8 matches found
Microsoft Windows Win32k EOT Parsing Integer Overflow (MS09-065; CVE-2009-2514)
Microsoft Windows kernel, the core of the operating system, contains a device driver win32k.sys. This device driver is an important component that controls window displays, receives keyboard and device input, offers functions for graphic output devices, and provides many other valuable services...
CVE-2009-2514
creationtimestamp| type| source ---|---|--- 2009-11-12 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/10068 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/dos/windows/browser/ms09065eotinteger.rb 2025-02-06...
Microsoft Windows 2000-2008 Embedded OpenType Font Engine Remote Code Execution
No description provided by source. $Id: ms09065eotinteger.rb 7470 2009-11-11 23:48:53Z hdm $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of...
CVE-2009-2514
win32k.sys in the kernel in Microsoft Windows 2000 SP4, XP SP2 and SP3, and Server 2003 SP2 does not correctly parse font code during construction of a directory-entry table, which allows remote attackers to execute arbitrary code via a crafted Embedded OpenType EOT font, aka "Win32k EOT Parsing...
CVE-2009-2514
CVE-2009-2514 is a Win32k.sys remote code execution vulnerability in the embedded OpenType (EOT) font parsing path. The kernel component on Windows 2000 SP4, XP SP2/SP3, and Server 2003 SP2 parses EOT fonts and can be coerced by a crafted font to execute arbitrary code with kernel privileges. The...
CVE-2009-2514
win32k.sys in the kernel in Microsoft Windows 2000 SP4, XP SP2 and SP3, and Server 2003 SP2 does not correctly parse font code during construction of a directory-entry table, which allows remote attackers to execute arbitrary code via a crafted Embedded OpenType EOT font, aka "Win32k EOT Parsing...
Microsoft Windows Kernel-Mode Drivers Multiple Vulnerabilities (969947)
This host is missing a critical security update according to Microsoft Bulletin MS09-065. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
MS09-065: Vulnerabilities in Windows Kernel-Mode Drivers Could Allow Remote Code Execution (969947)
The remote host contains a version of the Windows kernel that is affected by multiple vulnerabilities : - A NULL pointer dereferencing vulnerability allowing a local user to elevate his privileges CVE-2009-1127 - Insufficient validation of certain input passed to GDI from user mode allows a local...