Microsoft Windows本地权限提升漏洞(CVE-2012-1848)(MS12-034)

BUGTRAQ ID: 53327 CVE ID: CVE-2012-1848 Microsoft Windows是流行的计算机操作系统。 Windows内核模式驱动程序中存在一个特权提升漏洞。成功利用此漏洞的攻击者可以运行内核模式中的任意代码。攻击者随后可安装程序；查看、更改或删除数据；或者创建拥有完全管理权限的新帐户。 0 Microsoft Windows Windows XP Service Pack 3 0 Microsoft Windows Windows XP Professional x64 Ed Microsoft Windows Windows XP...

Microsoft Security Update For Microsoft Office, .NET Framework, and Silverlight (2681578)

This host is missing a critical security update according to Microsoft Bulletin MS12-034. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

CVE-2012-1848

CVE-2012-1848 affects win32k.sys kernel-mode drivers across multiple Windows versions (XP SP2/SP3, Server 2003 SP2, Vista SP2, Server 2008 SP2/R2/R2 SP1, Windows 7 SP1, and Windows 8 Consumer Preview). The underlying issue is improper handling of user-mode input passed to kernel mode, which enabl...

MS12-034: Combined Security Update for Microsoft Office, Windows, .NET Framework, and Silverlight (2681578)

The remote Windows host is missing a security update. It is, therefore, affected by multiple vulnerabilities : - A flaw exists in the Win32k TrueType font parsing engine that allows an unauthenticated, remote attacker to execute arbitrary code by convincing a user to open a Word document containi...