Lucene search
K

5 matches found

Circl
Circl
added 2017/04/10 6:27 p.m.12 views

CVE-2014-4148

creationtimestamp| type| source ---|---|--- 2017-04-10 18:27:54+00:00| seen| MISP/58ebcb95-ce14-4c45-8b67-9b5402de0b81 2017-04-11 11:48:10+00:00| seen| MISP/58ecc214-a3a0-4d43-adff-95c6950d210f 2020-10-09 16:54:06+00:00| seen| MISP/a55437f3-0cf7-44ca-9fdd-edefb18b7111 2023-06-14 21:10:03+00:00|...

9.3CVSS6AI score0.50703EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2014/10/15 10:0 a.m.7 views

CVE-2014-4148

win32k.sys in the kernel-mode drivers in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows remote attackers to execute arbitrary code via a crafted...

8.9AI score0.50703EPSS
Exploits0References5
CVE
CVE
added 2014/10/15 10:0 a.m.930 views

CVE-2014-4148

CVE-2014-4148 is a remote code execution vulnerability in Windows kernel-mode driver win32k.sys caused by improper handling of TrueType fonts. It affects multiple Windows versions (server 2003 SP2, Vista, 2008, 7, 8/8.1, Server 2012) and is referenced publicly as MS14-058. Public exploitation exi...

9.3CVSS7.9AI score0.50703EPSS
In wildExploits0References6Affected Software9
Check Point Advisories
Check Point Advisories
added 2014/10/15 12:0 a.m.31 views

Microsoft Windows TrueType Font Parsing Remote Code Execution (MS14-058; CVE-2014-4148; CVE-2015-1671)

A remote code execution vulnerability has been reported in Microsoft Windows. The vulnerability is caused due to incorrect handling of specially crafted TTF files. A remote attacker may exploit this vulnerability by enticing an affected user to open a specially crafted web-page...

9.3CVSS5.3AI score0.54628EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2014/10/15 12:0 a.m.356 views

MS14-058: Vulnerabilities in Kernel-Mode Driver Could Allow Remote Code Execution (3000061)

The remote Windows host is affected by multiple vulnerabilities : - A privilege escalation vulnerability allows an attacker to run arbitrary code in kernel mode due to the kernel-mode driver improperly handling objects in memory. CVE-2014-4113 - A remote code execution vulnerability allows a remo...

9.3CVSS8.6AI score0.87042EPSS
Exploits22References3
Rows per page
Query Builder