1704 matches found
CVE-2018-12222
Insufficient input validation in Kernel Mode Driver in IntelR Graphics Driver for Windows before versions 10.18.x.5059 aka 15.33.x.5059, 10.18.x.5057 aka 15.36.x.5057, 20.19.x.5063 aka 15.40.x.5063 21.20.x.5064 aka 15.45.x.5064 and 24.20.100.6373 potentially enables an unprivileged user to cause ...
CVE-2018-18091
Use after free in Kernel Mode Driver in IntelR Graphics Driver for Windows before versions 10.18.x.5059 aka 15.33.x.5059, 10.18.x.5057 aka 15.36.x.5057, 20.19.x.5063 aka 15.40.x.5063 21.20.x.5064 aka 15.45.x.5064 and 24.20.100.6373 may allow an unprivileged user to potentially enable a denial of...
Buffer overflow
A buffer overflow in the kernel driver CybKernelTracker.sys in CyberArk Endpoint Privilege Manager versions prior to 10.7 allows an attacker without Administrator privileges to escalate privileges or crash the machine by loading an image, such as a DLL, with a long path...
CVE-2019-9627
A buffer overflow in the kernel driver CybKernelTracker.sys in CyberArk Endpoint Privilege Manager versions prior to 10.7 allows an attacker without Administrator privileges to escalate privileges or crash the machine by loading an image, such as a DLL, with a long path...
CVE-2019-9627
A buffer overflow in the kernel driver CybKernelTracker.sys in CyberArk Endpoint Privilege Manager versions prior to 10.7 allows an attacker without Administrator privileges to escalate privileges or crash the machine by loading an image, such as a DLL, with a long path. Recent assessments:...
Impact of 62 million devices: the interpretation I is how to find the Marvell Avastar Wi-Fi remote code execution vulnerability-vulnerability warning-the black bar safety net
One, overview In the present study, I will mainly analyze the Marvell WiFi-FullMAC SoC security. Since we have not yet completed the product with a chip of a wireless device of research, and therefore which may contain large amounts of unaudited code, which might appear serious security problems...
CVE-2018-20331
Local attackers can trigger a Kernel Pool Buffer Overflow in Antiy AVL ATool v1.0.0.22. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the processing of IOCTL 0x80002004 by the...
CVE-2018-20331
Local attackers can trigger a Kernel Pool Buffer Overflow in Antiy AVL ATool v1.0.0.22. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the processing of IOCTL 0x80002004 by the...
CVE-2018-19650
Local attackers can trigger a stack-based buffer overflow on vulnerable installations of Antiy-AVL ATool security management v1.0.0.22. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists...
Stack overflow
Local attackers can trigger a stack-based buffer overflow on vulnerable installations of Antiy-AVL ATool security management v1.0.0.22. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists...
CVE-2018-19650
Local attackers can trigger a stack-based buffer overflow on vulnerable installations of Antiy-AVL ATool security management v1.0.0.22. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists...
ATool 1.0.0.22 Stack Buffer Overflow Vulnerability
Exploit for windows platform in category local exploits Exploit Title: Kernel stack buffer overflow ATool - 1.0.0.22 0day CVE: CVE-2018-19650 Software Link: http://www.antiy.net/ Vendor Homepage: http://www.antiy.net/ http://www.antiy.net/ Category: Windows Attack Type: local Impact:Code...
Design/Logic Flaw
Secure application can access QSEE kernel memory through Ontario kernel driver in Snapdragon Automobile, Snapdragon Mobile and Snapdragon Wear in versions MDM9206, MDM9607, MDM9650, MSM8996AU, SD 210/SD 212/SD 205, SD 425, SD 430, SD 450, SD 625, SD 820, SD 820A, SD 835, SD 845, SD 850, SDA660,...
CVE-2017-18316
Secure application can access QSEE kernel memory through Ontario kernel driver in Snapdragon Automobile, Snapdragon Mobile and Snapdragon Wear in versions MDM9206, MDM9607, MDM9650, MSM8996AU, SD 210/SD 212/SD 205, SD 425, SD 430, SD 450, SD 625, SD 820, SD 820A, SD 835, SD 845, SD 850, SDA660,...
Microsoft Windows Security Feature Bypass Vulnerability (CNVD-2019-02774)
Windows is a set of operating systems developed by Microsoft Corporation in the U.S. Windows uses a graphical mode GUI. A security feature bypass vulnerability exists in Microsoft Windows. The vulnerability stems from Windows failing to properly verify kernel driver signatures. An attacker could...
CVE-2018-8549
A security feature bypass exists when Windows incorrectly validates kernel driver signatures, aka "Windows Security Feature Bypass Vulnerability." This affects Windows Server 2012 R2, Windows RT 8.1, Windows Server 2012, Windows Server 2019, Windows Server 2016, Windows 8.1, Windows 10, Windows 1...
CVE-2018-8549
A security feature bypass exists when Windows incorrectly validates kernel driver signatures, aka "Windows Security Feature Bypass Vulnerability." This affects Windows Server 2012 R2, Windows RT 8.1, Windows Server 2012, Windows Server 2019, Windows Server 2016, Windows 8.1, Windows 10, Windows 1...
Security feature bypass
A security feature bypass exists when Windows incorrectly validates kernel driver signatures, aka "Windows Security Feature Bypass Vulnerability." This affects Windows Server 2012 R2, Windows RT 8.1, Windows Server 2012, Windows Server 2019, Windows Server 2016, Windows 8.1, Windows 10, Windows 1...
CVE-2018-8549
A security feature bypass exists when Windows incorrectly validates kernel driver signatures, aka "Windows Security Feature Bypass Vulnerability." This affects Windows Server 2012 R2, Windows RT 8.1, Windows Server 2012, Windows Server 2019, Windows Server 2016, Windows 8.1, Windows 10, Windows 1...
CVE-2018-8407
An information disclosure vulnerability exists when "Kernel Remote Procedure Call Provider" driver improperly initializes objects in memory, aka "MSRPC Information Disclosure Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2019,...