11 matches found
mirocat.com Cross Site Scripting vulnerability OBB-1376141
Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has:       a. verified the vulnerability and confirmed its existence;       b. notified the website operator about its existence...
Privilege escalation
An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-0797...
CVE-2019-0797
CVE-2019-0797 is a Windows Win32k privilege-escalation vulnerability caused by the Win32k component failing to properly handle objects in memory, enabling local code execution with kernel privileges. Affected: Windows Win32k subsystem (Win32k.sys). Impact: elevated privileges to SYSTEM with poten...
CVE-2019-0797
An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka ‘Win32k Elevation of Privilege Vulnerability’. This CVE ID is unique from CVE-2019-0808. Recent assessments: gwillcox-r7 at November 22, 2020 2:41am UTC reported:...
Threat Groups SandCat, FruityArmor Exploiting Microsoft Win32k Flaw
A newly-patched Microsoft Win32k vulnerability is being exploited in the wild by at least two threat actors, including a recently discovered advanced persistent threat APT group dubbed SandCat. The exploited vulnerability CVE-2019-0797, rated important, was patched on Tuesday as part of Microsoft...
CVE-2019-0797
creationtimestamp| type| source ---|---|--- 2019-03-13 04:00:00+00:00| seen| https://www.govcert.gov.hk/en/alertsdetail.php?id=371 2019-03-13 10:23:16+00:00| exploited| https://t.me/CyberGovIL/381 2019-03-13 11:06:25+00:00| seen| https://t.me/ctinow/9125 2019-03-13 15:20:45+00:00| exploited|...
Microsoft Patches Two Win32k Bugs Under Active Attack
Microsoft released patches for two Win32k bugs actively under attack, along with fixes for four additional bugs that are publicly known, as part of its March Patch Tuesday security bulletin. The Win32k bugs are both elevation of privilege vulnerabilities, rated important, and tied to the way...
Microsoft Releases Patches for 64 Flaws — Two Under Active Attack
It's time for another batch of "Patch Tuesday" updates from Microsoft. Microsoft today released its March 2019 software updates to address a total of 64 CVE-listed security vulnerabilities in its Windows operating systems and other products, 17 of which are rated critical, 45 important, one...
Microsoft Windows Win32k CVE-2019-0797 Local Privilege Escalation Vulnerability
Description Microsoft Windows is prone to a local privilege-escalation vulnerability. An attacker can exploit this issue to execute arbitrary code with elevated privileges. Failed exploit attempts may result in a denial of service condition. Technologies Affected Microsoft Windows 10 Version 1607...
KLA11438 Multiple vulnerabilities in Microsoft Windows
Multiple vulnerabilities were found in Microsoft Windows. Malicious users can exploit these vulnerabilities to obtain sensitive information, gain privileges, execute arbitrary code, cause denial of service. Below is a complete list of vulnerabilities: 1. An information disclosure vulnerability in...
KB4489884: Windows Server 2012 March 2019 Security Update
The remote Windows host is missing security update 4489884 or cumulative update 4489891. It is, therefore, affected by multiple vulnerabilities : - A remote code execution vulnerability exists in the way that Windows Deployment Services TFTP Server handles objects in memory. An attacker who...