CVE-2010-1897

CVE-2010-1897 affects Windows kernel-mode drivers in win32k.sys across Windows XP SP2/SP3, Windows Server 2003 SP2, Windows Vista SP1/SP2, Windows Server 2008 SP2/R2, and Windows 7. The vulnerability arises from improper validation of pseudo-handle values passed in callback parameters during Crea...

CVE-2010-1896

The Windows kernel-mode drivers in win32k.sys in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, and Windows Server 2008 Gold and SP2 do not properly validate user-mode input passed to kernel mode, which allows local users to gain privileges via a crafted...

PT-2010-3520 · Microsoft · Windows Server 2003 +5

Name of the Vulnerable Software and Affected Versions: Microsoft Windows XP versions SP2 and SP3 Microsoft Windows Server 2003 version SP2 Microsoft Windows Vista versions SP1 and SP2 Microsoft Windows Server 2008 versions Gold, SP2, and R2 Microsoft Windows 7 Description: The issue arises from t...

Microsoft Windows Kernel Mode Drivers Privilege Elevation Vulnerabilities (2160329)

This host is missing a critical security update according to Microsoft Bulletin MS10-048. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

PT-2010-3519 · Microsoft · Windows Xp +4

Name of the Vulnerable Software and Affected Versions: Microsoft Windows XP versions SP2 through SP3 Microsoft Windows Server 2003 version SP2 Microsoft Windows Vista versions SP1 through SP2 Microsoft Windows Server 2008 versions Gold through SP2 Description: The Windows kernel-mode drivers do n...

Microsoft Security Bulletin MS10-048 - Important Vulnerabilities in Windows Kernel-Mode Drivers Could Allow Elevation of Privilege (2160329)

Microsoft Security Bulletin MS10-048 - Important Vulnerabilities in Windows Kernel-Mode Drivers Could Allow Elevation of Privilege 2160329 Published: August 10, 2010 Version: 1.0 General Information Executive Summary This security update resolves one publicly disclosed and four privately reported...

Microsoft Windows Kernel Mode Drivers Privilege Elevation Vulnerabilities (2160329)

This host is missing a critical security update according to Microsoft Bulletin MS10-048. OpenVAS Vulnerability Test $Id: secpodms10-048.nasl 7174 2017-09-18 11:48:08Z asteins $ Microsoft Windows Kernel Mode Drivers Privilege Elevation Vulnerabilities 2160329 Authors: Madhuri D Updated By: Madhur...

Broadcom Wireless Driver Probe Response SSID Overflow

Broadcom Wireless Driver Probe Response SSID Overflow. CVE-2006-5882. Remote exploit for hardware platform $Id: broadcomwifissid.rb 9669 2010-07-03 03:13:45Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the...

D-Link DWL-G132 Wireless Driver Beacon Rates Overflow

D-Link DWL-G132 Wireless Driver Beacon Rates Overflow. CVE-2006-6055. Remote exploit for windows platform $Id: dlinkwifirates.rb 9670 2010-07-03 03:19:07Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the...

Netgear WG111v2 Wireless Driver - Long Beacon Overflow (Metasploit)

$Id: netgearwg111beacon.rb 9669 2010-07-03 03:13:45Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

CVE-2010-2549

Use-after-free vulnerability in the kernel-mode drivers in Microsoft Windows Vista SP1 and SP2 and Server 2008 Gold and SP2 allows local users to gain privileges or cause a denial of service system crash by using a large number of calls to the NtUserCheckAccessForIntegrityLevel function to trigge...

Design/Logic Flaw

Use-after-free vulnerability in the kernel-mode drivers in Microsoft Windows Vista SP1 and SP2 and Server 2008 Gold and SP2 allows local users to gain privileges or cause a denial of service system crash by using a large number of calls to the NtUserCheckAccessForIntegrityLevel function to trigge...

CVE-2010-2549

Use-after-free vulnerability in the kernel-mode drivers in Microsoft Windows Vista SP1 and SP2 and Server 2008 Gold and SP2 allows local users to gain privileges or cause a denial of service system crash by using a large number of calls to the NtUserCheckAccessForIntegrityLevel function to trigge...

CVE-2010-2549

CVE-2010-2549 is a Win32k-related use-after-free in Windows Vista SP1/SP2 and Windows Server 2008 Gold/SP2 where the kernel-mode driver (win32k.sys) mismanages object reference counts, allowing local privilege escalation or a system crash. The vulnerability arises from improper maintenance of the...

MS10-037: Vulnerability in the OpenType Compact Font Format (CFF) Driver Could Allow Elevation of Privilege (980218)

The remote Windows host contains a version of the OpenType Compact Font Format CFF Font Driver that fails to properly validate certain data passed from user mode to kernel mode. By viewing content rendered in a specially crafted CFF font, a local attacker may be able to exploit this vulnerability...

Microsoft Windows Kernel Mode Drivers Privilege Escalation Vulnerabilities (979559)

This host is missing a critical security update according to Microsoft Bulletin MS10-032. OpenVAS Vulnerability Test $Id: secpodms10-032.nasl 5934 2017-04-11 12:28:28Z antu123 $ Microsoft Windows Kernel Mode Drivers Privilege Escalation Vulnerabilities 979559 Authors: Madhuri D Updated By: Madhur...

CVE-2010-1255

The Windows kernel-mode drivers in win32k.sys in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista SP1 and SP2, Server 2008 Gold and SP2, Windows 7, and Server 2008 R2 allows local users to execute arbitrary code via vectors related to "glyph outline information" and TrueType...

CVE-2010-0485

The Windows kernel-mode drivers in win32k.sys in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista SP1 and SP2, Server 2008 Gold and SP2, Windows 7, and Server 2008 R2 "do not properly validate all callback parameters when creating a new window," which allows local users to execu...

Input validation

The Windows kernel-mode drivers in win32k.sys in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista SP1 and SP2, and Server 2008 Gold and SP2 "do not properly validate changes in certain kernel objects," which allows local users to execute arbitrary code via vectors related to...

Design/Logic Flaw

The Windows kernel-mode drivers in win32k.sys in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista SP1 and SP2, Server 2008 Gold and SP2, Windows 7, and Server 2008 R2 allows local users to execute arbitrary code via vectors related to "glyph outline information" and TrueType...