10 matches found
Exploit for Use After Free in Microsoft
This is a PoC exploit for CVE-2023-36802, an object type confusi...
Raspberry Robin Malware Upgrades with Discord Spread and New Exploits
The operators of Raspberry Robin are now using two new one-day exploits to achieve local privilege escalation, even as the malware continues to be refined and improved to make it stealthier than before. This means that "Raspberry Robin has access to an exploit seller or its authors develop the...
Exploit for Use After Free in Microsoft
CVE-2023-36802 Local Privilege Escalation POC authors: chomp...
Microsoft Windows Multiple Vulnerabilities (KB5030219)
This host is missing an important security update according to Microsoft KB5030219 SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescriptio...
Adobe, Apple, Google & Microsoft Patch 0-Day Bugs
Microsoft today issued software updates to fix at least five dozen security holes in Windows and supported software, including patches for two zero-day vulnerabilities that are already being exploited. Also, Adobe, Google Chrome and Apple iOS users may have their own zero-day patching to do. On...
CVE-2023-36802
creationtimestamp| type| source ---|---|--- 2023-09-12 21:10:03+00:00| seen| MISP/3c19819c-1dac-4ef2-bfed-be5efa7e0123 2023-09-12 22:17:21+00:00| seen| https://t.me/ctinow/136491 2023-09-13 04:00:00+00:00| seen| https://www.govcert.gov.hk/en/alertsdetail.php?id=1107 2023-09-13 10:06:37+00:00| see...
Microsoft and Adobe Patch Tuesday, September 2023 Security Update Review
Microsoft has released the Patch Tuesday edition for September. This months updates have addressed 66 security vulnerabilities including Edge Chromium-based in multiple products, features, and roles. Microsoft Patch Tuesday for September 2023 Microsoft has addressed two zero-day publicly exploite...
CVE-2023-36802
Microsoft Streaming Service Proxy Elevation of Privilege Vulnerability...
CVE-2023-36802 Microsoft Streaming Service Proxy Elevation of Privilege Vulnerability
...
CVE-2023-36802
CVE-2023-36802 is an Elevation of Privilege vulnerability in the Microsoft Streaming Service Proxy (MSKSSRV.SYS). The connected documents identify the root cause as an object type confusion in the Windows kernel-mode driver, enabling local privilege escalation to SYSTEM on vulnerable Windows 10/1...