Lucene search
K

99 matches found

Exploit DB
Exploit DB
added 2018/03/20 12:0 a.m.29 views

Microsoft Windows Kernel - 'NtQueryVirtualMemory(MemoryMappedFilenameInformation)' 64-bit Pool Memory Disclosure

/ We have discovered that the nt!NtQueryVirtualMemory system call invoked with the 2 information class MemoryMappedFilenameInformation discloses portions of uninitialized kernel pool memory to user-mode clients. The vulnerability affects 64-bit versions of Windows 7 to 10. The output buffer for...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2018/03/15 12:0 a.m.19 views

Microsoft Windows Kernel (7 x86) - Local Privilege Escalation (MS17-017)

Microsoft Windows Kernel 7 x86 - Local Privilege Escalation MS17-017...

3.5AI score
Exploits0
Symantec
Symantec
added 2018/03/13 12:0 a.m.33 views

Microsoft Windows Kernel 'cng.sys' CVE-2018-0902 Security Bypass Vulnerability

Description Microsoft Windows Kernel is prone to a security-bypass vulnerability. An attacker can exploit this issue to bypass certain security restrictions and perform unauthorized actions; this may aid in launching further attacks. Technologies Affected Microsoft Windows 10 Version 1607 for...

7.2AI score0.01157EPSS
Exploits0Affected Software2
Prion
Prion
added 2017/10/13 1:29 p.m.17 views

Information disclosure

The Microsoft Windows Kernel component on Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016, allows an information disclosure vulnerability when it improperly...

2.1CVSS5.2AI score0.03018EPSS
Exploits5References3Affected Software3
Symantec
Symantec
added 2017/10/10 12:0 a.m.33 views

Microsoft Windows Kernel CVE-2017-11817 Local Information Disclosure Vulnerability

Description Microsoft Windows is prone to a local information-disclosure vulnerability. An attacker can leverage this issue to disclose sensitive information that may aid in further attacks. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version 16...

1.9CVSS1.3AI score0.02091EPSS
Exploits1Affected Software3
Check Point Advisories
Check Point Advisories
added 2017/10/10 12:0 a.m.20 views

Microsoft Win32k Elevation of Privilege (CVE-2017-8694)

An elevation of privilege vulnerability exists in Windows Kernel-Mode Driver. The vulnerability is due to an error in the way Microsoft Windows kernel-mode driver fails to properly handle objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in kern...

6.9CVSS7.8AI score0.01149EPSS
Exploits0
exploitpack
exploitpack
added 2017/09/18 12:0 a.m.16 views

Microsoft Windows Kernel - win32k.sys .TTF Font Processing Out-of-Bounds ReadsWrites with Malformed fpgm table win32k!bGeneratePath (Denial of Service)

Microsoft Windows Kernel - win32k.sys .TTF Font Processing Out-of-Bounds ReadsWrites with Malformed fpgm table win32k!bGeneratePath Denial of Service Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=1273 We have encountered a number of Windows kernel crashes in the win32k.sys...

7.4AI score
Exploits0
0day.today
0day.today
added 2017/09/18 12:0 a.m.59 views

Microsoft Windows Kernel - win32k!NtGdiGetGlyphOutline Pool Memory Disclosure Exploit

Exploit for windows platform in category dos / poc / Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=1267&desc=2 We have discovered that the win32k!NtGdiGetGlyphOutline system call handler may disclose large portions of uninitialized pool memory to user-mode clients. The functio...

2.1CVSS6.2AI score0.0423EPSS
Exploits2
exploitpack
exploitpack
added 2017/09/18 12:0 a.m.16 views

Microsoft Windows Kernel - win32k.sys .TTF Font Processing Out-of-Bounds Read with Malformed glyf Table win32k!fsc_CalcGrayRow (Denial of Service)

Microsoft Windows Kernel - win32k.sys .TTF Font Processing Out-of-Bounds Read with Malformed glyf Table win32k!fscCalcGrayRow Denial of Service Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=1274 We have encountered a number of Windows kernel crashes in the win32k.sys driver...

Exploits0
exploitpack
exploitpack
added 2017/09/18 12:0 a.m.12 views

Microsoft Windows Kernel - win32k!NtGdiGetGlyphOutline Pool Memory Disclosure

Microsoft Windows Kernel - win32k!NtGdiGetGlyphOutline Pool Memory Disclosure / Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=1267&desc=2 We have discovered that the win32k!NtGdiGetGlyphOutline system call handler may disclose large portions of uninitialized pool memory to...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2017/09/18 12:0 a.m.42 views

Microsoft Windows Kernel - 'win32k!NtGdiGetGlyphOutline' Pool Memory Disclosure

/ Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=1267&desc=2 We have discovered that the win32k!NtGdiGetGlyphOutline system call handler may disclose large portions of uninitialized pool memory to user-mode clients. The function first allocates memory using...

