE-2020-1054

An elevation of privilege vulnerability exists in Windows when the Windows kernel-mode driver fails to properly handle objects in memory, aka ‘Win32k Elevation of Privilege Vulnerability’. This CVE ID is unique from CVE-2020-1143. Recent assessments: Assessed Attacker Value: 0 Assessed Attacker...

7.8CVSS8.6AI score0.52778EPSS
In wildExploits5References3
Circl
Circl
added 2020/05/14 11:25 a.m.37 views

CVE-2020-1054

creationtimestamp| type| source ---|---|--- 2020-05-14 11:25:09+00:00| published-proof-of-concept| https://t.me/cKure/554 2020-05-17 23:19:57+00:00| published-proof-of-concept| Telegram/S6cKiaRN2UkEobcxhQf6vSUnVPFGFqMX2ieCw0Y3BuGN 2020-05-28 00:37:34+00:00| published-proof-of-concept|...

7.8CVSS7.3AI score0.52778EPSS
Exploits5References9
Rows per page
Query Builder