Microsoft Windows TCP/IP Remote Code Execution Vulnerability (2588516)

This host is missing a critical security update according to Microsoft Bulletin MS11-083. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

Windows Kernel-Mode Drivers Remote Code Execution Vulnerability (2617657)

This host has moderate security update missing according to Microsoft Bulletin MS11-084. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

MS11-083: Vulnerability in TCP/IP Could Allow Remote Code Execution (2588516)

The TCP/IP stack in use on the remote Windows host is affected by an integer overflow vulnerability. Sending a continuous flow of specially crafted UDP packets to a closed port can result in arbitrary code execution in kernel mode. C Tenable Network Security, Inc. include"compat.inc"; if...

MS11-084: Vulnerability in Windows Kernel-Mode Drivers Could Allow Denial of Service (2617657)

The remote Windows host contains a flaw in the Windows kernel such that fails to properly validate array indexes when loading TrueType font files, therefore making it vulnerable to a denial of service attack. An attacker can exploit this issue by placing a specially crafted TrueType font file on ...

Microsoft Windows UDP packet parsing vulnerability

Overview A vulnerability in the Microsoft Windows TCP/IP stack could allow an attacker to run arbitrary code in kernel mode or cause a denial-of-service. Description Microsoft Windows contains a TCP/IP stack used to process network packets for the operating system. This component contains a...

Microsoft Windows TrueType Font Parsing Privilege Elevation Vulnerability

The host is installed with Microsoft Windows operating system and is prone to pivilege escalation vulnerability. This NVT has been replaced by NVT secpodms11-087.nasl OID:1.3.6.1.4.1.25623.1.0.902767. OpenVAS Vulnerability Test $Id: gbmstruetypefontprivilegeelevationvuln.nasl 5362 2017-02-20...

MS KB2639658: Vulnerability in TrueType Font Parsing Could Allow Elevation of Privilege (DEPRECATED)

The remote host has an unspecified code execution vulnerability in the Win32k TrueType font parsing engine. Specially crafted TrueType fonts are not properly handled, which could allow arbitrary code execution in kernel mode. A remote attacker could exploit this vulnerability by tricking a user...

Microsoft Windows TrueType font parsing vulnerability

Overview A vulnerability in the Microsoft Windows TrueType font parsing component could allow an attacker to run arbitrary code in kernel mode. This vulnerability is reportedly being exploited by malicious software in the wild known as Duqu. Description The Microsoft Windows kernel includes a...

MS11-077 .fon Kernel-Mode Buffer Overrun PoC

No description provided by source. Exploit Title: MS11-077 .fon buffer overrun kernel-mode drivers exploit Google Dork: if relevant �we will automatically add these to the GHDB Date: 10/12/2011 Author: Byoungyoung Lee, http://www.cc.gatech.edu/blee303/ Software Link: Version: Windows 7 32bit, ful...

Microsoft Windows - '.fon' Kernel-Mode Buffer Overrun (PoC) (MS11-077)

Exploit Title: MS11-077 .fon buffer overrun kernel-mode drivers exploit Google Dork: if relevant �we will automatically add these to the GHDB Date: 10/12/2011 Author: Byoungyoung Lee, http://www.cc.gatech.edu/blee303/ Software Link: Version: Windows 7 32bit, fully patched until Sep. 2011 Tested o...

Microsoft Windows - .fon Kernel-Mode Buffer Overrun (PoC) (MS11-077)

Microsoft Windows - .fon Kernel-Mode Buffer Overrun PoC MS11-077 Exploit Title: MS11-077 .fon buffer overrun kernel-mode drivers exploit Google Dork: if relevant �we will automatically add these to the GHDB Date: 10/12/2011 Author: Byoungyoung Lee, http://www.cc.gatech.edu/blee303/ Software Link:...

CVE-2011-2002

win32k.sys in the kernel-mode drivers in Microsoft Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 does not properly handle TrueType fonts, which allows local users to cause a denial of service system hang via a crafted font file, aka "Win32k TrueType Font...

CVE-2011-2002

win32k.sys in the kernel-mode drivers in Microsoft Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 does not properly handle TrueType fonts, which allows local users to cause a denial of service system hang via a crafted font file, aka "Win32k TrueType Font...

CVE-2011-1985

win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 does not properly validate user-mode input, which allows local users to gain privileges or cause a denial of...

CVE-2011-2005

afd.sys in the Ancillary Function Driver in Microsoft Windows XP SP2 and SP3 and Server 2003 SP2 does not properly validate user-mode input passed to kernel mode, which allows local users to gain privileges via a crafted application, aka "Ancillary Function Driver Elevation of Privilege...

CVE-2011-2011

The CVE-2011-2011 issue is a local privilege-escalation vulnerability in Windows kernel components, specifically Win32k.sys, affecting Windows XP, Server 2003, Vista, Server 2008/R2, and Windows 7 (Gold/SP1). Root cause: a use-after-free condition in win32k.sys due to incorrect driver object mana...

Windows Kernel-Mode Drivers Remote Code Execution Vulnerabilities (2567053)

This host is missing an important security update according to Microsoft Bulletin MS11-077. OpenVAS Vulnerability Test $Id: secpodms11-077.nasl 5362 2017-02-20 12:46:39Z cfi $ Windows Kernel-Mode Drivers Remote Code Execution Vulnerabilities 2567053 Authors: Antu Sanadi Copyright: Copyright c 201...

Windows Kernel-Mode Drivers Remote Code Execution Vulnerabilities (2567053)

This host is missing an important security update according to Microsoft Bulletin MS11-077. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

MS11-080: Vulnerability in Ancillary Function Driver Could Allow Elevation of Privilege (2592799)

The remote Windows host contains a version of the Ancillary Function Driver afd.sys that does not properly validate input before passing it from user mode to the kernel. An attacker with local access to the affected system could exploit this issue to execute arbitrary code in kernel mode and take...

PT-2011-3549 · Microsoft · Windows Server 2003 +5

Name of the Vulnerable Software and Affected Versions: Microsoft Windows XP versions SP2 and SP3 Microsoft Windows Server 2003 version SP2 Microsoft Windows Vista version SP2 Microsoft Windows Server 2008 versions SP2, R2, and R2 SP1 Microsoft Windows 7 versions Gold and SP1 Description: The issu...