Lucene search
K

21 matches found

Rapid7 Blog
Rapid7 Blog
added 2021/11/12 3:36 p.m.383 views

Metasploit Wrap-Up

Callback Hell Metasploit has now added an exploit module for CVE-2021-40449, a Windows local privilege escalation exploit caused by a use-after-free during the NtGdiResetDC callback in vulnerable versions of win32k.sys. This module can be used to escalate privileges to those of NT AUTHORITY\SYSTE...

6.8CVSS9AI score0.73381EPSS
Exploits18
GithubExploit
GithubExploit
added 2021/11/07 4:15 p.m.975 views

Exploit for Use After Free in Microsoft

CVE-2021-40449 More info here: https://kristal-g.github.io/20...

7.8CVSS8.1AI score0.73381EPSS
Exploits11
Information Security Automation
Information Security Automation
added 2021/10/21 12:23 a.m.246 views

Security News: Microsoft Patch Tuesday October 2021, Autodiscover, MysterySnail, Exchange, DNS, Apache, HAProxy, VMware vCenter, Moodle

Hello everyone! This episode will be about relatively recent critical vulnerabilities. Lets start with Microsoft Patch Tuesday for October 2021. Specifically, with the vulnerability that I expected there, but it didnt get there. Autodiscover leak discovered by Guardicore Labs "Autodiscover, a...

7.5CVSS0.6AI score0.99999EPSS
Exploits178
GithubExploit
GithubExploit
added 2021/10/16 4:17 p.m.365 views

Exploit for Use After Free in Microsoft

CallbackHell Exploit for CVE-2021-40449 Win32k - LPE - Ca...

7.8CVSS7.7AI score0.73381EPSS
Exploits17
Malwarebytes
Malwarebytes
added 2021/10/13 3:41 p.m.104 views

Patch now! Microsoft fixes 71 Windows vulnerabilities in October Patch Tuesday

Yesterday we told you about Apple’s latest patches. Today we turn to Microsoft and its Patch Tuesday. Microsoft tends to provide a lot of information around its patches and, so, theres a lot to digest and piece together to give you an overview of the most important ones. In total, Microsoft has...

6.8CVSS8.9AI score0.73381EPSS
Exploits11
Circl
Circl
added 2021/10/13 9:10 a.m.11 views

CVE-2021-40449

creationtimestamp| type| source ---|---|--- 2021-10-13 09:10:32+00:00| published-proof-of-concept| https://t.me/orderofsixangles/1628 2021-10-13 11:01:48+00:00| seen| https://www.kyberturvallisuuskeskus.fi/fi/haavoittuvuus32/2021 2021-10-13 11:26:25+00:00| seen| https://t.me/reversedungeon/919...

7.8CVSS7.4AI score0.73381EPSS
Exploits11References31
The Hacker News
The Hacker News
added 2021/10/13 5:49 a.m.149 views

Update Your Windows PCs Immediately to Patch New 0-Day Under Active Attack

Microsoft on Tuesday rolled out security patches to contain a total of 71 vulnerabilities in Microsoft Windows and other software, including a fix for an actively exploited privilege escalation vulnerability that could be exploited in conjunction with remote code execution bugs to take control ov...

9.6CVSS1.4AI score0.73381EPSS
Exploits11
OSV
OSV
added 2021/10/13 1:15 a.m.2 views

CVE-2021-40449

Win32k Elevation of Privilege Vulnerability...

7.8CVSS5.8AI score0.73381EPSS
Exploits11References3
NVD
NVD
added 2021/10/13 1:15 a.m.25 views

CVE-2021-40449

Win32k Elevation of Privilege Vulnerability...

7.8CVSS0.73381EPSS
Exploits11References3
CVE
CVE
added 2021/10/13 12:26 a.m.1483 views

CVE-2021-40449

CVE-2021-40449 is a Win32k use-after-free local privilege escalation in GreResetDCInternal. The vulnerability arises when a user‑mode callback hook on the driver’s PDEV path (DrvEnablePDEV) can trigger a subsequent ResetDC call, freeing the original device context and causing a kernel‑mode use‑af...

