CVE-2013-1270

CVE-2013-1270 is a race condition in the Windows kernel-mode driver win32k.sys that enables local privilege escalation and the reading of arbitrary kernel memory. Affected products include Windows XP (SP2–SP3), Windows Server 2003 (SP2), Windows Vista (SP2), Windows Server 2008 (SP2–R2 SP1), and ...

CVE-2013-1266

CVE-2013-1266 is a race-condition vulnerability in the Windows kernel-mode driver win32k.sys that allows local privilege escalation and potential kernel memory disclosure. It affects multiple Windows editions listed in MS13-016 (XP SP2/SP3, Server 2003 SP2, Vista SP2, Server 2008 SP2/R2, Windows ...

CVE-2013-1260

CVE-2013-1260 is a race condition in the Windows win32k.sys kernel-mode driver that enables local privilege escalation and reading arbitrary kernel memory. Affected products include Windows XP (SP2–SP3), Windows Server 2003 (SP2), Windows Vista (SP2), Windows Server 2008 (SP2 and R2 SP1), and Win...

CVE-2013-1254

CVE-2013-1254 is a Windows kernel-mode driver (win32k.sys) local privilege-escalation vulnerability. A race condition in win32k.sys allows a local attacker to gain elevated privileges and read arbitrary kernel memory locations. Affected products include Windows XP SP2/SP3, Windows Server 2003 SP2...

CVE-2013-1251

CVE-2013-1251 describes a race condition in the Windows kernel-mode driver win32k.sys that enables local privilege escalation and potential reading of arbitrary kernel memory. Affected products and versions include Windows XP SP2/SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 200...

CVE-2013-1250

CVE-2013-1250 is a race-condition-based local privilege-escalation flaw in the Windows kernel-mode driver win32k.sys. Affected software (per PT-2013-3009) includes Windows XP SP2–SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2–R2 SP1, and Windows 7 Gold–SP1. The vulnerabi...

CVE-2013-1249

The CVE-2013-1249 entry describes a race condition in the Windows kernel-mode driver win32k.sys that could allow local privilege escalation and arbitrary kernel memory reads. Affected products include multiple Windows versions from XP SP2/SP3 to Windows 8 and Windows Server 2012 (as cited in MS13...

CVE-2013-1248

CVE-2013-1248 is a race-condition in win32k.sys (Windows kernel-mode driver) that enables local privilege escalation and kernel-memory disclosure across multiple Windows versions (XP SP2/3, Server 2003 SP2, Vista SP2, Server 2008 SP2/R2 SP1, Windows 7, 8, Server 2012, Windows RT). Root cause desc...

CVE-2013-1253

The CVE concerns a race condition in the Windows kernel-mode driver win32k.sys (affecting Windows XP SP2/SP3, Server 2003 SP2, Vista SP2, Server 2008 SP2/R2, and Windows 7 SP1). The underlying flaw allows local attackers to escalate privileges and read arbitrary kernel memory via a crafted applic...

CVE-2013-1265

The CVE-2013-1265 entry describes a race condition in the kernel-mode driver win32k.sys that affects multiple Microsoft Windows platforms (XP SP2/SP3, Server 2003 SP2, Vista SP2, Server 2008 SP2/R2, and Windows 7 SP1). The underlying flaw allows local attackers to escalate privileges and read arb...

CVE-2013-1272

Race condition in win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 allows local users to gain privileges, and consequently read the contents of arbitrary kerne...

CVE-2013-1265

Race condition in win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 allows local users to gain privileges, and consequently read the contents of arbitrary kerne...

CVE-2013-1276

CVE-2013-1276 : A race condition in the Windows kernel-mode driver win32k.sys (affecting Windows XP SP2/SP3, Server 2003 SP2, Vista SP2, Server 2008 SP2/R2, and Windows 7 SP1) enables a local user to gain privileges and read arbitrary kernel memory via a crafted application. Multiple connected so...

Microsoft Windows Kernel-Mode Drivers Privilege Elevation Vulnerabilities (2778344)

This host is missing an important security update according to Microsoft Bulletin MS13-016. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

Linux pciback DoS via not rate limited log messages.

ISSUE DESCRIPTION Xen's PCI backend drivers in Linux allow a guest with assigned PCI devices to cause a DoS through a flood of kernel messages, potentially affecting other domains in the system. IMPACT A malicious guest can mount a DoS affecting the entire system. VULNERABLE SYSTEMS All systems...

CVE-2013-0763

Use-after-free vulnerability in Mozilla Firefox before 18.0, Firefox ESR 17.x before 17.0.1, Thunderbird before 17.0.2, Thunderbird ESR 17.x before 17.0.1, and SeaMonkey before 2.15 allows remote attackers to execute arbitrary code or cause a denial of service heap memory corruption via vectors...

Memory corruption

Use-after-free vulnerability in Mozilla Firefox before 18.0, Firefox ESR 17.x before 17.0.1, Thunderbird before 17.0.2, Thunderbird ESR 17.x before 17.0.1, and SeaMonkey before 2.15 allows remote attackers to execute arbitrary code or cause a denial of service heap memory corruption via vectors...

CVE-2013-0763

Use-after-free vulnerability in Mozilla Firefox before 18.0, Firefox ESR 17.x before 17.0.1, Thunderbird before 17.0.2, Thunderbird ESR 17.x before 17.0.1, and SeaMonkey before 2.15 allows remote attackers to execute arbitrary code or cause a denial of service heap memory corruption via vectors...

CVE-2013-0763

CVE-2013-0763 is a use-after-free vulnerability in Mozilla Firefox (pre-18.0) and Firefox ESR 17.x (pre-17.0.1), Thunderbird (pre-17.0.2/ESR 17.x pre-17.0.1), and SeaMonkey (pre-2.15). It is triggered via Mesa driver interactions and a resized WebGL canvas, potentially allowing remote attackers t...

Design/Logic Flaw

win32k.sys in the kernel-mode drivers in Microsoft Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, Windows 7 Gold and SP1, Windows 8, Windows Server 2012, and Windows RT does not properly handle window broadcast messages, which allows local users to gain privileges via a crafted...