Lucene search
K

8 matches found

Check Point Advisories
Check Point Advisories
added 2010/02/03 12:0 a.m.66 views

Microsoft Windows Win32k EOT Parsing Integer Overflow (MS09-065; CVE-2009-2514)

Microsoft Windows kernel, the core of the operating system, contains a device driver win32k.sys. This device driver is an important component that controls window displays, receives keyboard and device input, offers functions for graphic output devices, and provides many other valuable services...

9.3CVSS6.8AI score0.47489EPSS
Exploits7
Circl
Circl
added 2009/11/12 12:0 a.m.22 views

CVE-2009-2514

creationtimestamp| type| source ---|---|--- 2009-11-12 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/10068 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/dos/windows/browser/ms09065eotinteger.rb 2025-02-06...

9.3CVSS5.7AI score0.47489EPSS
Exploits7References2
seebug.org
seebug.org
added 2009/11/12 12:0 a.m.20 views

Microsoft Windows 2000-2008 Embedded OpenType Font Engine Remote Code Execution

No description provided by source. $Id: ms09065eotinteger.rb 7470 2009-11-11 23:48:53Z hdm $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of...

7.1AI score0.47489EPSS
Exploits7
NVD
NVD
added 2009/11/11 7:30 p.m.38 views

CVE-2009-2514

win32k.sys in the kernel in Microsoft Windows 2000 SP4, XP SP2 and SP3, and Server 2003 SP2 does not correctly parse font code during construction of a directory-entry table, which allows remote attackers to execute arbitrary code via a crafted Embedded OpenType EOT font, aka "Win32k EOT Parsing...

9.3CVSS7.2AI score0.47489EPSS
Exploits7References3
CVE
CVE
added 2009/11/11 7:0 p.m.94 views

CVE-2009-2514

CVE-2009-2514 is a Win32k.sys remote code execution vulnerability in the embedded OpenType (EOT) font parsing path. The kernel component on Windows 2000 SP4, XP SP2/SP3, and Server 2003 SP2 parses EOT fonts and can be coerced by a crafted font to execute arbitrary code with kernel privileges. The...

9.3CVSS7.1AI score0.47489EPSS
Exploits7References3Affected Software5
Cvelist
Cvelist
added 2009/11/11 7:0 p.m.43 views

CVE-2009-2514

win32k.sys in the kernel in Microsoft Windows 2000 SP4, XP SP2 and SP3, and Server 2003 SP2 does not correctly parse font code during construction of a directory-entry table, which allows remote attackers to execute arbitrary code via a crafted Embedded OpenType EOT font, aka "Win32k EOT Parsing...

7.2AI score0.47489EPSS
Exploits7References3
OpenVAS
OpenVAS
added 2009/11/11 12:0 a.m.24 views

Microsoft Windows Kernel-Mode Drivers Multiple Vulnerabilities (969947)

This host is missing a critical security update according to Microsoft Bulletin MS09-065. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

9.3CVSS5AI score0.47489EPSS
Exploits7References6
Tenable Nessus
Tenable Nessus
added 2009/11/10 12:0 a.m.57 views

MS09-065: Vulnerabilities in Windows Kernel-Mode Drivers Could Allow Remote Code Execution (969947)

The remote host contains a version of the Windows kernel that is affected by multiple vulnerabilities : - A NULL pointer dereferencing vulnerability allowing a local user to elevate his privileges CVE-2009-1127 - Insufficient validation of certain input passed to GDI from user mode allows a local...

9.3CVSS6.1AI score0.47489EPSS
Exploits7References4
Rows per page
Query Builder