4318 matches found
Broadcom Wireless Driver Probe Response SSID Overflow
Broadcom Wireless Driver Probe Response SSID Overflow. CVE-2006-5882. Remote exploit for hardware platform $Id: broadcomwifissid.rb 9669 2010-07-03 03:13:45Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the...
D-Link DWL-G132 Wireless Driver Beacon Rates Overflow
D-Link DWL-G132 Wireless Driver Beacon Rates Overflow. CVE-2006-6055. Remote exploit for windows platform $Id: dlinkwifirates.rb 9670 2010-07-03 03:19:07Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the...
Netgear WG111v2 Wireless Driver - Long Beacon Overflow (Metasploit)
$Id: netgearwg111beacon.rb 9669 2010-07-03 03:13:45Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...
CVE-2010-2549
Use-after-free vulnerability in the kernel-mode drivers in Microsoft Windows Vista SP1 and SP2 and Server 2008 Gold and SP2 allows local users to gain privileges or cause a denial of service system crash by using a large number of calls to the NtUserCheckAccessForIntegrityLevel function to trigge...
Design/Logic Flaw
Use-after-free vulnerability in the kernel-mode drivers in Microsoft Windows Vista SP1 and SP2 and Server 2008 Gold and SP2 allows local users to gain privileges or cause a denial of service system crash by using a large number of calls to the NtUserCheckAccessForIntegrityLevel function to trigge...
CVE-2010-2549
CVE-2010-2549 is a Win32k-related use-after-free in Windows Vista SP1/SP2 and Windows Server 2008 Gold/SP2 where the kernel-mode driver (win32k.sys) mismanages object reference counts, allowing local privilege escalation or a system crash. The vulnerability arises from improper maintenance of the...
CVE-2010-2549
Use-after-free vulnerability in the kernel-mode drivers in Microsoft Windows Vista SP1 and SP2 and Server 2008 Gold and SP2 allows local users to gain privileges or cause a denial of service system crash by using a large number of calls to the NtUserCheckAccessForIntegrityLevel function to trigge...
Microsoft Windows Kernel Mode Drivers Privilege Escalation Vulnerabilities (979559)
This host is missing a critical security update according to Microsoft Bulletin MS10-032. OpenVAS Vulnerability Test $Id: secpodms10-032.nasl 5934 2017-04-11 12:28:28Z antu123 $ Microsoft Windows Kernel Mode Drivers Privilege Escalation Vulnerabilities 979559 Authors: Madhuri D Updated By: Madhur...
MS10-037: Vulnerability in the OpenType Compact Font Format (CFF) Driver Could Allow Elevation of Privilege (980218)
The remote Windows host contains a version of the OpenType Compact Font Format CFF Font Driver that fails to properly validate certain data passed from user mode to kernel mode. By viewing content rendered in a specially crafted CFF font, a local attacker may be able to exploit this vulnerability...
CVE-2010-0485
The Windows kernel-mode drivers in win32k.sys in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista SP1 and SP2, Server 2008 Gold and SP2, Windows 7, and Server 2008 R2 "do not properly validate all callback parameters when creating a new window," which allows local users to execu...
CVE-2010-1255
The Windows kernel-mode drivers in win32k.sys in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista SP1 and SP2, Server 2008 Gold and SP2, Windows 7, and Server 2008 R2 allows local users to execute arbitrary code via vectors related to "glyph outline information" and TrueType...
Design/Logic Flaw
The Windows kernel-mode drivers in win32k.sys in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista SP1 and SP2, Server 2008 Gold and SP2, Windows 7, and Server 2008 R2 "do not properly validate all callback parameters when creating a new window," which allows local users to execu...
Design/Logic Flaw
The Windows kernel-mode drivers in win32k.sys in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista SP1 and SP2, Server 2008 Gold and SP2, Windows 7, and Server 2008 R2 allows local users to execute arbitrary code via vectors related to "glyph outline information" and TrueType...
Input validation
The Windows kernel-mode drivers in win32k.sys in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista SP1 and SP2, and Server 2008 Gold and SP2 "do not properly validate changes in certain kernel objects," which allows local users to execute arbitrary code via vectors related to...
CVE-2010-1255
The Windows kernel-mode drivers in win32k.sys in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista SP1 and SP2, Server 2008 Gold and SP2, Windows 7, and Server 2008 R2 allows local users to execute arbitrary code via vectors related to "glyph outline information" and TrueType...
CVE-2010-0485
The Windows kernel-mode drivers in win32k.sys in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista SP1 and SP2, Server 2008 Gold and SP2, Windows 7, and Server 2008 R2 "do not properly validate all callback parameters when creating a new window," which allows local users to execu...
CVE-2010-0485
The Windows kernel-mode drivers in win32k.sys in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista SP1 and SP2, Server 2008 Gold and SP2, Windows 7, and Server 2008 R2 "do not properly validate all callback parameters when creating a new window," which allows local users to execu...
CVE-2010-0485
The CVE-2010-0485 issue affects Windows kernel-mode drivers in win32k.sys across multiple OS versions (Windows 2000 SP4, XP SP2/SP3, Server 2003 SP2, Vista SP1/SP2, Server 2008 Gold/SP2, Windows 7, Server 2008 R2). The vulnerability stems from improper validation of callback parameters when creat...
CVE-2010-1255
CVE-2010-1255 maps to the Win32k TrueType Font Parsing Vulnerability in Windows kernel-mode driver win32k.sys. The issue concerns how glyph outline information is provided to user-mode applications, enabling local users to execute arbitrary code in kernel mode. Affected products include Windows 2...
PT-2010-2960 · Microsoft · Windows
Name of the Vulnerable Software and Affected Versions: Microsoft Windows versions prior to the fixed version Description: The issue allows local users to execute arbitrary code via vectors related to glyph outline information and TrueType fonts. An elevation of privilege vulnerability exists due ...