7.8CVSS8AI score0.73381EPSS
In wildExploits11References3Affected Software19
ATTACKERKB
ATTACKERKB
added 2021/10/13 12:0 a.m.278 views

CVE-2021-40449

Win32k Elevation of Privilege Vulnerability Recent assessments: Assessed Attacker Value: 0 Assessed Attacker Value: 0Assessed Attacker Value: 0...

7.8CVSS7.5AI score0.73381EPSS
In wildExploits11References3
OpenVAS
OpenVAS
added 2021/10/13 12:0 a.m.36 views

Microsoft Windows Multiple Vulnerabilities (KB5006714)

This host is missing a critical security update according to Microsoft KB5006714 SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.5AI score0.73381EPSS
Exploits11References3
OpenVAS
OpenVAS
added 2021/10/13 12:0 a.m.47 views

Microsoft Windows Multiple Vulnerabilities (KB5006743)

This host is missing a critical security update according to Microsoft KB5006743 SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.4AI score0.73381EPSS
Exploits11References3
Krebs on Security
Krebs on Security
added 2021/10/12 7:52 p.m.87 views

Patch Tuesday, October 2021 Edition

Microsoft today issued updates to plug more than 70 security holes in its Windows operating systems and other software, including one vulnerability that is already being exploited. This months Patch Tuesday also includes security fixes for the newly released Windows 11 operating system. Separatel...

9.3CVSS0.4AI score0.73381EPSS
Exploits11
ThreatPost
ThreatPost
added 2021/10/12 7:34 p.m.511 views

Windows Zero-Day Actively Exploited in Widespread Espionage Campaign

Researchers have discovered a zero-day exploit for Microsoft Windows that was being used to elevate privileges and take over Windows servers as part of a Chinese-speaking advanced persistent threat APT espionage campaign this summer. The exploit chain ended with a freshly discovered remote access...

9.3CVSS8.2AI score0.99945EPSS
Exploits44References4
Securelist
Securelist
added 2021/10/12 5:7 p.m.999 views

MysterySnail attacks with Windows zero-day

Executive Summary In late August and early September 2021, Kaspersky technologies detected attacks with the use of an elevation of privilege exploit on multiple Microsoft Windows servers. The exploit had numerous debug strings from an older, publicly known exploit for vulnerability CVE-2016-3309,...

7.2CVSS8.2AI score0.73381EPSS
Exploits17
Check Point Advisories
Check Point Advisories
added 2021/10/12 12:0 a.m.15 views

Microsoft Win32k Elevation of Privilege (CVE-2021-40449)

An elevation of privilege vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

4.6CVSS7.8AI score0.73381EPSS
Exploits11
Tenable Nessus
Tenable Nessus
added 2021/10/12 12:0 a.m.163 views

KB5006728: Windows 7 and Windows Server 2008 R2 Security Update (October 2021)

The remote Windows host is missing security update 5006728. It is, therefore, affected by multiple vulnerabilities %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from the Microsoft Security Updates API. The text itself is...

8.8CVSS7.8AI score0.73381EPSS
Exploits11References19
Tenable Nessus
Tenable Nessus
added 2021/10/12 12:0 a.m.236 views

KB5006699: Windows Server 2022 Security Update (October 2021)

The remote Windows host is missing security update 5006699. It is, therefore, affected by multiple vulnerabilities %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from the Microsoft Security Updates API. The text itself is...

9CVSS7.8AI score0.73381EPSS
Exploits11References43
Tenable Nessus
Tenable Nessus
added 2021/10/12 12:0 a.m.91 views

KB5006674: Windows 11 Security Update (October 2021)

The remote Windows host is missing security update 5006674. It is, therefore, affected by multiple vulnerabilities %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from the Microsoft Security Updates API. The text itself is...

9CVSS7.8AI score0.73381EPSS
Exploits11References38
Rows per page
Query Builder