CVE-2026-21253

Use after free in Mailslot File System allows an authorized attacker to elevate privileges locally...

Vulnerabilities fixed in Microsoft Windows

Microsoft has fixed vulnerabilities in Windows. A malicious party can exploit the vulnerabilities to carry out attacks that can lead to the following categories of damage: - Denial-of-Service DoS - Manipulation of data - Accessing sensitive data - Execution of arbitrary code user privileges -...

CVE-2026-21253

Use after free in Mailslot File System allows an authorized attacker to elevate privileges locally...

CVE-2026-21253

Use after free in Mailslot File System allows an authorized attacker to elevate privileges locally...

CVE-2026-21253

Use after free in Mailslot File System allows an authorized attacker to elevate privileges locally...

CVE-2026-21253 Mailslot File System Elevation of Privilege Vulnerability

...

CVE-2026-21253 Mailslot File System Elevation of Privilege Vulnerability

...

CVE-2026-21253

CVE-2026-21253 is a Windows vulnerability in the Mailslot File System described as a use-after-free issue that can enable local privilege escalation. The CVE’s CVSS 3.1 score is 7.0 (HIGH) with a local attack vector, high attack complexity, and requires low privileges and no user interaction. The...

Mailslot File System Elevation of Privilege Vulnerability

Use after free in Mailslot File System allows an authorized attacker to elevate privileges locally...

KLA90878 Multiple vulnerabilities in Microsoft Products (ESU)

Multiple vulnerabilities were found in Microsoft Products Extended Security Update. Malicious users can exploit these vulnerabilities to execute arbitrary code, gain privileges, bypass security restrictions, spoof user interface, obtain sensitive information, cause denial of service. Below is a...

PT-2026-7356

Name of the Vulnerable Software and Affected Versions Mailslot File System affected versions not specified Description A flaw exists in the Mailslot File System that could allow a local attacker to gain elevated privileges. The issue is a use-after-free condition. An attacker can exploit this to...

EUVD-2006-5127

Malware in sbrugna...

EUVD-2006-3834

Malware in sbrugna...

EUVD-2018-8291

Malware in sbrugna...

Microsoft SRV.SYS Mailslot Write Corruption

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Microsoft SRV.SYS Mailslot Write Corruption', 'Description' = %q This module triggers a kernel pool corruption bug in SRV.SYS. Each call to the...

SUSE CVE-2007-4572

Stack-based buffer overflow in nmbd in Samba 3.0.0 through 3.0.26a, when configured as a Primary or Backup Domain controller, allows remote attackers to have an unknown impact via crafted GETDC mailslot requests, related to handling of GETDC logon server requests...

SUSE CVE-2007-6015

Stack-based buffer overflow in the sendmailslot function in nmbd in Samba 3.0.0 through 3.0.27a, when the "domain logons" option is enabled, allows remote attackers to execute arbitrary code via a GETDC mailslot request composed of a long GETDC string following an offset username in a SAMLOGON...

tcpdump: Buffer over-read in print_trans() function in print-smb.c

The SMB parser in tcpdump before 4.9.3 has buffer over-reads in print-smb.c:printtrans for \MAILSLOT\BROWSE and \PIPE\LANMAN...

Denial Of Service (DoS)

The SMB parser in tcpdump is vulnerable to denial of service. A buffer over-read in print-smb.c:printtrans for \MAILSLOT\BROWSE and \PIPE\LANMAN allows an attacker to crash the application...

Nalpeiron Licensing Service Elevation of Privilege Vulnerability

Nalpeiron Licensing Service is a product from Nalpeiron, Inc. that adds licensing services to software products. A security vulnerability exists in NLSSRV32.EXE in Nalpeiron Licensing Service version 7.3.4.0. The vulnerability can be exploited by an attacker to elevate privileges with the help of...