Lucene search
K

9 matches found

Packet Storm
Packet Storm
added 2018/09/22 12:0 a.m.189 views

Microsoft Windows ALPC Task Scheduler Local Privilege Elevation

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core/post/file' require 'msf/core/post/windows/priv' require 'msf/core/post/windows/registry' TODO: Do we need this? require 'msf/core/exploit/exe' class...

0.4AI score0.18386EPSS
Exploits7
canvas
canvas
added 2018/09/13 12:29 a.m.90 views

Immunity Canvas: ALPC_TASKSCHED_LPE

Name| alpctaskschedlpe ---|--- CVE| CVE-2018-8440 Exploit Pack| CANVAS Description| ALPC Tasksched LPE Notes| CVE Name: CVE-2018-8440 Notes: WARNING: The PrintConfig.dll on the target host will be overwritten when the exploit runs. Tested: Windows 10 1703 x64 Windows 10 1803 x86 VENDOR: Microsoft...

7.2CVSS7.1AI score0.18386EPSS
Exploits7
Vulnrichment
Vulnrichment
added 2018/09/13 12:0 a.m.3 views

CVE-2018-8440

An elevation of privilege vulnerability exists when Windows improperly handles calls to Advanced Local Procedure Call ALPC, aka "Windows ALPC Elevation of Privilege Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8....

6.6AI score0.18386EPSS
Exploits7References5
Circl
Circl
added 2018/09/11 11:24 p.m.17 views

CVE-2018-8440

creationtimestamp| type| source ---|---|--- 2018-09-11 23:24:48+00:00| exploited| https://t.me/informationsecuritychannel/20194 2018-09-11 23:30:55+00:00| exploited| https://t.me/cibsecurity/156 2018-09-12 03:14:09+00:00| published-proof-of-concept| https://t.me/ctinow/2319 2018-09-12...

7.8CVSS7.4AI score0.18386EPSS
Exploits7References14
ThreatPost
ThreatPost
added 2018/09/11 9:4 p.m.66 views

Microsoft Patches Actively Exploited Bug as Part of Patch Tuesday

UPDATE Microsoft has patched an elevation-of-privilege vulnerability it said is actively being exploited by hackers. The fix was part of Microsoft’s scheduled September Patch Tuesday release, which also included fixes for two other bugs found being used in the wild, including the zero-day found i...

9.3CVSS0.3AI score0.23044EPSS
Exploits7References11
Krebs on Security
Krebs on Security
added 2018/09/11 8:35 p.m.157 views

Patch Tuesday, September 2018 Edition

Adobe and Microsoft today each released patches to fix serious security holes in their software. Adobe pushed out a new version of its beleaguered Flash Player browser plugin. Redmond issued updates to address at least 61 distinct vulnerabilities in Microsoft Windows and related programs, includi...

0.5AI score0.18386EPSS
Exploits7
Tenable Nessus
Tenable Nessus
added 2018/09/11 12:0 a.m.136 views

KB4457128: Windows 10 Version 1803 and Windows Server Version 1803 September 2018 Security Update

The remote Windows host is missing security update 4457128. It is, therefore, affected by multiple vulnerabilities : - A remote code execution vulnerability exists in the way the scripting engine handles objects in memory in Microsoft browsers. The vulnerability could corrupt memory in such a way...

10CVSS7.9AI score0.69019EPSS
Exploits16References48
Tenable Nessus
Tenable Nessus
added 2018/09/11 12:0 a.m.233 views

KB4457143: Windows 8.1 and Windows Server 2012 R2 September 2018 Security Update

The remote Windows host is missing security update 4457143 or cumulative update 4457129. It is, therefore, affected by multiple vulnerabilities : - A remote code execution vulnerability exists in the way the scripting engine handles objects in memory in Microsoft browsers. The vulnerability could...

10CVSS8.2AI score0.48901EPSS
Exploits11References29
Tenable Nessus
Tenable Nessus
added 2018/09/11 12:0 a.m.111 views

KB4457140: Windows Server 2012 September 2018 Security Update

The remote Windows host is missing security update 4457140 or cumulative update 4457135. It is, therefore, affected by multiple vulnerabilities : - A remote code execution vulnerability exists in the way the scripting engine handles objects in memory in Microsoft browsers. The vulnerability could...

10CVSS8.2AI score0.48901EPSS
Exploits11References24
Rows per page
Query Builder