CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CVE•added 2016/03/12 9:0 p.m.•63 views

CVE-2016-0820

CVE-2016-0820 concerns the MediaTek Wi‑Fi kernel driver in Android 6.0.1 prior to 2016-03-01. The root cause is a linear data‑section overflow due to insufficient bounds checking, enabling a local attacker to gain privileges in the kernel via a crafted app. The Android Nexus bulletin confirms thi...

9.3CVSS7.2AI score0.00522EPSS

CVE•added 2016/03/12 9:0 p.m.•44 views

CVE-2016-0822

CVE-2016-0822 affects the MediaTek connectivity kernel driver in Android 6.0.1 before 2016-03-01. The flaw allows a local attacker to gain privileges via a crafted application that leverages conn_launcher access (internal bug 25873324). Impact is privilege escalation within the kernel context. Th...

7.6CVSS6.8AI score0.00465EPSS

CNVD•added 2016/03/10 12:0 a.m.•2 views

Microsoft Windows Win32k Elevation of Privilege Vulnerability (CNVD-2016-01559)

Microsoft Windows is a series of operating systems released by the American company Microsoft. An elevation of privilege vulnerability exists in the kernel mode driver for Microsoft Windows, which arises from a program's failure to properly handle objects in memory. A local attacker could exploit...

7.8CVSS7.2AI score0.02093EPSS

CNVD•added 2016/03/10 12:0 a.m.•3 views

Microsoft Windows Win32k Elevation of Privilege Vulnerability (CNVD-2016-01557)

7.8CVSS7.2AI score0.03662EPSS

Exploits2References1

OSV•added 2016/03/09 11:59 a.m.•3 views

CVE-2016-0095

The kernel-mode driver in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 allows local users to gain privileges via a crafted application, aka "Win32k Elevation of Privilege...

7.8CVSS5.8AI score0.04404EPSS

Exploits0References4

Prion•added 2016/03/09 11:59 a.m.•21 views

Privilege escalation

7.2CVSS7.5AI score0.04404EPSS

Exploits3References4Affected Software5

0day.today•added 2016/03/02 12:0 a.m.•25 views

Secret Net 7 and Secret Net Studio 8 - Privilege Escalation

Exploit for windows platform in category local exploits Source: https://github.com/Cr4sh/secretnetexpl Secret Net 7 and Secret Net Studio 8 local privileges escalation exploit. 0day vulnerabilities in sncc0.sys kernel driver of Secrity Code products allows attacker to perform local privileges...

6.8AI score

Exploits0

BDU FSTEC•added 2016/03/02 12:0 a.m.•3 views

The vulnerability of the Windows operating system, which allows a hacker to increase their privileges

The vulnerability of the Windows operating system’s kernel driver exists due to an error in the handling of memory objects by the Win32k.sys driver. Exploiting this vulnerability allows a local attacker to increase their privileges through a specially created application...

7.2CVSS7.2AI score0.0215EPSS

Exploit DB•added 2016/03/02 12:0 a.m.•43 views

Secret Net 7 and Secret Net Studio 8 - Local Privilege Escalation

Source: https://github.com/Cr4sh/secretnetexpl Secret Net 7 and Secret Net Studio 8 local privileges escalation exploit. 0day vulnerabilities in sncc0.sys kernel driver of Secrity Code products allows attacker to perform local privileges escalation from Guest to Local System. Also, attacker that...

7.4AI score

Exploits0

android•added 2016/03/01 12:0 a.m.•38 views

CVE-2016-0820

The MediaTek Wi-Fi kernel driver in Android 6.0.1 before 2016-03-01 allows attackers to gain privileges via a crafted application, aka internal bug 26267358...

9.3CVSS8.8AI score0.00522EPSS

OpenVAS•added 2016/01/20 12:0 a.m.•27 views

McAfee Application Control Multiple Vulnerabilities (Jan 2016) - Windows

McAfee Application Control is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

6.6CVSS6.6AI score0.02314EPSS

Exploits0References3

CNVD•added 2016/01/15 12:0 a.m.•4 views

McAfee Application Control swin.sys Kernel Driver Denial of Service Vulnerability

McAfee Application Control is a suite of program control software. The software protects enterprise servers and endpoints from the threat of unauthorized applications and malware by using a dynamic trust model. A security vulnerability in the swin.sys kernel driver for McAfee Application Control ...

6.6CVSS6.5AI score0.02314EPSS

NVD•added 2016/01/12 8:59 p.m.•27 views

CVE-2016-1715

The swin.sys kernel driver in McAfee Application Control MAC 6.1.0 before build 706, 6.1.1 before build 404, 6.1.2 before build 449, 6.1.3 before build 441, and 6.2.0 before build 505 on 32-bit Windows platforms allows local users to cause a denial of service memory corruption and system crash or...

6.6CVSS6.6AI score0.02314EPSS

Prion•added 2016/01/12 8:59 p.m.•16 views

Memory corruption

5.5CVSS7.3AI score0.02314EPSS

Cvelist•added 2016/01/12 8:0 p.m.•32 views

CVE-2016-1715

6.6AI score0.02314EPSS

CNVD•added 2016/01/12 12:0 a.m.•2 views

McAfee Application Control Kernel Driver Memory Corruption Elevation of Privilege Vulnerability

McAfee Application Control is a centrally managed whitelisting solution. McAfee Application Control has a security vulnerability in the handling of syscall 768 within the swin.sys kernel driver, which can be exploited to execute arbitrary code in the system context by writing a "0" to any locatio...

7.7AI score

Zero Day Initiative•added 2016/01/08 12:0 a.m.•47 views

McAfee Application Control Kernel Driver Memory Corruption Privilege Escalation Vulnerability

This vulnerability allows local attackers to execute arbitrary code on vulnerable installations of McAfee Application Control. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within...

6.6CVSS3.3AI score0.02314EPSS