CVE-2016-4305

A denial of service vulnerability exists in the syscall filtering functionality of Kaspersky Internet Security KLIF driver. A specially crafted native api call can cause a access violation in KLIF kernel driver resulting in local denial of service. An attacker can run program from user-mode to...

CVE-2016-4307

A denial of service vulnerability exists in the IOCTL handling functionality of Kaspersky Internet Security KL1 driver. A specially crafted IOCTL signal can cause an access violation in KL1 kernel driver resulting in local system denial of service. An attacker can run a program from user-mode to...

The vulnerability of the Windows operating system, which allows a perpetrator to disclose protected information

The vulnerability of the Windows operating system’s kernel mode driver is related to deficiencies in access control for certain functions. Exploiting this vulnerability can allow a local attacker to disclose sensitive information through a specially created application...

The vulnerability of the Windows operating system, which allows a hacker to increase their privileges

The vulnerability of the Windows operating system’s kernel mode driver is related to deficiencies in access control for certain functions. Exploiting this vulnerability can allow a local attacker to enhance their privileges through a specially created application...

Avira Free Antivirus ssmdrv Kernel Driver Memory Corruption Privilege Escalation Vulnerability

This vulnerability allows attackers to escalate privileges on vulnerable installations of Avira Free Antivirus. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the processing of...

Microsoft Windows Kernel 'Win32k.sys' local elevation of privilege vulnerability (CNVD-2016-12463)

Microsoft Windows is a series of operating systems released by the American company Microsoft. A local elevation of privilege vulnerability exists in the Microsoft Windows Kernel 'Win32k.sys'. An attacker could exploit this vulnerability to run arbitrary code in kernel mode...

The vulnerability of the Windows operating system, which allows a hacker to increase their privileges

The vulnerability of the Windows operating system’s kernel mode driver is related to deficiencies in access control. Exploiting this vulnerability can allow a malicious actor, operating locally, to enhance their privileges through a specially created application...

Security feature bypass

A vulnerability has been identified in a signed kernel driver for the BIOS of some ThinkPad systems that can allow an attacker with Windows administrator-level privileges to call System Management Mode SMM services. This could lead to a denial of service attack or allow certain BIOS variables or...

CVE-2016-8222

A vulnerability has been identified in a signed kernel driver for the BIOS of some ThinkPad systems that can allow an attacker with Windows administrator-level privileges to call System Management Mode SMM services. This could lead to a denial of service attack or allow certain BIOS variables or...

CVE-2016-8222

CVE-2016-8222 concerns a signed kernel driver in Lenovo ThinkPad BIOS enabling a local attacker with Windows administrator privileges to call System Management Mode (SMM) services. This can cause denial of service or allow alteration of certain BIOS variables/settings (e.g., boot sequence); BIOS ...

NVIDIA GPU Kernel Driver Escape - Lenovo Support US

No description provided...

NVIDIA GPU Kernel Driver Escape

Lenovo Security Advisory: LEN-5551 Potential Impact: Privilege escalation, potential information disclosure, crashes or denial of service Severity: High Scope of Impact: Industry-Wide Summary Description: On March 21, 2016, NVIDIA announced three high-severity driver vulnerabilities. These driver...

Microsoft Win32k Elevation of Privilege Vulnerability (CNVD-2016-10936)

Microsoft Windows is a series of operating systems released by the American company Microsoft. An elevation of privilege vulnerability exists in the kernel mode driver for Microsoft Windows. An attacker could exploit this vulnerability to run arbitrary code in kernel mode...

Microsoft Windows Bowser.sys Information Disclosure Vulnerability

Microsoft Windows is a series of operating systems released by the American company Microsoft. An information disclosure vulnerability exists in the kernel mode driver for Microsoft Windows Bowser.sys. An attacker can exploit this vulnerability to disclose sensitive information with the help of a...

MS16-138: Security update to Microsoft virtual hard drive: November 8, 2016

Resolves a vulnerability in Windows in which an attacker could manipulate files in locations not intended to be available to the user.SummaryThis security update resolves vulnerabilities in Microsoft Windows. The Windows VHDMP kernel driver improperly handles user access to certain files. An...

kernel: double-free in usb-audio triggered by invalid USB descriptor

A flaw was found in the USB-MIDI Linux kernel driver: a double-free error could be triggered for the 'umidi' object. An attacker with physical access to the system could use this flaw to escalate their privileges...

Trend Micro Maximum Security tmnciesc Kernel Driver Memory Corruption Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on vulnerable installations of Trend Micro Maximum Security. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the...

The vulnerability of the Windows operating system, which allows a hacker to increase their privileges

The vulnerability of the Windows operating system’s kernel mode driver is related to deficiencies in access control. Exploiting this vulnerability can allow a malicious actor, operating locally, to enhance their privileges through a specially created application...

Bitdefender Antivirus Plus avc3 Kernel Driver Elevation of Privilege Vulnerability

Bitdefender Antivirus Plus is an antivirus plugin. Bitdefender Antivirus Plus suffers from a security vulnerability in the avc3 kernel driver handling IOCTL 0x002222f4. An attacker could exploit this vulnerability to execute arbitrary code on the target system...

Bitdefender Antivirus Plus avc3 Kernel Driver Untrusted Pointer Dereference Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on vulnerable installations of Bitdefender Antivirus Plus. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the...