CVE-2012-0157

win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 does not properly handle window messaging, which allows local users to gain privileges via a crafted applicati...

CVE-2012-0157

win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 does not properly handle window messaging, which allows local users to gain privileges via a crafted applicati...

CVE-2012-0157

CVE-2012-0157 affects Windows kernel Win32k.sys, where local users can elevate privileges by crafting inputs to PostMessage. Public sources (MS12-018) and multiple vulnerability feeds confirm a kernel-mode privilege-escalation flaw exploitable via PostMessage handling in win32k.sys on affected Wi...

Microsoft Fixes Critical RDP Vulnerability with March Patch Tuesday

Microsoft rolled out six patches addressing seven vulnerabilities on Tuesday, including a critical hole in Windows’ Remote Desktop Protocol RDP – the same component exploited by the Morto worm in August. The March edition of their monthly Patch Tuesday release included a critical bulletin MS12-02...

Windows Kernel-Mode Drivers Remote Code Execution Vulnerabilities (2660465)

This host is missing a critical security update according to Microsoft Bulletin MS12-008. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

CVE-2012-0154

Use-after-free vulnerability in win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 allows local users to gain privileges via a crafted application that triggers...

Privilege escalation

afd.sys in the Ancillary Function Driver in Microsoft Windows XP SP2, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 on 64-bit platforms does not properly validate user-mode input passed to kernel mode, which allows local users to...

CVE-2012-0154

CVE-2012-0154 is a local Privilege Escalation in Windows kernel-mode driver win32k.sys (Keyboard Layout Use After Free). Affected: Windows XP SP2/SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2/R2/R2 SP1, and Windows 7 Gold/SP1. Root cause: use-after-free in keyboard layo...

Debian Security Advisory DSA 2337-1 (xen)

The remote host is missing an update to xen announced via advisory DSA 2337-1. OpenVAS Vulnerability Test $Id: deb23371.nasl 6612 2017-07-07 12:08:03Z cfischer $ Description: Auto-generated from advisory DSA 2337-1 xen Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc...

Windows 7 64 bit Memory Corruption Vulnerability

Windows 7 64 bit Memory Corruption Vulnerability A person known by the alias of "w3bd3vil" on twitter released an HTML snippet that will cause the 64 bit version of Windows 7 to blue screen if viewed under Safari. The underlying vulnerability is however not a flaw in Safari but rather a flaw in t...

Windows 7 64 bit Memory Corruption Vulnerability

Windows 7 64 bit Memory Corruption Vulnerability A person known by the alias of "w3bd3vil " on twitter released an HTML snippet that will cause the 64 bit version of Windows 7 to blue screen if viewed under Safari. The underlying vulnerability is however not a flaw in Safari but rather a flaw in...

Microsoft Office IME (Chinese) Privilege Elevation Vulnerability (2652016)

This host is missing an important security update according to Microsoft Bulletin MS11-088. OpenVAS Vulnerability Test $Id: secpodms11-088.nasl 5362 2017-02-20 12:46:39Z cfi $ Microsoft Office IME Chinese Privilege Elevation Vulnerability 2652016 Authors: Antu Sanadi Copyright: Copyright c 2011...

Microsoft Office IME (Chinese) Privilege Elevation Vulnerability (2652016)

This host is missing an important security update according to Microsoft Bulletin MS11-088. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

Windows Kernel-Mode Drivers Remote Code Execution Vulnerabilities (2567053)

This host is missing a critical security update according to Microsoft Bulletin MS11-087. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

Windows Kernel-Mode Drivers Remote Code Execution Vulnerabilities (2567053)

This host is missing a critical security update according to Microsoft Bulletin MS11-087. OpenVAS Vulnerability Test $Id: secpodms11-087.nasl 8724 2018-02-08 15:02:56Z cfischer $ Windows Kernel-Mode Drivers Remote Code Execution Vulnerability 2639417 Authors: Madhuri D Copyright: Copyright c 2011...

MS11-087: Vulnerability in Windows Kernel-Mode Drivers Could Allow Remote Code Execution (2639417)

The remote host is running a version of the Windows kernel that is affected by a remote code execution vulnerability. Specially crafted TrueType fonts are not properly handled, which could allow arbitrary code execution in kernel mode. A remote attacker could exploit this vulnerability by trickin...

Microsoft Windows Kernel Privilege Elevation Vulnerability (2633171)

This host is missing an important security update according to Microsoft Bulletin MS11-098. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

MS11-088: Vulnerability in Microsoft Office IME (Chinese) Could Allow Elevation of Privilege (2652016)

The version of Microsoft Office Input Method Editor Chinese installed on the remote host has a privilege escalation vulnerability. A local attacker could exploit this by utilizing the MSPY IME toolbar in an unspecified manner, resulting in arbitrary code execution in kernel mode. C Tenable Networ...

Windows Kernel-Mode Drivers Remote Code Execution Vulnerability (2617657)

This host has moderate security update missing according to Microsoft Bulletin MS11-084. OpenVAS Vulnerability Test $Id: secpodms11-084.nasl 5362 2017-02-20 12:46:39Z cfi $ Windows Kernel-Mode Drivers Remote Code Execution Vulnerability 2617657 Authors: Antu Sanadi Copyright: Copyright c 2011...

Microsoft Windows TCP/IP Remote Code Execution Vulnerability (2588516)

This host is missing a critical security update according to Microsoft Bulletin MS11-083. OpenVAS Vulnerability Test $Id: secpodms11-083.nasl 5362 2017-02-20 12:46:39Z cfi $ Microsoft Windows TCP/IP Remote Code Execution Vulnerability 2588516 Authors: Antu Sanadi Copyright: Copyright c 2011 SecPo...