Windows Kernel-Mode Drivers Privilege Elevation Vulnerability (2641653)

This host is missing an important security update according to Microsoft Bulletin MS12-018. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

Windows Kernel-Mode Drivers Privilege Elevation Vulnerability (2641653)

This host is missing an important security update according to Microsoft Bulletin MS12-018. OpenVAS Vulnerability Test $Id: secpodms12-018.nasl 5346 2017-02-19 08:43:11Z cfi $ Windows Kernel-Mode Drivers Privilege Elevation Vulnerability 2641653 Authors: Antu Sanadi Copyright: Copyright c 2012...

Microsoft Windows multiple security vulnerabilities

Kernel drivers privileges escalation, DirectWrite API DoS, RDP memory corruption and DoS...

CVE-2012-0157

CVE-2012-0157 affects Windows kernel Win32k.sys, where local users can elevate privileges by crafting inputs to PostMessage. Public sources (MS12-018) and multiple vulnerability feeds confirm a kernel-mode privilege-escalation flaw exploitable via PostMessage handling in win32k.sys on affected Wi...

Microsoft Fixes Critical RDP Vulnerability with March Patch Tuesday

Microsoft rolled out six patches addressing seven vulnerabilities on Tuesday, including a critical hole in Windows’ Remote Desktop Protocol RDP – the same component exploited by the Morto worm in August. The March edition of their monthly Patch Tuesday release included a critical bulletin MS12-02...

Bugtraq-I : Distribution for Pentesting and forensics

Bugtraq-I : Distribution for Pentesting and forensics Bugtraq system offers the most comprehensive distribution, optimal, stable and automatic security to date. Bugtraq is a distribution based on the 2.6.38 kernel has a wide range of penetration and forensic tools. Bugtraq can be installed from a...

Microsoft Windows multiple security vulnerabilities

GDI code execution, drivers privilege escalation, unsafe DLL loading, C Runtime code execution, .Net framework and Silverlight vulnerabilities...

Windows Kernel-Mode Drivers Remote Code Execution Vulnerabilities (2660465)

This host is missing a critical security update according to Microsoft Bulletin MS12-008. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

CVE-2012-0154

Use-after-free vulnerability in win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 allows local users to gain privileges via a crafted application that triggers...

CVE-2012-0154

CVE-2012-0154 is a local Privilege Escalation in Windows kernel-mode driver win32k.sys (Keyboard Layout Use After Free). Affected: Windows XP SP2/SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2/R2/R2 SP1, and Windows 7 Gold/SP1. Root cause: use-after-free in keyboard layo...

FreeDOS 1.1 released after being in development for several years

FreeDOS 1.1 released after being in development for several years FreeDOS 1.1 has been released after being in development for several years. FreeDOS is an opensource operating system aiming to provide the same or better functionality as Microsoft'sold MS-DOS. Right now the main use is running ol...

Analysis Challenges Stuxnet Origins Story, Suggests Links to Duqu and Other Malware

An ongoing analysis of the Duqu malware by researchers at Kaspersky Lab finds many links between the two pieces of malicious code and casts doubt on the conventional wisdom about Stuxnet’s origins. An analysis of software drivers used by both Stuxnet and the later Duqu malware has found that the...

How to setup SAN access for use with Veeam Backup & Replication.

Purpose This article documents how to set up Direct SAN Access for use with Veeam Backup & Replication. The Direct SAN access transport mode is recommended for VMs whose disks are located on shared VMFS SAN LUNs that are connected to ESXi hosts over FC, FCoE, iSCSI, and on shared SAS storage. In...

Windows Kernel-Mode Drivers Remote Code Execution Vulnerabilities (2567053)

This host is missing a critical security update according to Microsoft Bulletin MS11-087. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

MS11-087: Vulnerability in Windows Kernel-Mode Drivers Could Allow Remote Code Execution (2639417)

The remote host is running a version of the Windows kernel that is affected by a remote code execution vulnerability. Specially crafted TrueType fonts are not properly handled, which could allow arbitrary code execution in kernel mode. A remote attacker could exploit this vulnerability by trickin...

SuSE 10 Security Update : Linux kernel (ZYPP Patch Number 7516)

This kernel update for the SUSE Linux Enterprise 10 SP4 kernel fixes several security issues and bugs. The following security issues were fixed : - The code for evaluating LDM partitions in fs/partitions/ldm.c contained bugs that could crash the kernel for certain corrupted LDM partitions...

Firefox < 8.0 Multiple Vulnerabilities

The installed version of Firefox is earlier than 8.0 and thus, is potentially affected by the following security issues : - Certain invalid sequences are not handled properly in 'Shift-JIS' encoding and can allow cross-site scripting attacks. CVE-2011-3648 - The addition of the 'Azure' graphics...

Mozilla Thunderbird < 8.0 Multiple Vulnerabilities

The installed version of Thunderbird is earlier than 8.0 and thus, is potentially affected by the following security issues : - Certain invalid sequences are not handled properly in 'Shift-JIS' encoding and can allow cross-site scripting attacks. CVE-2011-3648 - The addition of the 'Azure' graphi...

Windows Kernel-Mode Drivers Remote Code Execution Vulnerability (2617657)

This host has moderate security update missing according to Microsoft Bulletin MS11-084. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

MS11-084: Vulnerability in Windows Kernel-Mode Drivers Could Allow Denial of Service (2617657)

The remote Windows host contains a flaw in the Windows kernel such that fails to properly validate array indexes when loading TrueType font files, therefore making it vulnerable to a denial of service attack. An attacker can exploit this issue by placing a specially crafted TrueType font file on ...