CVE-2021-38628 Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability

...

CVE-2021-38628

Technical details for CVE-2021-38628 are not publicly provided in the connected documents. The supplied materials do not specify affected products/versions, root cause, impact, or remediation. Monitor for updates.

Microsoft Windows Multiple Vulnerabilities (KB5005613)

This host is missing a critical security update according to Microsoft KB5005613 SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Microsoft Windows Multiple Vulnerabilities (KB5005633)

This host is missing a critical security update according to Microsoft KB5005633 SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability

...

Windows Ancillary Function Driver for WinSock Information Disclosure Vulnerability

...

PT-2021-6971 · Microsoft · Windows Ancillary Function Driver For Winsock +1

Name of the Vulnerable Software and Affected Versions: Windows Ancillary Function Driver for WinSock affected versions not specified Description: The issue is related to a lack of protection for service data in the Windows Ancillary Function Driver for WinSock, which can be exploited by a remote...

CVE-2020-1587

An elevation of privilege vulnerability exists when the Windows Ancillary Function Driver for WinSock improperly handles memory. To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted application to elevat...

Privilege escalation

An elevation of privilege vulnerability exists when the Windows Ancillary Function Driver for WinSock improperly handles memory. To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted application to elevat...

CVE-2020-1587 Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability

...

CVE-2020-1587

CVE-2020-1587 : Elevation of privilege in the Windows Ancillary Function Driver for WinSock caused by improper memory handling. Exploitation requires an initial execution on the victim, followed by running a crafted app to elevate privileges. Microsoft’s security update fixes the memory handling ...

Microsoft Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability

Microsoft Windows and Microsoft Windows Server are both products of Microsoft Corporation.Microsoft Windows is an operating system for personal devices.Microsoft Windows Server is a server operating system. An elevation of privilege vulnerability exists in Microsoft Windows Ancillary Function...

Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability

An elevation of privilege vulnerability exists when the Windows Ancillary Function Driver for WinSock improperly handles memory. To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted application to elevat...

KLA11929 Multiple vulnerabilities in Microsoft Products (ESU)

Multiple vulnerabilities were found in Microsoft Products Extended Support Update. Malicious users can exploit these vulnerabilities to execute arbitrary code, gain privileges, obtain sensitive information, spoof user interface. Below is a complete list of vulnerabilities: 1. A memory corruption...

Kernel: vfio: access to disabled MMIO space of some devices may lead to DoS scenario

A flaw was found in the Linux kernel, where it allows userspace processes, for example, a guest VM, to directly access h/w devices via its VFIO driver modules. The VFIO modules allow users to enable or disable access to the devices' MMIO memory address spaces. If a user attempts to access the...

MS08-066: Vulnerability in the Microsoft Ancillary Function driver could allow elevation of privilege

MS08-066: Vulnerability in the Microsoft Ancillary Function driver could allow elevation of privilege INTRODUCTION Microsoft has released security bulletin MS08-066. To view the complete security bulletin, visit one of the following Microsoft Web sites: Home...

MS14-040: Description of the security update for an ancillary function driver on systems that do not have the 2919355 update installed: July 8, 2014

MS14-040: Description of the security update for an ancillary function driver on systems that do not have the 2919355 update installed: July 8, 2014 INTRODUCTION Microsoft has released security bulletin MS14-040. To learn more about this security bulletin: Home users:...

Linux Kernel Vfio Driver Integer Overflow Vulnerability

The Linux kernel is the kernel used by the operating system Linux, released by the Linux Foundation in the United States. An integer overflow vulnerability exists in the Linux Kernel Vfio Driver. An attacker can exploit this vulnerability to execute arbitrary code. A failed exploit could result i...

VulnCheck KEV: CVE-2011-2005

afd.sys in the Ancillary Function Driver in Microsoft Windows does not properly validate user-mode input passed to kernel mode, which allows local users to gain privileges via a crafted application...

Microsoft Windows Winsock Elevation of Privilege Vulnerability (3104521)

This host is missing an important security update according to Microsoft Bulletin MS15-119. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...