MS15-052: Vulnerability in Windows Kernel Could Allow Security Feature Bypass (3050514)

The remote Windows host is affected by a security feature bypass vulnerability due to a failure to properly validate memory addresses by the Windows kernel. A remote attacker can exploit this flaw, via a specially crafted application, to bypass the Kernel Address Space Layout Randomization KASLR,...

Microsoft windows kernel mode driver kernel information disclosure vulnerability (CNVD-2015-01618)

Microsoft Windows is a popular operating system. A security vulnerability exists in the Microsoft Windows kernel mode driver that allows an attacker to exploit the vulnerability to obtain kernel-sensitive address information, which can be used to conduct further attacks on the system...

Microsoft Windows Kernel-Mode Driver Privilege Elevation Vulnerabilities (3034344)

This host is missing an important security update according to Microsoft Bulletin MS15-023. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

Microsoft Windows Kernel Mode Driver CVE-2015-0095 Local Information Disclosure Vulnerability

Description Microsoft Windows is prone to a local information-disclosure vulnerability. Local attackers can exploit this issue to obtain sensitive information such as kernel memory contents. This may aid in launching further attacks. Technologies Affected Avaya CallPilot 4.0 Avaya CallPilot 4.0.1...

KLA10542 Multiple vulnerabilities in Microsoft Kernel-Mode Driver

Multiple serious vulnerabilities have been found in Microsoft products. Malicious users can exploit these vulnerabilities to gain privileges, bypass security restrictions, cause denial of service and obtain sensitive information. Below is a complete list of vulnerabilities 1. Improper address...

MS15-023: Vulnerabilities in Kernel-Mode Driver Could Allow Elevation of Privilege (3034344)

The version of Windows running on the remote host is affected by the following vulnerabilities : - Information disclosure vulnerabilities exist in the kernel-mode driver that can reveal portions of kernel memory. An attacker can exploit these and gain information about the system, which can then ...

Microsoft Windows Kernel-Mode Driver RCE Vulnerabilities (3036220)

This host is missing a critical security update according to Microsoft Bulletin MS15-010. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

MS15-010: Vulnerabilities in Windows Kernel-Mode Driver Could Allow Remote Code Execution (3036220)

The remote Windows host is missing a security patch. It is, therefore, affected by the following vulnerabilities : - A privilege escalation vulnerability exists in the Windows kernel-mode driver that is caused by improperly handling objects in memory. CVE-2015-0003, CVE-2015-0057 - A security...

McAfee DLPe Agent Privilege Escalation Vulnerability on Windows XP (SB10097)

The remote Windows XP host is running a version of the McAfee DLPe agent that is affected by a privilege escalation vulnerability, which a local attacker can exploit by sending specially crafted commands to a kernel mode driver. C Tenable Network Security, Inc. include"compat.inc"; if description...

Microsoft Windows Kernel-Mode Driver Privilege Elevation Vulnerability (3019215)

This host is missing an important security update according to Microsoft Bulletin MS15-008. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

MS15-008: Vulnerability in Windows Kernel-Mode Driver Could Allow Elevation of Privilege (3019215)

The remote Windows host is affected by a privilege escalation vulnerability in the WebDAV kernel-mode driver due to a failure to properly validate and enforce impersonation levels. This allows a local attacker to bypass impersonation-level security and gain elevated privileges, including the...

CVE-2014-7136

Heap-based buffer overflow in the K7FWFilt.sys kernel mode driver aka K7Firewall Packet Driver before 14.0.1.16, as used in multiple K7 Computing products, allows local users to execute arbitrary code with kernel privileges via a crafted parameter in a DeviceIoControl API call...

Heap overflow

Heap-based buffer overflow in the K7FWFilt.sys kernel mode driver aka K7Firewall Packet Driver before 14.0.1.16, as used in multiple K7 Computing products, allows local users to execute arbitrary code with kernel privileges via a crafted parameter in a DeviceIoControl API call...

Stack overflow

Stack-based buffer overflow in the K7Sentry.sys kernel mode driver aka K7AV Sentry Device Driver before 12.8.0.119, as used in multiple K7 Computing products, allows local users to execute arbitrary code with kernel privileges via unspecified vectors...

Null pointer dereference

The K7Sentry.sys kernel mode driver aka K7AV Sentry Device Driver before 12.8.0.119, as used in multiple K7 Computing products, allows local users to cause a denial of service NULL pointer dereference as demonstrated by a filename containing "crashme$$"...

CVE-2014-7136

CVE-2014-7136 describes a heap-based buffer overflow in the K7FWFilt.sys kernel-mode driver (K7Firewall Packet Driver) used by K7 Computing products, prior to version 14.0.1.16. The vulnerability allows a local attacker to gain kernel privileges by crafting a parameter in a DeviceIoControl call. ...

CVE-2014-7136

Heap-based buffer overflow in the K7FWFilt.sys kernel mode driver aka K7Firewall Packet Driver before 14.0.1.16, as used in multiple K7 Computing products, allows local users to execute arbitrary code with kernel privileges via a crafted parameter in a DeviceIoControl API call...

CVE-2014-8956

Stack-based buffer overflow in the K7Sentry.sys kernel mode driver aka K7AV Sentry Device Driver before 12.8.0.119, as used in multiple K7 Computing products, allows local users to execute arbitrary code with kernel privileges via unspecified vectors...

CVE-2014-8608

The K7Sentry.sys kernel mode driver aka K7AV Sentry Device Driver before 12.8.0.119, as used in multiple K7 Computing products, allows local users to cause a denial of service NULL pointer dereference as demonstrated by a filename containing "crashme$$"...

CVE-2014-8956

CVE-2014-8956: A stack-based buffer overflow in the K7Sentry.sys kernel-mode driver (K7AV Sentry Device Driver) before version 12.8.0.119 allows local users to execute arbitrary code with kernel privileges. The vulnerability affects K7 Computing products that incorporate this driver. Exploitation...