4 matches found
Microsoft Windows Service Control Manager 本地权限提升漏洞(CVE-2013-3862)(MS13-077)
BUGTRAQ ID: 62182 CVECAN ID: CVE-2013-3862 Windows是一款由美国微软公司开发的窗口化操作系统 Windows 服务控制管理器 SCM 处理内存中对象的方式中存在一个特权提升漏洞。此漏洞源于处理注册表内的服务描述时,服务控制管理器 services.exe 存在重复释放错误。成功利用此漏洞的攻击者可执行任意代码,并可完全控制受影响的系统 0 Microsoft Windows Server 2008 Microsoft Windows 7 厂商补丁: Microsoft ---------...
CVE-2013-3862
Double free vulnerability in Microsoft Windows 7 and Server 2008 R2 SP1 allows local users to gain privileges via a crafted service description that is not properly handled by services.exe in the Service Control Manager SCM, aka "Service Control Manager Double Free Vulnerability."...
CVE-2013-3862
CVE-2013-3862 is a local privilege-escalation flaw in the Windows Service Control Manager (SCM) on Windows 7 and Windows Server 2008 R2 SP1. The root cause is a double-free in handling service descriptions within services.exe, allowing an attacker with local access to execute arbitrary code and g...
Microsoft Windows Service Control Manager CVE-2013-3862 Local Privilege Escalation Vulnerability
Description Microsoft Windows is prone to a local privilege-escalation vulnerability that exists in the Windows Service Control Manager SCM. An attacker can exploit this issue to execute arbitrary code with escalated privileges. Successfully exploiting this issue can lead to the complete compromi...