Microsoft Windows Kernel-Mode Driver TrueType Font DoS Vulnerability (3002885)

This host is missing a moderate security update according to Microsoft Bulletin MS14-079. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

MS14-079: Vulnerability in Kernel-Mode Driver Could Allow Denial of Service (3002885)

The remote Windows host is affected by a denial of service vulnerability due to the Windows kernel-mode driver not properly validating array indexes when loading TrueType font files. An attacker can exploit this vulnerability by convincing a user to open a file or visit a website containing a...

November 2014 Updates

Today, as part of Update Tuesday, we released 14 security updates – four rated Critical, nine rated Important, and two rated Moderate, to address 33 Common Vulnerabilities and Exposures CVEs in Microsoft Windows, Internet Explorer IE, Office, .NET Framework, Internet Information Services IIS,...

Advance Notification Service for the November 2014 Security Bulletin Release

Today, we provide advance notification for the release of 16 Security Bulletins. Five of these updates are rated Critical, nine are rated as Important, and two are rated Moderate in severity. These updates are for Microsoft Windows, Internet Explorer, Office, Exchange, .NET Framework, Internet...

CVE-2014-4974

The ESET Personal Firewall NDIS filter EpFwNdis.sys kernel mode driver, aka Personal Firewall module before Build 1212 20140609, as used in multiple ESET products 5.0 through 7.0, allows local users to obtain sensitive information from kernel memory via crafted IOCTL calls...

CVE-2014-4974

Vulnerability summary (CVE-2014-4974): The ESET Personal Firewall NDIS filter driver (EpFwNdis.sys) in multi-VM/host products (kernel module used in ESET 5.0–7.0) is vulnerable to local IOCTL-based memory leakage. The issue affects EpFwNdis.sys built before 1212 (20140609); crafted IOCTL calls ca...

CVE-2014-4974

The ESET Personal Firewall NDIS filter EpFwNdis.sys kernel mode driver, aka Personal Firewall module before Build 1212 20140609, as used in multiple ESET products 5.0 through 7.0, allows local users to obtain sensitive information from kernel memory via crafted IOCTL calls...

CVE-2014-4148

win32k.sys in the kernel-mode drivers in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows remote attackers to execute arbitrary code via a crafted...

CVE-2014-4115

fastfat.sys aka the FASTFAT driver in the kernel-mode drivers in Microsoft Windows Server 2003 SP2, Vista SP2, and Server 2008 SP2 does not properly allocate memory, which allows physically proximate attackers to execute arbitrary code or cause a denial of service reserved-memory write by...

Microsoft Windows Kernel-Mode Driver Privilege Escalation and RCE Vulnerabilities (3000061)

This host is missing a critical security update according to Microsoft Bulletin MS14-058. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

MS14-058: Vulnerabilities in Kernel-Mode Driver Could Allow Remote Code Execution (3000061)

The remote Windows host is affected by multiple vulnerabilities : - A privilege escalation vulnerability allows an attacker to run arbitrary code in kernel mode due to the kernel-mode driver improperly handling objects in memory. CVE-2014-4113 - A remote code execution vulnerability allows a remo...

Panda Security Products av_pro Heap Based Buffer Overflow (Sep 2014)

Panda Antivirus is prone to heap based buffer overflow vulnerability. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

Panda Global Protection Heap Based Buffer Overflow (Sep 2014)

Panda Global Protection is prone to heap based buffer overflow vulnerability. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

CVE-2014-5307

CVE-2014-5307 describes a heap-based buffer overflow in the PavTPK.sys kernel-mode driver used by Panda Security 2014 products. An attacker local to the system could gain SYSTEM privileges by sending a crafted argument to IOCTL 0x222008. The vulnerability affects Panda Security 2014 products prio...

CVE-2014-4973 - Privilege Escalation in ESET Windows Products

Vulnerability title: Privilege Escalation in ESET Windows Products CVE: CVE-2014-4973 Vendor: ESET Product: ESET Windows Products Affected version: v5.0 - 7.0 Firewall Module Build 1183 20140214 and earlier Fixed version: v6 - v7 Firewall Module Build 1212 20140609 Reported by: Kyriakos Economou...

PowerStrip < = 3.84 (pstrip.sys) Privilege Escalation Exploit

No description provided by source. //////////////////////////////////////////////////////////////////////////////////// // +----------------------------------------------------------------------------+ // // | | // // | EnTech Taiwan - http://www.entechtaiwan.com/ | // // | | // // | Affected...

CVE-2014-2597 - Denial of Service in PCNetSoftware RAC Server

Vulnerability title: Denial of Service in PCNetSoftware RAC Server CVE: CVE-2014-2597 Vendor: PCNetSoftware Product: RAC Server Affected version: 4.0.4, 4.0.5 Fixed version: N/A Reported by: Kyriakos Economou Details: Latest and possibly earlier versions of RAC Server software are vulnerable to...

PCNetSoftware RAC服务器RACDriver.sys内核模式驱动IOCTL请求本地拒绝服务漏洞

CVE ID:CVE-2014-2597 PCNetSoftware RAC Server是一款远程PC控制应用。 PCNetSoftware RAC Server RACDriver.sys内核模式驱动处理特制的IOCTL请求存在安全漏洞，允许攻击者利用漏洞触发蓝屏或使键盘输入不可用。 0 RAC Server 4.0.4 RAC Server 4.0.5 目前没有详细解决方案： http://www.remote-rac.com/...

Microsoft Windows Kernel Privilege Escalation Vulnerabilities (2930275)

This host is missing an important security update according to Microsoft Bulletin MS14-015 OpenVAS Vulnerability Test $Id: gbms14-015.nasl 6724 2017-07-14 09:57:17Z teissa $ Microsoft Windows Kernel Privilege Escalation Vulnerabilities 2930275 Authors: Antu Sanadi Copyright: Copyright C 2014...

MS14-015: Vulnerabilities in Windows Kernel-Mode Driver Could Allow Elevation of Privilege (2930275)

The remote Windows host has the following vulnerabilities : - A privilege escalation vulnerability exists in the Windows kernel-mode driver due to improper handling of objects in memory. If successfully exploited, a locally authenticated attacker could run a specially crafted application in kerne...