CVE-2017-0263

CVE-2017-0263: Windows Win32k local privilege escalation via kernel-mode drivers. The CVE concerns memory-object handling in Win32k.sys that allows a local attacker to gain privileges through a crafted application. Documents identify the affected Windows family (Windows 7 SP1, 8.1, Windows Server...

CVE-2017-0263

The kernel-mode drivers in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allow local users to gain privileges via a crafted application, aka "Win32k Elevation of...

Microsoft Windows 'Win32k.sys' Multiple Vulnerabilities (KB4019204)

This host is missing an important security update according to Microsoft security update KB4019204. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...

Microsoft Windows Multiple Vulnerabilities (KB4019472)

This host is missing a critical/important security update according to Microsoft KB4019472. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

CVE-2017-0263

creationtimestamp| type| source ---|---|--- 2017-05-09 18:26:18+00:00| seen| MISP/59120865-27e0-4e6d-9b74-4a9f950d210f 2017-05-20 11:22:46+00:00| seen| https://t.me/canyoupwnme/1426 2018-02-21 07:47:18+00:00| seen| MISP/5a8d2377-208c-4330-908f-4818950d210f 2018-04-13 13:08:50+00:00|...

EPS Processing Zero-Days Exploited by Multiple Threat Actors

In 2015, FireEye published details about two attacks exploiting vulnerabilities in Encapsulated PostScript EPS of Microsoft Office. One was a zero-day and one was patched weeks before the attack launched. Recently, FireEye identified three new zero-day vulnerabilities in Microsoft Office products...

Microsoft Win32k Elevation of Privilege (CVE-2017-0263)

A Use-After-Free vulnerability exists in Windows. The vulnerability occurs when the Windows kernel-mode driver fails to properly handle objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode with full user rights...

VulnCheck KEV: CVE-2017-0263

Microsoft Win32k contains a privilege escalation vulnerability due to the Windows kernel-mode driver failing to properly handle objects in memory...

Microsoft Windows Kernel 'Win32k.sys' CVE-2017-0263 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability. A local attacker can exploit this issue to execute arbitrary code in kernel mode with elevated privileges. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version...

Windows 2008 May 2017 Multiple Security Updates

The remote Windows host is missing multiple security updates released on 2017/05/09. It is, therefore, affected by multiple vulnerabilities : - An elevation of privilege vulnerability exists when the Windows improperly handles objects in memory. CVE-2017-0077 - A denial of service vulnerability...