PT-2011-3436 · Microsoft · Windows Server 2003 +5

Name of the Vulnerable Software and Affected Versions: Microsoft Windows XP versions SP2 and SP3 Microsoft Windows Server 2003 version SP2 Microsoft Windows Vista versions SP1 and SP2 Microsoft Windows Server 2008 versions Gold, SP2, R2, and R2 SP1 Microsoft Windows 7 versions Gold and SP1...

PT-2011-3442 · Microsoft · Windows Xp +5

Name of the Vulnerable Software and Affected Versions: Windows XP versions SP2 through SP3 Windows Server 2003 version SP2 Windows Vista versions SP1 through SP2 Windows Server 2008 versions Gold through R2 SP1 Windows 7 versions Gold through SP1 Description: An elevation of privilege issue exist...

PT-2011-3449 · Microsoft · Windows Vista +3

Name of the Vulnerable Software and Affected Versions: Windows Vista versions SP1 through SP2 Windows Server 2008 versions Gold through R2 SP1 Windows 7 versions Gold through SP1 Description: The issue allows local users to gain privileges via a crafted application that triggers a NULL pointer...

PT-2011-3438 · Microsoft · Windows Vista +3

Name of the Vulnerable Software and Affected Versions: Microsoft Windows versions prior to the fixed version Description: The issue is related to incorrect driver object management in kernel-mode drivers, allowing local users to gain privileges via a crafted application. This could enable an...

PT-2011-3018 · Microsoft · Windows Xp +5

Name of the Vulnerable Software and Affected Versions: Microsoft Windows XP versions SP2 through SP3 Microsoft Windows Server 2003 version SP2 Microsoft Windows Vista versions SP1 through SP2 Microsoft Windows Server 2008 versions Gold through R2 SP1 Microsoft Windows 7 versions Gold through SP1...

PT-2011-3437 · Microsoft · Windows Server 2003 +5

Name of the Vulnerable Software and Affected Versions: Microsoft Windows XP versions SP2 and SP3 Microsoft Windows Server 2003 version SP2 Microsoft Windows Vista versions SP1 and SP2 Microsoft Windows Server 2008 versions Gold, SP2, R2, and R2 SP1 Microsoft Windows 7 versions Gold and SP1...

Windows Kernel-Mode Drivers Privilege Elevation Vulnerabilities (2555917)

This host is missing an important security update according to Microsoft Bulletin MS11-054. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

Windows Kernel-Mode Drivers Privilege Elevation Vulnerabilities (2555917)

This host is missing an important security update according to Microsoft Bulletin MS11-054. OpenVAS Vulnerability Test $Id: secpodms11-054.nasl 8724 2018-02-08 15:02:56Z cfischer $ Windows Kernel-Mode Drivers Privilege Elevation Vulnerabilities 2555917 Authors: Sooraj KS Copyright: Copyright c 20...

PT-2011-3448 · Microsoft · Win32K.Sys +4

Name of the Vulnerable Software and Affected Versions: Windows Vista versions SP1 through SP2 Windows Server 2008 versions Gold through R2 SP1 Windows 7 versions Gold through SP1 Description: The issue allows local users to gain privileges via a crafted application that triggers a NULL pointer...

PT-2011-3435 · Microsoft · Windows Server 2003 +5

Name of the Vulnerable Software and Affected Versions: Microsoft Windows XP versions SP2 through SP3 Microsoft Windows Server 2003 version SP2 Microsoft Windows Vista versions SP1 through SP2 Microsoft Windows Server 2008 versions Gold through SP2, R2, and R2 SP1 Microsoft Windows 7 versions Gold...

Microsoft Windows CSRSS CONSOLE_ALLOC_MSG Code Execution (MS11-056; CVE-2011-1281)

An elevation of privilege vulnerability has been reported in Windows CSRSS. Attackers can exploit this vulnerability to run arbitrary code in kernel mode. Successful exploitation of this vulnerability may result in complete control of an attacker over an affected system...

Microsoft Windows CSRSS SrvWriteConsoleOutput Code Execution (MS11-056; CVE-2011-1284)

An elevation of privilege vulnerability has been reported in Windows CSRSS. Remote attackers can exploit this vulnerability to run arbitrary code in kernel mode. The vulnerability is due to an integer overflow condition that could enable an attacker to execute code in the context of the system...

MS11-054: Vulnerabilities in Windows Kernel-Mode Drivers Could Allow Elevation of Privilege (2555917)

The remote host is running a version of the Windows kernel that is affected by the following vulnerabilities : - Multiple privilege escalation vulnerabilities exist due to the way that Windows kernel-mode drivers manage driver objects. CVE-2011-1874, CVE-2011-1875, CVE-2011-1876, CVE-2011-1877,...

Microsoft Windows CSRSS ConsoleNumberOfCommand Code Execution (MS11-056; CVE-2011-1283)

An elevation of privilege vulnerability has been reported in Windows CSRSS. Remote attackers can exploit this vulnerability to run arbitrary code in kernel mode. Successful exploitation may enable an attacker to install programs; view, change, or delete data; or create new accounts with full user...

Microsoft Windows CSRSS winsrv Integer Overflow Code Execution (MS11-056; CVE-2011-1870)

An elevation of privilege vulnerability has been reported in Windows CSRSS. Attackers can exploit this vulnerability to run arbitrary code in kernel mode. Successful exploitation of this vulnerability may result in complete control of an attacker over an affected system...

Microsoft Windows CSRSS winsrv NULL Pointer Code Execution (MS11-056; CVE-2011-1282)

An elevation of privilege vulnerability has been reported in Windows CSRSS. Attackers can exploit this vulnerability to run arbitrary code in kernel mode. Successful exploitation of this vulnerability may result in complete control of an attacker over an affected system...

Input validation

win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 on 64-bit platforms does not properly validate pointers during the parsing of OpenType aka OTF fonts,...

CVE-2011-1873

win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 on 64-bit platforms does not properly validate pointers during the parsing of OpenType aka OTF fonts,...

CVE-2011-1873

The CVE-2011-1873 entry documents a remote code execution flaw in win32k.sys, affecting 64-bit Windows systems (XP SP2, Server 2003 SP2, Vista SP1/SP2, Server 2008 Gold/SP2/R2, and Windows 7 SP1) where OpenType font parsing allows crafted OTF files to execute code in kernel mode. Root cause: impr...

PT-2011-3434 · Microsoft · Windows Server 2003 +5

Name of the Vulnerable Software and Affected Versions: Windows XP SP2 Windows Server 2003 SP2 Windows Vista SP1 and SP2 Windows Server 2008 Gold, SP2, R2, and R2 SP1 Windows 7 Gold and SP1 on 64-bit platforms Description: A remote code execution issue exists due to improper parsing of specially...