PT-2010-5181 · Microsoft · Windows Server 2003 +5

Name of the Vulnerable Software and Affected Versions: Windows XP versions SP2 through SP3 Windows Server 2003 version SP2 Windows Vista versions SP1 through SP2 Windows Server 2008 versions Gold through SP2 and R2 Windows 7 affected versions not specified Description: The issue is related to the...

PT-2010-5178 · Microsoft · Windows Server 2003 +5

Name of the Vulnerable Software and Affected Versions: Microsoft Windows XP versions SP2 through SP3 Microsoft Windows Server 2003 version SP2 Microsoft Windows Vista versions SP1 through SP2 Microsoft Windows Server 2008 versions Gold through SP2 and R2 Microsoft Windows 7 affected versions not...

Windows Kernel-Mode Drivers Privilege Elevation Vulnerabilities (2436673)

This host is missing a critical security update according to Microsoft Bulletin MS10-098. OpenVAS Vulnerability Test $Id: secpodms10-098.nasl 5934 2017-04-11 12:28:28Z antu123 $ Windows Kernel-Mode Drivers Privilege Elevation Vulnerabilities 2436673 Authors: Antu Sanadi Copyright: Copyright c 201...

Fedora 12 : kernel-2.6.32.26-175.fc12 (2010-18432)

'Update to stable release 2.6.32.26, includes many CVE fixes documented in the upstream changelogs plus CVE-2010-3880, CVE-2010-4072, CVE-2010-4073, and a bunch of kernel stack leakages in the tty and serial drivers.' Note that Tenable Network Security has extracted the preceding description bloc...

Session fixation

The uartgetcount function in drivers/serial/serialcore.c in the Linux kernel before 2.6.37-rc1 does not properly initialize a certain structure member, which allows local users to obtain potentially sensitive information from kernel stack memory via a TIOCGICOUNT ioctl call...

Session fixation

The nttyioctltiocgicount function in drivers/char/nozomi.c in the Linux kernel 2.6.36.1 and earlier does not properly initialize a certain structure member, which allows local users to obtain potentially sensitive information from kernel stack memory via a TIOCGICOUNT ioctl call...

CVE-2010-4074

The USB subsystem in the Linux kernel before 2.6.36-rc5 does not properly initialize certain structure members, which allows local users to obtain potentially sensitive information from kernel stack memory via vectors related to TIOCGICOUNT ioctl calls, and the 1 mos7720ioctl function in...

CVE-2010-4076

The rsioctl function in drivers/char/amiserial.c in the Linux kernel 2.6.36.1 and earlier does not properly initialize a certain structure member, which allows local users to obtain potentially sensitive information from kernel stack memory via a TIOCGICOUNT ioctl call...

CVE-2010-4075

The CVE-2010-4075 entry affects the Linux kernel module code: uart_get_count (drivers/serial/serial_core.c) in versions prior to 2.6.37-rc1. The vulnerability arises from not properly initializing a certain structure member, enabling local users to read potentially sensitive information from kern...

CVE-2010-4078

CVE-2010-4078 affects the Linux kernel before 2.6.36-rc6, where the sisfb_ioctl function in drivers/video/sis/sis_main.c fails to properly initialize a structure member. This allows local users to leak potentially sensitive information from kernel stack memory via the FBIOGET_VBLANK ioctl. Connec...

Moderate: Red Hat Security Advisory: kernel-rt security and bug fix update

Updated kernel-rt packages that fix multiple security issues and upgrade the kernel-rt kernel to version 2.6.33.7-rt29 are now available for Red Hat Enterprise MRG 1.3. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System...

CVE-2010-3513

Unspecified vulnerability in Oracle Solaris 9 and 10, and OpenSolaris, allows local users to affect integrity and availability via unknown vectors related to Device Drivers...

Design/Logic Flaw

Unspecified vulnerability in Oracle Solaris 9 and 10, and OpenSolaris, allows local users to affect integrity and availability via unknown vectors related to Device Drivers...

CVE-2010-3513

Unspecified vulnerability in Oracle Solaris 9 and 10, and OpenSolaris, allows local users to affect integrity and availability via unknown vectors related to Device Drivers...

CVE-2010-3513

CVE-2010-3513 affects Solaris 9/10 and OpenSolaris; vulnerability in Device Drivers allows local attackers to impact integrity and availability . CVSS v2 base score: 2.4 (LOW) , with local access and high complexity. The provided documents do not specify exploit details or a patch version; consul...

CVE-2010-2744

The kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, and R2, and Windows 7 do not properly manage a window class, which allows local users to gain privileges by creating a window, then using 1 the...

CVE-2010-2744

The CVE-2010-2744 flaw is a Win32k kernel-mode privilege-escalation issue in multiple Windows versions. A window-class handling bug lets local attackers gain privileges by creating a window and abusing SetWindowLongPtr to modify the popup menu structure or by abusing SwitchWndProc invoked via WM_...

Microsoft Security Bulletin MS10-073 - Important Vulnerabilities in Windows Kernel-Mode Drivers Could Allow Elevation of Privilege (981957)

Microsoft Security Bulletin MS10-073 - Important Vulnerabilities in Windows Kernel-Mode Drivers Could Allow Elevation of Privilege 981957 Published: October 12, 2010 Version: 1.0 General Information Executive Summary This security update resolves several publicly disclosed vulnerabilities in the...

Windows Kernel-Mode Drivers Privilege Elevation Vulnerabilities (981957)

This host is missing a critical security update according to Microsoft Bulletin MS10-073. OpenVAS Vulnerability Test $Id: secpodms10-073.nasl 5934 2017-04-11 12:28:28Z antu123 $ Windows Kernel-Mode Drivers Privilege Elevation Vulnerabilities 981957 Authors: Madhuri D Copyright: Copyright c 2010...

Microsoft Windows multiple security vulnerabilities

Multiple privilege escalation with different drivers. MFC buffer overflow. EOT and OTF fonts memory corruptions and integer overflow. comctl32 buffer overflow. LPC buffer overflow. SChannel DoS...