8 matches found
Win32k. sys keyboard layout file to mention the right vulnerability analysis-vulnerability warning-the black bar safety net
Author: Sebastien Renaud Translator: riusksk(springs brother: the http://riusksk.blogbus.com) This article will give you shed some light on the Stuxnet Virus the technical details, mainly aimed at the about the author is how to use 0day vulnerabilities to achieve code versatility. Discussed below...
Immunity Canvas: MS_TASKSCHEDULER
Name| mstaskscheduler ---|--- CVE| CVE-2010-2743 Exploit Pack| CANVAS Description| MSTASKSCHEDULER Notes| CVE Name: CVE-2010-2743 VENDOR: Microsoft Notes: This is one of the vulnerabilities used by the Stuxnet work to elevate its privileges on Windows Vista and Windows 7. This vulnerability is...
CVE-2010-2743
The CVE-2010-2743 issue affects Windows XP SP3 kernel-mode components, specifically the Win32k NtUserLoadKeyboardLayoutEx path, where indexing of a function-pointer table during loading of keyboard layouts from disk allows a local user to escalate privileges. The underlying cause is improper hand...
CVE-2010-2743
creationtimestamp| type| source ---|---|--- 2011-01-13 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/15985 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/post/windows/escalate/ms10073kbdlayout.rb 2025-02-06 03:13:39+00:00| seen...
Microsoft Win32k - Keyboard Layout (MS10-073)
// My koala is staring at you CºgºD // Source: http://reversemode.com/index.php?option=comcontent&task=view&id=71&Itemid=1 include include include define MAGICOFFSET 0x6261 define InitializeUnicodeStrp,s \ p-Length= wcslens2; \ p-MaximumLength = wcslens2+2; \ p-Buffer = s; \ declspecnaked HKL...
Microsoft Windows Win32k.sys内核驱动多个本地权限提升漏洞(MS10-073)
BUGTRAQ ID: 43773,43774 CVE ID: CVE-2010-2744,CVE-2010-2743 Microsoft Windows是微软发布的非常流行的操作系统。 Windows Win32k.sys内核态驱动加载特定键盘布局和验证窗口类数据的方式存在权限提升漏洞。成功利用这个漏洞的攻击者可以执行任意内核态代码。攻击者可随后安装程序;查看、更改或删除数据;或者创建拥有完全用户权限的新帐户。 Microsoft Windows XP SP3 Microsoft Windows XP Pro x64版SP2 Microsoft Windows Vista SP2...
Windows Kernel-Mode Drivers Privilege Elevation Vulnerabilities (981957)
This host is missing a critical security update according to Microsoft Bulletin MS10-073. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
MS10-073: Vulnerabilities in Windows Kernel-Mode Drivers Could Allow Elevation of Privilege (981957)
The remote Windows host is running a version of the Windows kernel that is affected by the following vulnerabilities : - A reference count leak, which could result in arbitrary code execution in the kernel. CVE-2010-2549 - Kernel-mode drivers load unspecified keyboard layers improperly, which cou...