621 matches found
Windows Kernel-Mode Drivers Privilege Elevation Vulnerabilities (2555917)
This host is missing an important security update according to Microsoft Bulletin MS11-054. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
CVE-2011-0671
Use-after-free vulnerability in win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 allows local users to gain privileges via a crafted application...
CVE-2011-1230
CVE-2011-1230 affects Windows kernel components, specifically win32k.sys in the kernel-mode drivers. The vulnerability is a NULL pointer de-reference in win32k.sys, leading to local privilege escalation. Affected products include Windows XP (SP2–SP3), Windows Server 2003 (SP2), Windows Vista (SP1...
PT-2011-2974 · Microsoft · Windows Server 2003 +4
Name of the Vulnerable Software and Affected Versions: Microsoft Windows XP versions SP2 and SP3 Microsoft Windows Server 2003 version SP2 Microsoft Windows Vista versions SP1 and SP2 Microsoft Windows Server 2008 versions Gold, SP2, R2, and R2 SP1 Microsoft Windows 7 versions Gold and SP1...
PT-2011-2972 · Microsoft · Windows Server 2003 +4
Name of the Vulnerable Software and Affected Versions: Microsoft Windows XP versions SP2 through SP3 Microsoft Windows Server 2003 version SP2 Microsoft Windows Vista versions SP1 through SP2 Microsoft Windows Server 2008 versions Gold through R2 SP1 Microsoft Windows 7 versions Gold through SP1...
Microsoft Windows Kernel win32k.sys SysCommand Code Execution (MS11-034; CVE-2011-1239)
The Windows kernel is the core of the operating system. It provides system-level services such as device management and memory management, allocates processor time to processes, and manages error handling. An elevation of privilege vulnerability has been reported in the Windows kernel. The...
Microsoft Windows Kernel-Mode Drivers Win32k Memory Corruption (MS11-012; CVE-2011-0090)
The Windows kernel-mode driver win32k.sys is a kernel-mode device driver and is the kernel part of the Windows subsystem. It contains the window manager and the Graphics Device Interface GDI. It also serves as a wrapper for DirectX support. An elevation of privilege vulnerability has been...
Microsoft Windows Win32k Window Class Improper Pointer Validation (MS11-012; CVE-2011-0089)
The Windows kernel-mode driver win32k.sys is a kernel-mode device driver and is the kernel part of the Windows subsystem. It contains the window manager and the Graphics Device Interface GDI. It also serves as a wrapper for DirectX support. An elevation of privilege vulnerability has been...
Microsoft Windows Win32k Window Class Pointer Confusion (MS11-012; CVE-2011-0088)
The Windows kernel-mode driver win32k.sys is a kernel-mode device driver and is the kernel part of the Windows subsystem. It contains the window manager and the Graphics Device Interface GDI. It also serves as a wrapper for DirectX support. An elevation of privilege vulnerability has been...
Microsoft Windows Win32k Insufficient User Input Validation (MS11-012; CVE-2011-0087)
The Windows kernel-mode driver win32k.sys is a kernel-mode device driver and is the kernel part of the Windows subsystem. It contains the window manager and the Graphics Device Interface GDI. It also serves as a wrapper for DirectX support. An elevation of privilege vulnerability has been...
Hardcoded credentials
The kernel-mode drivers in Microsoft Windows XP SP3 do not properly perform indexing of a function-pointer table during the loading of keyboard layouts from disk, which allows local users to gain privileges via a crafted application, as demonstrated in the wild in July 2010 by the Stuxnet worm, a...
CVE-2010-3943
win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, and R2, and Windows 7 does not properly link driver objects, which allows local users to gain privileges via a crafted application that...
Qihoo 360 Security Guard breg device drivers Privilege Escalation
Exploit for unknown platform in category local exploits =============================================================================== Qihoo 360 Security Guard breg device drivers Privilege Escalation Vulnerability =============================================================================== /...
Qihoo 360 Security Guard 6.1.5.1009 - breg device drivers Privilege Escalation
/ Software Link: http://sd.360.cn/sddownload1.html?src=360home Version: 6.1.5.1009 Tested on: Windows xp Vendor : Qihoo 360 Affected Software : 360 Security Guard 6.1.5.1009 Description: Qihoo 360 Security Guard is very famous in China. Some vulnerabilities have been reported in Qihoo 360 Securit...
Cross site request forgery (csrf)
The NT kernel-mode driver aka pstrip.sys 5.0.1.1 and earlier in EnTech Taiwan PowerStrip 3.84 and earlier allows local users to gain privileges via certain IRP parameters in an IOCTL request to \Device\Powerstrip1 that overwrites portions of memory...
CVE-2008-5725
The NT kernel-mode driver aka pstrip.sys 5.0.1.1 and earlier in EnTech Taiwan PowerStrip 3.84 and earlier allows local users to gain privileges via certain IRP parameters in an IOCTL request to \Device\Powerstrip1 that overwrites portions of memory...
CVE-2008-5725
The CVE affects the NT kernel-mode driver pstrip.sys (versions 5.0.1.1 and earlier) used by EnTech Taiwan PowerStrip (3.84 and earlier). The vulnerability arises from certain IRP parameters in an IOCTL sent to \Device\Powerstrip1, which can overwrite portions of memory and enable local privilege ...
PowerStrip < = 3.84 (pstrip.sys) Privilege Escalation Exploit
Exploit for unknown platform in category local exploits ============================================================= PowerStrip = 3.84 pstrip.sys Privilege Escalation Exploit =============================================================...
PowerStrip 3.84 - pstrip.sys Local Privilege Escalation
PowerStrip 3.84 - pstrip.sys Local Privilege Escalation //////////////////////////////////////////////////////////////////////////////////// // +----------------------------------------------------------------------------+ // // | | // // | EnTech Taiwan - http://www.entechtaiwan.com/ | // // | |...
PowerStrip 3.84 - 'pstrip.sys' Local Privilege Escalation
//////////////////////////////////////////////////////////////////////////////////// // +----------------------------------------------------------------------------+ // // | | // // | EnTech Taiwan - http://www.entechtaiwan.com/ | // // | | // // | Affected Software: | // // | PowerStrip = 3.84 ...