8 matches found
CVE-2019-0623
CVE-2019-0623 affects Windows due to a Win32k memory handling issue that enables local privilege escalation. The vulnerability arises when the Win32k component fails to properly handle objects in memory, enabling an attacker with local access to elevate privileges. The provided documents describe...
Immunity Canvas: DESTROYCLASS_UAF_LPE
Name| destroyclassuaflpe ---|--- CVE| CVE-2019-0623 Exploit Pack| CANVAS Description| DestroyClass UAF LPE Notes| CVE Name: CVE-2019-0623 Notes: Tested: - Windows 7 x64 VENDOR: Microsoft CVE Url: https://nvd.nist.gov/vuln/detail/CVE-2019-0623 CVSS: 10.0...
CVE-2019-0623
creationtimestamp| type| source ---|---|--- 2019-02-13 14:35:53+00:00| seen| MISP/5c642a56-2440-4af0-8bfd-6e4a0a021402...
Microsoft Windows Kernel 'Win32k.sys' CVE-2019-0623 Local Privilege Escalation Vulnerability
Description Microsoft Windows is prone to a local privilege-escalation vulnerability that occurs in the Windows kernel. A local attacker can exploit this issue to execute arbitrary code in kernel mode with elevated privileges. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit...
KB4487028: Windows 8.1 and Windows Server 2012 R2 February 2019 Security Update
The remote Windows host is missing security update 4487028 or cumulative update 4487000. It is, therefore, affected by multiple vulnerabilities : - An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory. An attacker who successfully...
KB4486993: Windows Server 2012 February 2019 Security Update
The remote Windows host is missing security update 4486993 or cumulative update 4487025. It is, therefore, affected by multiple vulnerabilities : - A remote code execution vulnerability exists in .NET Framework and Visual Studio software when the software fails to check the source markup of a fil...
KB4487019: Windows Server 2008 February 2019 Security Update
The remote Windows host is missing security update 4487019 or cumulative update 4487023. It is, therefore, affected by multiple vulnerabilities : - A remote code execution vulnerability exists in the way that the Microsoft Server Message Block 2.0 SMBv2 server handles certain requests. An attacke...
Description of the security update for vulnerabilities in Windows Embedded POSReady 2009: February 12, 2019
Description of the security update for vulnerabilities in Windows Embedded POSReady 2009: February 12, 2019 Summary This security update addresses the following vulnerabilities: An elevation of privilege vulnerability exists when Windows incorrectly handles calls to Win32k.sys. An elevation of...