37 matches found
Microsoft Office 2016 Multiple Vulnerabilities (KB5002642)
This host is missing an important security update according to Microsoft KB5002642 SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescriptio...
Microsoft Windows Multiple Vulnerabilities (KB5036925)
This host is missing a critical security update according to Microsoft KB5036925 SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Remote Desktop Client RCE Vulnerability - Windows
Remote Desktop Client is prone to RCE vulnerability. SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
MS11-057: Cumulative Security Update for Internet Explorer: August 9, 2011
Resolves vulnerabilities in Internet Explorer that could allow remote code execution if a user views a specially crafted webpage by using Internet Explorer.The update that this article describes has been replaced by a newer update. To resolve this problem, install the most current cumulative...
MS09-034: Cumulative security update for Internet Explorer
Resolves vulnerabilities in Internet Explorer that could allow remote code execution if a user views a specially crafted Web page by using Internet Explorer. Accounts that are configured to have fewer user rights could be affected less.The update that this article describes has been replaced by a...
MS13-054: Description of the security update for Lync 2010 Attendee (user level install): July 9, 2013
Resolves a vulnerability that could allow remote code execution on a client system if a user views shared content that embeds TrueType font files.View products that this article applies to.IntroductionThis update resolves a vulnerability that could allow remote code execution on a client system i...
Microsoft Security Advisory: Update for deprecation of MD5 hashing algorithm for Microsoft root certificate program: August 13, 2013
Microsoft Security Advisory: Update for deprecation of MD5 hashing algorithm for Microsoft root certificate program: August 13, 2013 INTRODUCTION Microsoft has released a Microsoft security advisory about this issue for IT professionals. The security advisory contains additional security-related...
Microsoft Security Advisory: Registry update to improve credentials protection and management for Windows-based systems that have the 2919355 update installed: July 8, 2014
Microsoft Security Advisory: Registry update to improve credentials protection and management for Windows-based systems that have the 2919355 update installed: July 8, 2014 INTRODUCTION Microsoft has released a Microsoft security advisory about this issue for IT professionals. The security adviso...
Description of the security update for Expression Blend 4: July 10, 2018
Description of the security update for Expression Blend 4: July 10, 2018 Summary A remote code execution vulnerability exists in Visual Studio software when the software does not check the source markup of a file for an unbuilt project. To learn more about the vulnerability, go to CVE-2018-8172...
Multiple Calendars Secure Mail
Question: Can I synchronize multiple calendar or contacts folders using Secure Mail? Answer: You can only synchronize your default calendar folder, contact folder, and tasks folder. There is a third party limitation related to how Active Sync works, on the Microsoft website you can find the...
General information regarding Windows Server 2003 Service Pack 2
Includes information about the release notes for Windows Server 2003 Service Pack 2.INTRODUCTIONThis article discusses the current documentation for Microsoft Windows Server 2003 Service Pack 2 SP2. More Information To obtain the release notes for Windows Server 2003 SP2, visit the following...
microsoft.co.uk.dnstree.com XSS vulnerability
On the 29.12.2017 security researcher reported a XSS vulnerability affecting the microsoft.co.uk.dnstree.com website via the Open Bug Bounty coordinated vulnerability disclosure program. Coordinated Disclosure Timeline: Description| Value ---|--- Vulnerability submitted via Open Bug Bounty| 29...
MS10-047: Vulnerabilities in Windows Kernel could allow elevation of privilege
MS10-047: Vulnerabilities in Windows Kernel could allow elevation of privilege Support for Windows Vista Service Pack 1 SP1 ends on July 12, 2011. To continue receiving security updates for Windows, make sure you're running Windows Vista with Service Pack 2 SP2. For more information, refer to thi...
MS12-020: Description of the security update for Terminal Server Denial of Service Vulnerability: March 13, 2012
MS12-020: Description of the security update for Terminal Server Denial of Service Vulnerability: March 13, 2012 INTRODUCTION Microsoft has released security bulletin MS12-020. To view the complete security bulletin, visit one of the following Microsoft websites: Home users:...
ideas.microsoft.fr XSS vulnerability
Open Bug Bounty ID: OBB-154124 Description| Value ---|--- Affected Website:| ideas.microsoft.fr Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
Microsoft HTML Workshop <= 4.74 Universal Buffer Overflow Exploit
No description provided by source. !/usr/bin/perl Microsoft HTML Workshop = 4.74 Universal Buffer Overflow Exploit ----------------------------------------------------------------- Discovered/Exploit by SkD [email protected] ----------------------------------------------------------------- This ...
MS10-090: Cumulative security update for Internet Explorer
Resolves vulnerabilities in Internet Explorer that could allow remote code execution if a user views a specially crafted Web page using Internet Explorer.The update that this article describes has been replaced by a newer update. To resolve this problem, install the most current cumulative securi...
MS10-035: Cumulative security update for Internet Explorer
Resolves vulnerabilities in Internet Explorer that could allow remote code execution if a user uses Internet Explorer to view a specially crafted Web page.The update that this article describes has been replaced by a newer update. To resolve this problem, install the most current cumulative...
MS14-035: Cumulative security update for Internet Explorer: June 10, 2014
Resolves vulnerabilities in Internet Explorer that could allow remote code execution if a user views a specially crafted webpage by using Internet Explorer.The update that this article describes has been replaced by a newer update. We recommend that you install the most current cumulative securit...
Microsoft Windows "CreateProcess()" .cmd和.bat安全绕过漏洞
Bugtraq ID:66619 CVE ID:CVE-2014-0315 Windows是一款由美国微软公司开发的窗口化操作系统。 由于当操作系统处理关于"CreateProcess"方法的.bat和.cmd文件时没有正确限制文件路径,攻击者可以利用漏洞执行特制的可执行文件,例如由诱使用户打开位于远程WebDAV或SMB共享的应用程序。 0 Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows 8.1 Microsoft Windows RT Microsoft Windows RT 8.1 Microsoft Window...