PT-2021-2702 · Microsoft · Windows

Name of the Vulnerable Software and Affected Versions: Windows affected versions not specified Description: The issue is related to errors in processing objects in memory within the Overlay Filter component of Windows operating systems. This can allow an attacker to gain unauthorized access to...

Vulnerability of Connected User Experience and Telemetry Service functions in Microsoft Windows operating systems, allowing attackers to induce service failures.

The vulnerability of the Connected User Experience and Telemetry Service services of Microsoft Windows lies in memory object processing errors. Exploiting this vulnerability can allow an attacker to cause a service failure through a specially created application...

PT-2020-3186 · Microsoft · Windows Address Book +1

Name of the Vulnerable Software and Affected Versions: Windows Address Book affected versions not specified Description: A remote code execution issue exists due to improper processing of vcard files by Windows Address Book WAB. An attacker can exploit this by sending a malicious vcard file that...

The vulnerability of the Windows Media Foundation component in Windows operating systems allows attackers to install programs, view, modify, delete data, or create new accounts with full user privileges.

The vulnerability of the Windows Media Foundation component in Windows operating systems is related to errors in processing objects in memory. Exploiting this vulnerability allows a malicious actor to remotely install programs, view, modify, delete data, or create new user accounts with full user...

The vulnerability of the Windows Network List Service on Windows operating systems allows a perpetrator to escalate their privileges.

The vulnerability of the Windows Network List Service on Windows operating systems is related to errors in processing objects in memory. Exploiting this vulnerability can allow an attacker to increase their privileges through a specially created application...

The vulnerability of the relational database management system used by Microsoft Access programs in Microsoft Office and Office 365 allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the relational database management system used in Microsoft Access programs from Microsoft Office and Office 365 is related to errors in object processing in memory. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information throu...

The vulnerability of the PowerShell command interpreter for Windows operating systems allows a hacker to execute arbitrary code.

The vulnerability of the PowerShell command interpreter for Windows operating systems is related to errors in processing objects in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code using a specially crafted file...

The vulnerability of the Windows operating system’s kernel allows a hacker to execute arbitrary code with elevated privileges.

The vulnerability of the Windows operating system’s kernel is related to errors in processing objects in memory. Exploiting this vulnerability allows an attacker to execute arbitrary code with elevated privileges using a specially created application...

The vulnerability of the form development tool for data input based on XML, Microsoft InfoPath, arises from errors in object processing in memory, allowing attackers to execute arbitrary code.

The vulnerability of the form development tool for input data based on XML is due to an operation going beyond the buffer boundaries in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code using a specially crafted file...

The vulnerability of JavaScript handlers in the Microsoft Edge browser for the Windows operating system, allowing a perpetrator to execute arbitrary code

The vulnerability of Microsoft Edge’s JavaScript handlers arises from an operation going beyond the buffer boundaries due to a memory object processing error. Exploiting this vulnerability allows a remote attacker to execute arbitrary code in the context of the current user...