7.4AI score
Exploits0
ThreatPost
ThreatPost
added 2017/09/07 9:0 a.m.34 views

Microsoft Programming Error is Behind Dangerous Kernel Bug, Researchers Claim

Researchers claim a programming error in the Microsoft Windows kernel cracks the door open for malicious executables to bypass security software. The flaw, according to security firm EnSilo, has been present on previous versions of Windows dating back to Windows 2000 and can be found on Windows 1...

0.2AI score
Exploits0References2
exploitpack
exploitpack
added 2017/07/18 12:0 a.m.40 views

Microsoft Windows Kernel - IOCTL 0x120007 NsiGetParameter nsiproxynetio Pool Memory Disclosure

Microsoft Windows Kernel - IOCTL 0x120007 NsiGetParameter nsiproxynetio Pool Memory Disclosure / We have discovered that the handler of the 0x120007 IOCTL in nsiproxy.sys \.\Nsi device discloses portions of uninitialized pool memory to user-mode clients, likely due to output structure alignment...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2017/07/18 12:0 a.m.125 views

Microsoft Windows Kernel - 'IOCTL 0x120007 NsiGetParameter' nsiproxy/netio Pool Memory Disclosure

/ We have discovered that the handler of the 0x120007 IOCTL in nsiproxy.sys \.\Nsi device discloses portions of uninitialized pool memory to user-mode clients, likely due to output structure alignment holes. On our test Windows 7 32-bit workstation, an example layout of the output buffer is as...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2017/06/23 12:0 a.m.73 views

Microsoft Windows Kernel - ATMFD.DLL Out-of-Bounds Read due to Malformed Name INDEX in the CFF Table

Microsoft Windows Kernel - ATMFD.DLL Out-of-Bounds Read due to Malformed Name INDEX in the CFF Table Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=1213 We have encountered a Windows kernel crash in the ATMFD.DLL OpenType driver while processing a corrupted OTF font file, see...

9.3CVSS0.2AI score0.36366EPSS
Exploits5
Exploit DB
Exploit DB
added 2017/06/23 12:0 a.m.70 views

Microsoft Windows Kernel - 'ATMFD.DLL' Out-of-Bounds Read due to Malformed Name INDEX in the CFF Table

Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=1213 We have encountered a Windows kernel crash in the ATMFD.DLL OpenType driver while processing a corrupted OTF font file, see below: --- DRIVERPAGEFAULTBEYONDENDOFALLOCATION d6 N bytes of memory was allocated and more than N byt...

9.3CVSS6.8AI score0.36366EPSS
Exploits5
0day.today
0day.today
added 2017/04/13 12:0 a.m.81 views

Microsoft Windows Kernel win32k.sys - Multiple Bugs in the NtGdiGetDIBitsInternal System Call Exploi

Exploit for windows platform in category dos / poc Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=1078 We have discovered two bugs in the implementation of the win32k!NtGdiGetDIBitsInternal system call, which is a part of the graphic subsystem in all modern versions of Windows...

1.9CVSS6.5AI score0.03655EPSS
Exploits2
Exploit DB
Exploit DB
added 2017/04/13 12:0 a.m.102 views

Microsoft Windows Kernel - 'win32k.sys' Multiple 'NtGdiGetDIBitsInternal' System Call

Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=1078 We have discovered two bugs in the implementation of the win32k!NtGdiGetDIBitsInternal system call, which is a part of the graphic subsystem in all modern versions of Windows. The issues can potentially lead to kernel pool...

7AI score
Exploits0
Exploit DB
Exploit DB
added 2017/03/20 12:0 a.m.45 views

Microsoft Windows Kernel - Registry Hive Loading Crashes in nt!nt!HvpGetBinMemAlloc / nt!ExpFindAndRemoveTagBigPages (MS17-017)

Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=993 We have encountered Windows kernel crashes in the internal nt!nt!HvpGetBinMemAlloc and nt!ExpFindAndRemoveTagBigPages functions while loading corrupted registry hive files. We believe both crashes to be caused by the same bug...

7AI score
Exploits0
Microsoft KB
Microsoft KB
added 2017/01/07 12:0 a.m.23 views

MS16-005: Description of the security update for Windows kernel-mode drivers: January 12, 2016

MS16-005: Description of the security update for Windows kernel-mode drivers: January 12, 2016 Summary This security update resolves vulnerabilities in Microsoft Windows. The more severe of the vulnerabilities could allow remote code execution if a user visits a malicious website. To learn more...

7.3AI score
Exploits0
Rows per page
Query Builder