Lucene search
K

4 matches found

seebug.org
seebug.org
added 2010/08/12 12:0 a.m.32 views

Windows win32k.sys驱动用户池溢出本地权限提升漏洞(MS10-048)

BUGTRAQ ID: 42245 CVE ID: CVE-2010-1895 Microsoft Windows是微软发布的非常流行的操作系统。 Windows中的win32k.sys内核驱动在从用户态进行拷贝时没有正确地分配内存,导致权限提升。成功利用这个漏洞的攻击者可以执行任意内核态代码。攻击者可随后安装程序;查看、更改或删除数据;或者创建拥有完全用户权限的新帐户。 Microsoft Windows XP SP3 Microsoft Windows XP Pro x64版SP2 Microsoft Windows Server 2003 SP2 厂商补丁: Microsoft...

7.2CVSS6.4AI score0.01591EPSS
Exploits1
CVE
CVE
added 2010/08/11 6:0 p.m.91 views

CVE-2010-1895

CVE-2010-1895 affects Windows kernel-mode driver win32k.sys on Windows XP SP2/SP3 and Windows Server 2003 SP2. The root cause is improper memory allocation when copying data from user mode to kernel mode, enabling local privilege escalation via a crafted application. Microsoft released patch MS10...

7.2CVSS6.2AI score0.01591EPSS
Exploits1References3Affected Software3
Tenable Nessus
Tenable Nessus
added 2010/08/11 12:0 a.m.46 views

MS10-048: Vulnerabilities in Windows Kernel-Mode Drivers Could Allow Elevation of Privilege (2160329)

The remote Windows host is running a version of the Windows kernel that is affected by one or more of the following vulnerabilities : - Improper valiation of an argument passed to a system call can result in a denial of service. CVE-2010-1887 - Certain unspecified exceptions are not properly...

8.4CVSS8AI score0.03428EPSS
Exploits10References6
OpenVAS
OpenVAS
added 2010/08/11 12:0 a.m.31 views

Microsoft Windows Kernel Mode Drivers Privilege Elevation Vulnerabilities (2160329)

This host is missing a critical security update according to Microsoft Bulletin MS10-048. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

8.4CVSS7.3AI score0.03428EPSS
Exploits10References6
Rows per page
Query Builder