MS13-053: Vulnerabilities in Windows Kernel-Mode Driver Could Allow Remote Code Execution (2850851)

The Windows kernel on the remote host has the following vulnerabilities : - A memory allocation vulnerability exists. CVE-2013-1300 - A dereference vulnerability exists. CVE-2013-1340 - A privilege escalation vulnerability exists in the Windows kernel-mode driver. CVE-2013-1345 - A TrueType Font...

Microsoft Windows Kernel 'Win32k.sys'本地权限提升漏洞(CVE-2013-3167)

BUGTRAQ ID: 60949 CVECAN ID: CVE-2013-3167 Microsoft Windows是微软公司推出的一系列操作系统。 Windows 内核模式驱动程序不正确地处理内存对象的方式中存在一个信息泄露漏洞，可能导致特权提升。 0 Microsoft Windows Windows XP Service Pack 3 Microsoft Windows Windows Vista x64 Edition Serv Microsoft Windows Windows Vista Service Pack 2 Microsoft Windows Windows...

Microsoft Windows TrueType Font CVE-2013-3129 Remote Code Execution Vulnerability

Description Microsoft Windows is prone to a remote code-execution vulnerability. Successful exploits will result in the execution of arbitrary code in kernel-mode. Failed attempts will cause a denial-of-service condition. The attacker can also exploit this issue through Microsoft Silverlight,...

PT-2013-3095 · Microsoft · Windows Xp +8

Name of the Vulnerable Software and Affected Versions: Microsoft Windows XP versions SP2 through SP3 Microsoft Windows Server 2003 version SP2 Microsoft Windows Vista version SP2 Microsoft Windows Server 2008 versions SP2 through R2 SP1 Microsoft Windows 7 version SP1 Microsoft Windows 8 Microsof...

Advance Notification Service for July 2013 Security Bulletin Release

Today we’re providing advance notification for the release of seven bulletins, six Critical and one Important, for July 2013. The Critical bulletins address vulnerabilities in Microsoft Windows, .NET Framework, Silverlight, Internet Explorer and GDI+. Also scheduled for inclusion among these...

Microsoft Windows Kernel-Mode Driver Denial of Service Vulnerability (2845690)

This host is missing an important security update according to Microsoft Bulletin MS13-049. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

Microsoft Windows Kernel-Mode Driver Denial of Service Vulnerability (2845690)

This host is missing an important security update according to Microsoft Bulletin MS13-049. OpenVAS Vulnerability Test $Id: secpodms13-049.nasl 5351 2017-02-20 08:03:12Z mwiegand $ Microsoft Windows Kernel-Mode Driver Denial of Service Vulnerability 2845690 Authors: Antu Sanadi Copyright: Copyrig...

Design/Logic Flaw

The EPATHOBJ::pprFlattenRec function in win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, and Windows Server 2012 does not properly initialize a pointer for the next...

CVE-2013-3660

The EPATHOBJ::pprFlattenRec function in win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, and Windows Server 2012 does not properly initialize a pointer for the next...

CVE-2013-3660

The EPATHOBJ::pprFlattenRec function in win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, and Windows Server 2012 does not properly initialize a pointer for the next...

Microsoft Windows 'Win32k.sys' 本地权限提升漏洞(CVE-2013-1333)(MS13-046)

BUGTRAQ ID: 59749 CVECAN ID: CVE-2013-1333 Microsoft Windows是微软公司推出的一系列操作系统。 如果 Windows 内核模式驱动程序不正确地处理内存中的对象，则存在一个特权提升漏洞。成功利用此漏洞的攻击者可能导致系统不稳定。 0 Microsoft Windows XP Microsoft Windows Windows Server 2012 Microsoft Windows Windows RT Microsoft Windows Vista Microsoft Windows Server 2008 Microsoft...

Microsoft Windows 'Win32k.sys' 本地权限提升漏洞(CVE-2013-1334)(MS13-046)

BUGTRAQ ID: 59750 CVECAN ID: CVE-2013-1334 Microsoft Windows是微软公司推出的一系列操作系统。 如果 Windows 内核模式驱动程序不正确地处理内存中的对象，则存在一个Win32k窗口句柄漏洞。成功利用此漏洞的攻击者可以使用提升的特权执行任意代码。 0 Microsoft Windows XP Microsoft Windows Windows Server 2012 Microsoft Windows Windows RT Microsoft Windows Vista Microsoft Windows Server 200...

CVE-2013-1334

win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows Server 2012, and Windows RT does not properly handle objects in memory, which allows local users to gain...

Double free

dxgkrnl.sys aka the DirectX graphics kernel subsystem in the kernel-mode drivers in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows Server 2012, and Windows RT does not properly handle objects in memory, which allows local users to gain privilege...

Design/Logic Flaw

win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows Server 2012, and Windows RT does not properly handle objects in memory, which allows local users to gain...

CVE-2013-1333

Buffer overflow in win32k.sys in the kernel-mode drivers in Microsoft Windows 7 SP1 allows local users to gain privileges via a crafted application that leverages improper handling of objects in memory, aka "Win32k Buffer Overflow Vulnerability."...

CVE-2013-1334

win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows Server 2012, and Windows RT does not properly handle objects in memory, which allows local users to gain...

Microsoft Windows Kernel-Mode Drivers Privilege Elevation Vulnerabilities (2840221)

This host is missing an important security update according to Microsoft Bulletin MS13-046. OpenVAS Vulnerability Test $Id: secpodms13-046.nasl 5346 2017-02-19 08:43:11Z cfi $ Microsoft Windows Kernel-Mode Drivers Privilege Elevation Vulnerabilities 2840221 Authors: Arun Kallavi Copyright:...

MS13-046: Vulnerabilities in Windows Kernel-Mode Driver Could Allow Elevation of Privilege (2840221)

The Windows kernel on the remote host has the following vulnerabilities : - A privilege escalation vulnerability exists in the Microsoft DirectX graphics kernel subsystem. CVE-2013-1332 - A privilege escalation vulnerability exists in the Windows kernel-mode driver. CVE-2013-1333, CVE-2013-1334 A...

Microsoft Windows Kernel-Mode Drivers Privilege Elevation Vulnerabilities (2840221)

This host is missing an important security update according to Microsoft Bulletin MS13-046. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...