114 matches found
Privilege escalation
The kernel API in Microsoft Windows Vista SP2 and Windows Server 2008 SP2 does not properly enforce permissions, which allows local users to spoof processes, spoof inter-process communication, or cause a denial of service via a crafted application, aka "Windows Kernel Elevation of Privilege...
CVE-2016-3371
The kernel API in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold, 1511, and 1607 does not properly enforce permissions, which allows local users to obtain sensitive information via a...
CVE-2016-3372
The kernel API in Microsoft Windows Vista SP2 and Windows Server 2008 SP2 does not properly enforce permissions, which allows local users to spoof processes, spoof inter-process communication, or cause a denial of service via a crafted application, aka "Windows Kernel Elevation of Privilege...
CVE-2016-3373
CVE-2016-3373 is a Windows kernel local elevation-of-privilege vulnerability. The Windows Kernel API improperly restricts access to registry information, enabling a locally authenticated attacker to obtain sensitive user account data via a crafted application. Affected products include Windows Vi...
Windows Elevation of Privilege Vulnerability
An elevation of privilege vulnerability exists in the way that the Windows Kernel API enforces permissions. An attacker who successfully exploited the vulnerability could impersonate processes, interject cross-process communication, or interrupt system functionality. To exploit the vulnerability,...
Windows Elevation of Privilege Vulnerability
An elevation of privilege vulnerability exists in the way that the Windows Kernel API enforces permissions. An attacker who successfully exploited the vulnerability could impersonate processes, interject cross-process communication, or interrupt system functionality. To exploit the vulnerability,...
MS16-111: Security Update for Windows Kernel (3186973)
The remote Windows host is missing a security update. It is, therefore, affected by multiple vulnerabilities : - Multiple elevation of privilege vulnerabilities exist due to improper handling of session objects. A local attacker can exploit these, via a specially crafted application, to hijack th...
Qualcomm missing checks put_user get_user
Missing access checks in putuser/getuser kernel API CVE-2013-6282 QCIR-2013-00010-1: The getuser and putuser API functions of the Linux kernel fail to validate the target address when being used on ARM v6k/v7 platforms. This functionality was originally implemented and controlled by the domain...
Microsoft Windows Vista/7 - Local Privilege Escalation (UAC Bypass)
A Design Flaw in Windows Kernel API can Lead to privilege escalation. Mirror of Original Post: http://www.exploit-db.com/bypassing-uac-with-user-privilege-under-windows-vista7-mirror/ PoC: http://www.codeproject.com/KB/vista-security/uac.aspx not available mirror:...
Microsoft Windows Vista7 - Local Privilege Escalation (UAC Bypass)
Microsoft Windows Vista7 - Local Privilege Escalation UAC Bypass A Design Flaw in Windows Kernel API can Lead to privilege escalation. Mirror of Original Post: http://www.exploit-db.com/bypassing-uac-with-user-privilege-under-windows-vista7-mirror/ PoC:...
Security Update for Windows 2000 (KB935839)
A security issue has been identified that could allow an attacker to compromise your Windows-based system using a Windows kernel API and gain control over it. You can help protect your computer by installing this update from Microsoft. After you install this item, you may have to restart your...
Security Update for Windows Server 2003 x64 Edition (KB935839)
A security issue has been identified that could allow an attacker to compromise your Windows-based system using a Windows kernel API and gain control over it. You can help protect your computer by installing this update from Microsoft. After you install this item, you may have to restart your...
Security Update for Windows Server 2003 (KB935839)
A security issue has been identified that could allow an attacker to compromise your Windows-based system using a Windows kernel API and gain control over it. You can help protect your computer by installing this update from Microsoft. After you install this item, you may have to restart your...
Security Update for Windows XP (KB935839)
A security issue has been identified that could allow an attacker to compromise your Windows-based system using a Windows kernel API and gain control over it. You can help protect your computer by installing this update from Microsoft. After you install this item, you may have to restart your...