KB5004442: Windows DCOM Server Security Feature Bypass Registry Check (CVE-2021-26414)

The remote Windows DCOM Server may be in a vulnerable state to exploitation by having the HKLM\Software\Microsoft\Ole\AppCompat\RequireIntegrityActivationAuthenticationLevel registry value set to 0. Hardening changes in DCOM were required for CVE-2021-26414 and were implemented in 2 phases on Jun...

CVE-2021-26414

Windows DCOM Server Security Feature Bypass...

EUVD-2021-13220

Windows DCOM Server Security Feature Bypass...

KLA12202 Multiple vulnerabilities in Microsoft Windows

Multiple vulnerabilities were found in Microsoft Windows. Malicious users can exploit these vulnerabilities to obtain sensitive information, execute arbitrary code, gain privileges, bypass security restrictions, cause denial of service. Below is a complete list of vulnerabilities: 1. An informati...

Windows DCOM Server 安全特征问题漏洞

Microsoft Windows and Windows are both products of Microsoft Corporation USA.Microsoft Windows is a set of operating systems for use on personal devices.Windows is a desktop operating system. A security vulnerability exists in Windows DCOM Server. The following products and editions are...

Dream Report platform privilege escalation vulnerability

Summary Multiple privilege escalation vulnerabilities exist in Dream Report 5 R20-2. A specially crafted executable can cause elevated capabilities. An attacker can provide a malicious file to trigger this vulnerability. Tested Versions Dream Report 5 R20-2 Product URLs https://dreamreport.net/...

Memory leak in RPCSS and DcomLaunch services in Windows 8.1 or Windows Serer 2012 R2

Memory leak in RPCSS and DcomLaunch services in Windows 8.1 or Windows Serer 2012 R2 This article describes an issue in which memory leak occurs in Windows remote procedure call service RPCSS and DCOM Server Process Launcher DcomLaunch services in Windows 8.1, Windows RT 8.1, or Windows Server 20...

CVE-2005-2996

Multiple heap-based and stack-based buffer overflows in certain DCOM server components in VERITAS Storage Exec Storage Exec 5.3 before Hotfix 9 and StorageCentral 5.2 before Hot Fix 2 allow remote attackers to execute arbitrary code via certain ActiveX controls...

CVE-2005-2996

Multiple heap-based and stack-based buffer overflows in certain DCOM server components in VERITAS Storage Exec Storage Exec 5.3 before Hotfix 9 and StorageCentral 5.2 before Hot Fix 2 allow remote attackers to execute arbitrary code via certain ActiveX controls...

CVE-2005-2996

The connected advisory CPAI-2005-297 describes a buffer overflow in Veritas Storage Exec and StorageCentral DCOM Server components. The flaw is caused by insufficient validation of user-supplied data, allowing remote code execution in the security context of the logged-on user when a target user ...

Microsoft Windows NT 4.0 - DCOM Server

source: https://www.securityfocus.com/bid/624/info It is possible for a local user to modify how DCOM servers are run, thereby escalating his/her privilege level. The Interactive User has write permissions to the DCOM registry entries. By editing the registry keys associated with DCOM server...