CVE-2018-12220

CVE-2018-12220 is a vulnerability in the Kernel Mode Driver of Intel Graphics Driver for Windows* (pre-10.18.x.5059, pre-15.36.x.5057, pre-15.40.x.5063, pre-15.45.x.5064, and 24.20.100.6373). The issue is a logic bug in the Kernel Mode Driver that potentially allows a locally authenticated, privi...

Intel Windows 10 Graphics Drivers Riddled With Flaws

Intel has patched 19 vulnerabilities across its popular graphics drivers for Windows 10, including two high-severity flaws. CVE-2018-12216 and CVE-2018-12214 could both allow a privileged user to execute arbitrary code via local access, according to an Intel advisory. “Multiple potential security...

Process Hacker - A Free, Powerful, Multi-Purpose Tool That Helps You Monitor System Resources, Debug Software And Detect Malware

A free, powerful, multi-purpose tool that helps you monitor system resources, debug software and detect malware. System requirements Windows 7 or higher, 32-bit or 64-bit. Features A detailed overview of system activity with highlighting. Graphs and statistics allow you quickly to track down...

CVE-2018-8641

An elevation of privilege vulnerability exists in Windows when the Windows kernel-mode driver fails to properly handle objects in memory, aka "Win32k Elevation of Privilege Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2019,...

CVE-2018-8641

An elevation of privilege vulnerability exists in Windows when the Windows kernel-mode driver fails to properly handle objects in memory, aka "Win32k Elevation of Privilege Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2019,...

PT-2018-2031 · Microsoft · Windows 10 Servers +12

Name of the Vulnerable Software and Affected Versions: Windows 7 Windows Server 2012 R2 Windows RT 8.1 Windows Server 2008 Windows Server 2019 Windows Server 2012 Windows 8.1 Windows Server 2016 Windows Server 2008 R2 Windows 10 Windows 10 Servers Description: The issue is caused by the Windows...

Description of the security update for the elevation of privilege vulnerabilities in Windows Embedded POSReady 2009 and Windows Embedded Standard 2009: December 11, 2018

Description of the security update for the elevation of privilege vulnerabilities in Windows Embedded POSReady 2009 and Windows Embedded Standard 2009: December 11, 2018 Summary Windows elevation of privilege vulnerabilities exist in the following scenarios: When Windows incorrectly handles calls...

From DirectX to the Windows Kernel--a few of the CVE vulnerability analysis-vulnerability warning-the black bar safety net

One, Foreword Operating systemthe kernel is each vulnerability the use of chain final goal, we can view the Zero Day Initiative ZDI Pwn2Own calendar year, race, and understand this aspect of the content. Windows kernel has always been the attacker keen to target, my favorite is the abuse of the...

Microsoft Windows Multiple Vulnerabilities (KB4457144)

This host is missing a critical security update according to Microsoft KB4457144. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

KingCloud Antivirus v2.4.2.39 Personal Edition ZySandbox.sys Driver Has Denial of Service Vulnerability

KingCloud Antivirus is a next-generation artificial intelligence antivirus for personal end devices launched by Tatsunobuilder.ZySandbox.sys is a kernel-mode driver in KingCloud Personal Antivirus. A denial of service vulnerability exists in the ZySandbox.sys driver for KingCloud Antivirus...

KingCloud Antivirus v2.4.2.39 Personal Edition ZySandbox.sys Driver Has Denial of Service Vulnerability

KingCloud Antivirus is a next-generation artificial intelligence antivirus for personal end devices launched by Tatsunobuilder.ZySandbox.sys is a kernel-mode driver in KingCloud Personal Antivirus. A denial of service vulnerability exists in the ZySandbox.sys driver for KingCloud Antivirus...

KingCloud Antivirus v2.4.2.39 Personal Edition ZySandbox.sys Driver Has Denial of Service Vulnerability

KingCloud Antivirus is a next-generation artificial intelligence antivirus for personal end devices launched by Tatsunobuilder.ZySandbox.sys is a kernel-mode driver in KingCloud Personal Antivirus. A denial of service vulnerability exists in the ZySandbox.sys driver for KingCloud Antivirus...

CVE-2018-8282

CVE-2018-8282 is a Win32k Elevation of Privilege vulnerability in Windows, caused by the Windows kernel-mode driver failing to properly handle objects in memory. It affects Windows 7, Server 2012 R2, RT 8.1, Server 2008/2012, 8.1, Server 2016, Server 2008 R2, 10 and Server 10 servers. Impact is l...

Microsoft Windows Multiple Vulnerabilities (KB4338815)

This host is missing a critical security update according to Microsoft KB4338815 SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Description of the security update for the Win32k elevation of privilege vulnerability in Windows Server 2008, Windows Embedded POSReady 2009, and Windows Embedded Standard 2009: July 10, 2018

Description of the security update for the Win32k elevation of privilege vulnerability in Windows Server 2008, Windows Embedded POSReady 2009, and Windows Embedded Standard 2009: July 10, 2018 Summary An elevation of privilege vulnerability exists in Windows when the Windows kernel-mode driver...

KB4338820: Windows Server 2012 July 2018 Security Update

The remote Windows host is missing security update 4338820 or cumulative update 4338830. It is, therefore, affected by multiple vulnerabilities : - A denial of service vulnerability exists in Windows Domain Name System DNS DNSAPI.dll when it fails to properly handle DNS responses. An attacker who...

KB4338814: Windows 10 Version 1607 and Windows Server 2016 July 2018 Security Update

The remote Windows host is missing security update 4338814. It is, therefore, affected by multiple vulnerabilities : - An elevation of privilege vulnerability exists in .NET Framework which could allow an attacker to elevate their privilege level. CVE-2018-8202 - A remote code execution...

KB4338823: Windows 7 and Windows Server 2008 R2 July 2018 Security Update

The remote Windows host is missing security update 4338823 or cumulative update 4338818. It is, therefore, affected by multiple vulnerabilities : - An elevation of privilege vulnerability exists in .NET Framework which could allow an attacker to elevate their privilege level. CVE-2018-8202 - A...

Denial of Service Vulnerability in Fair Smart Antivirus fildds.sys Handling Malformed Data

Fair Intelligent Antivirus 8 is an antivirus program from Beijing FairShield Technology Co. fildds.sys is a kernel mode driver in Fair Intelligent Antivirus 8. A security vulnerability exists in the fildds.sys driver in Fair Intelligent Antivirus 8 V8.1.5.6109 V8.1.7.6865. An attacker can exploit...

Cryptomining Campaign Returns Coal and Not Diamond

Executive summary Soon after a launch of a new cryptocurrency, Bitvote, in January, Talos discovered a new mining campaign affecting systems in India, Indonesia, Vietnam and several other countries that were tied to Bitvote. Apart from the fact that the attackers have chosen to target the new...