Lucene search
K

17 matches found

Gitee
Gitee
added 2020/05/02 2:33 p.m.18 views

Exploit for CVE-2018-8453

cve-2018-8453-exp cve-2018-8453 exp 本程序为cve-2018-8453的利用程序。 开发\测试平台:x86: windows 10 rs2 15063 x64: windos 10 rs2 16299 附: 使用Palette来读写内核 严重声明: 本工具仅用于技术研究学习。非法使用造成一切后果,均与本人无关。...

7.8CVSS7.1AI score0.69833EPSS
Exploits9
0day.today
0day.today
added 2019/07/17 12:0 a.m.94 views

Microsoft Windows NtUserSetWindowFNID Win32k User Callback Exploit

An elevation of privilege vulnerability exists in Microsoft Windows when the Win32k component fails to properly handle objects in memory. This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2019, Windows Server 2012, Windows 8.1, Windows Server 2016...

7.2CVSS0.69833EPSS
Exploits9
Exploit DB
Exploit DB
added 2019/07/17 12:0 a.m.329 views

Microsoft Windows - NtUserSetWindowFNID Win32k User Callback Privilege Escalation (Metasploit)

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Windows NtUserSetWindowFNID Win32k User Callback', 'Description' = %q An elevation of privilege vulnerability exists in Windows when the Win32k...

7.8CVSS8.1AI score0.69833EPSS
Exploits9
Packet Storm
Packet Storm
added 2019/07/16 12:0 a.m.225 views

Microsoft Windows NtUserSetWindowFNID Win32k User Callback

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Windows NtUserSetWindowFNID Win32k User Callback', 'Description' = %q An elevation of privilege vulnerability exists in Windows when the Win32k...

7.2CVSS8AI score0.69833EPSS
Exploits9
Metasploit
Metasploit
added 2019/07/09 12:15 p.m.74 views

Windows NtUserSetWindowFNID Win32k User Callback

An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka "Win32k Elevation of Privilege Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2019, Windows Serv...

7.8CVSS7.7AI score0.69833EPSS
Exploits9
Securelist
Securelist
added 2019/07/03 10:0 a.m.362 views

Sodin ransomware exploits Windows vulnerability and processor architecture

When Sodin also known as Sodinokibi and REvil appeared in the first half of 2019, it immediately caught our attention for distributing itself through an Oracle Weblogic vulnerability and carrying out attacks on MSP providers. In a detailed analysis, we discovered that it also exploits the...

7.2CVSS0.3AI score0.69833EPSS
Exploits9
Krebs on Security
Krebs on Security
added 2018/10/11 7:34 a.m.72 views

Patch Tuesday, October 2018 Edition

Microsoft this week released software updates to fix roughly 50 security problems with various versions of its Windows operating system and related software, including one flaw that is already being exploited and another for which exploit code is publicly available. The zero-day bug --...

0.3AI score0.69833EPSS
Exploits11
canvas
canvas
added 2018/10/10 1:29 p.m.230 views

Immunity Canvas: SETWINDOWFNID_LPE

Name| setwindowfnidlpe ---|--- CVE| CVE-2018-8453 Exploit Pack| CANVAS Description| SetWindowFNID LPE Notes| CVE Name: CVE-2018-8453 Notes: Tested: - Windows 10 x64 1703 - Windows 10 x64 1709 VENDOR: Microsoft CVE Url: https://nvd.nist.gov/vuln/detail/CVE-2018-8453 CVSS: 7.8...

7.2CVSS0.6AI score0.69833EPSS
Exploits9
CVE
CVE
added 2018/10/10 1:0 p.m.1187 views

CVE-2018-8453

CVE-2018-8453 is a Windows Win32k local privilege escalation vulnerability. The flaw arises when Win32k fails to properly handle memory objects, allowing an attacker to escalate privileges via local code execution. Affected products include Windows 7, Windows 8.1, Windows 10 (and server variants ...

7.8CVSS7.6AI score0.69833EPSS
In wildExploits9References6Affected Software15
Securelist
Securelist
added 2018/10/10 7:0 a.m.1568 views

Zero-day exploit (CVE-2018-8453) used in targeted attacks

Yesterday, Microsoft published their security bulletin, which patches CVE-2018-8453, among others. It is a vulnerability in win32k.sys discovered by Kaspersky Lab in August. We reported this vulnerability to Microsoft on August 17, 2018. Microsoft confirmed the vulnerability and designated it...

7.2CVSS0.3AI score0.69833EPSS
Exploits13
Circl
Circl
added 2018/10/10 4:0 a.m.15 views

CVE-2018-8453

creationtimestamp| type| source ---|---|--- 2018-10-10 04:00:00+00:00| seen| https://www.govcert.gov.hk/en/alertsdetail.php?id=331 2018-10-10 08:10:34+00:00| seen| MISP/5bbdb2cd-0488-47d3-b2a1-186aac12042b 2018-10-10 09:15:53+00:00| exploited| https://t.me/ctinow/3477 2018-10-10 10:13:36+00:00|...

7.8CVSS7.4AI score0.69833EPSS
Exploits9References19
OpenVAS
OpenVAS
added 2018/10/10 12:0 a.m.160 views

Microsoft Windows Multiple Vulnerabilities (KB4462923)

This host is missing a critical security update according to Microsoft KB4462923 SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.3CVSS6.8AI score0.69833EPSS
Exploits16References3
OpenVAS
OpenVAS
added 2018/10/10 12:0 a.m.87 views

Microsoft Windows Multiple Vulnerabilities (KB4462922)

This host is missing a critical security update according to Microsoft KB4462922 SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.3CVSS6.8AI score0.69833EPSS
Exploits16References3
ThreatPost
ThreatPost
added 2018/10/09 9:24 p.m.387 views

Microsoft Patches Zero-Day Under Active Attack by APT

Microsoft has issued a patch for a zero-day bug being actively exploited in the wild, as part of its Patch Tuesday security bulletin. The vulnerability is an elevation-of-privilege flaw, rated important, affecting the Windows Win32k component. The zero-day CVE-2018-8453, found by Kaspersky Lab,...

9.3CVSS0.69833EPSS
Exploits12References7
Check Point Advisories
Check Point Advisories
added 2018/10/09 12:0 a.m.9 views

Microsoft Win32k Elevation of Privilege (CVE-2018-8453)

An elevation of privilege vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

7.2CVSS6AI score0.69833EPSS
Exploits9
Kaspersky
Kaspersky
added 2018/10/09 12:0 a.m.92 views

KLA11889 Multiple vulnerabilities in Microsoft Products (ESU)

Multiple vulnerabilities were found in Microsoft Products Extended Support Update. Malicious users can exploit these vulnerabilities to gain privileges, execute arbitrary code, obtain sensitive information, bypass security restrictions. Below is a complete list of vulnerabilities: 1. An elevation...

9.3CVSS8.9AI score0.69833EPSS
Exploits16References32
Tenable Nessus
Tenable Nessus
added 2018/10/09 12:0 a.m.167 views

KB4462937: Windows 10 Version 1703 October 2018 Security Update

The remote Windows host is missing security update 4462937. It is, therefore, affected by multiple vulnerabilities : - A remote code execution vulnerability exists when Internet Explorer improperly accesses objects in memory. The vulnerability could corrupt memory in such a way that an attacker...

9.3CVSS8.1AI score0.69833EPSS
Exploits17References25
Rows per page
Query Builder