117 matches found
Microsoft Windows Kernel 'Win32k.sys' (CVE-2011-1878) Local Privilege Escalation Vulnerability
Description Microsoft Windows is prone to a local privilege-escalation vulnerability that occurs in the Windows kernel due to a use-after-free error. A local attacker can exploit this issue to execute arbitrary code with kernel-level privileges. Successful exploits will result in the complete...
Microsoft Windows Kernel 'Win32k.sys' (CVE-2011-1880) Local Privilege Escalation Vulnerability
Description Microsoft Windows is prone to a local privilege-escalation vulnerability that occurs in the Windows kernel due to a NULL-pointer dereference error. A local attacker can exploit this issue to execute arbitrary code with kernel-level privileges. Successful exploits will result in the...
CVE-2011-1264
Cross-site scripting XSS vulnerability in Active Directory Certificate Services Web Enrollment in Microsoft Windows Server 2003 SP2 and Server 2008 Gold, SP2, R2, and R2 SP1 allows remote attackers to inject arbitrary web script or HTML via an unspecified parameter, aka "Active Directory...
CVE-2011-1234
CVE-2011-1234 is a use-after-free vulnerability in the Windows kernel-mode driver component win32k.sys that enables local privilege escalation. The issue arises from incorrect driver object management in the kernel, affecting multiple Windows versions (XP SP2/SP3, Server 2003 SP2, Vista SP1/SP2, ...
Microsoft WordPad Text Converter (CVE-2011-0028) Remote Code Execution Vulnerability
Description Microsoft WordPad is prone to a remote code-execution vulnerability. An attacker could exploit this issue to execute arbitrary code with the privileges of the currently logged-in user. Failed exploit attempts may result in denial-of-service conditions. Technologies Affected Avaya...
Microsoft Windows Kernel 'Win32k.sys' (CVE-2011-1237) Local Privilege Escalation Vulnerability
Description Microsoft Windows is prone to a local privilege-escalation vulnerability that occurs in the Windows kernel due to a use-after-free condition. A local attacker can exploit this issue to execute arbitrary code with kernel-level privileges. Successful exploits will result in the complete...
Microsoft Windows Server 2003 - AD BROWSER ELECTION Remote Heap Overflow
Microsoft Windows Server 2003 - AD BROWSER ELECTION Remote Heap Overflow MS Windows Server 2003 AD Pre-Auth BROWSER ELECTION Remote Heap Overflow Release date: 2011-02-14 Author: Cupidon-3005 Greet: Winny Thomas, Laurent Gaffie, h07 Bug: Heap Overflow Remote Exploitability: Unlikely Local...
KLA12360 ACE vulnerability in Microsoft Windows
Code execution vulnerability was found in Microsoft Windows. Malicious users can exploit this vulnerability in Human Interface Device HID to execute arbitrary code. Original advisories CVE-2011-0638 Related products Microsoft-Windows-Vista Microsoft-Windows-Server-2012 Microsoft-Windows-8...
Stack overflow
Stack-based buffer overflow in the CreateSizedDIBSECTION function in shimgvw.dll in the Windows Shell graphics processor aka graphics rendering engine in Microsoft Windows XP SP2 and SP3, Server 2003 SP2, Vista SP1 and SP2, and Server 2008 Gold and SP2 allows remote attackers to execute arbitrary...
Microsoft Windows win32k.sys驱动"GreEnableEUDC()"权限提升漏洞
Microsoft Windows是微软发布的非常流行的操作系统。 Windows的win32k.sys驱动实现上存在漏洞,本地攻击者可能利用此漏洞提升权限或导致拒绝服务。 此漏洞源于驱动中的"GreEnableEUDC"函数,通过构造畸形的"SystemDefaultEUDCFont"注册表项,本地攻击者可以给"RtlQueryRegistryValues"函数的"QueryTable"参数提供恶意数据,导致"EntryContext" 缓冲区溢出。 Microsoft Windows XP Professional Microsoft Windows XP Home Edition...
IBM Rational Quality Manager and Test Lab Manager Policy Bypass
Added: 11/05/2010 CVE: CVE-2010-4094 BID: 44172 Background IBM Rational Quality Manager is a web-based centralized test management environment for test planning, workflow control, tracking and metrics reporting. IBM Rational Quality Manager incorporates Apache Tomcat 5 to help serve custom web...
Microsoft Windows Kernel 'Win32k.sys' Window Class Local Privilege Escalation Vulnerability
Description Microsoft Windows is prone to a local privilege-escalation vulnerability that occurs in the Windows kernel. An attacker can exploit this issue to execute arbitrary code with kernel-level privileges. Successful exploits will result in the complete compromise of affected computers. Fail...
Microsoft Help and Support Center 'sysinfo/sysinfomain.htm' Cross Site Scripting Weakness
Description Help and Support Center is prone to a cross-site scripting weakness because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the privileged zone of the browser of an unsuspecting user. NOTE: This issue is a...
Microsoft Windows Kernel 'Win32k.sys' Window Creation Local Privilege Escalation Vulnerability
Description Microsoft Windows is prone to a local privilege-escalation vulnerability that occurs in the Windows kernel when a new window is created. An attacker can exploit this issue to execute arbitrary code with kernel-level privileges. Successful exploits will result in the complete compromis...
Microsoft Windows Kernel 'win32k.sys' Multiple DOS Vulnerabilities
Windows XP/2000/2003 is prone to multiple Denial Of Service vulnerabilities. OpenVAS Vulnerability Test $Id: gbmswinkernelwin32ksysmultdosvuln.nasl 5364 2017-02-20 13:26:07Z cfi $ Microsoft Windows Kernel 'win32k.sys' Multiple DOS Vulnerabilities Authors: Antu Sanadi Copyright: Copyright c 2010...
Microsoft Windows内核空指针本地拒绝服务漏洞(MS10-021)
BUGTRAQ ID: 39297 CVE ID: CVE-2010-0234 Microsoft Windows是微软发布的非常流行的操作系统。 Windows内核中没有充分验证传递到Windows内核系统调用的注册表项参数。攻击者可以通过运行特制应用程序来利用该漏洞,导致系统变得没有响应并自动重新启动。 Microsoft Windows XP SP3 Microsoft Windows XP SP2 Microsoft Windows Vista SP2 Microsoft Windows Vista SP1 Microsoft Windows Vista Microsoft...
Microsoft Data Analyzer 'max3activex.dll' ActiveX Control Remote Code Execution Vulnerability
Description The Microsoft Data Analyzer is prone to a remote code-execution vulnerability. An attacker can exploit this issue by enticing an unsuspecting user to view a malicious webpage. Successful exploits will allow the attacker to execute arbitrary code within the context of the application...
Microsoft Windows GP Trap Handler Privilege Escalation Vulnerability
Microsoft Windows operating system is prone to a privilege escalation vulnerability. This VT has been deprecated and replaced by the VT with the OID: 1.3.6.1.4.1.25623.1.0.900740. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and ar...
CVE-2009-4313
ir3232.dll 3.24.15.3 in the Indeo32 codec in Microsoft Windows 2000 SP4, XP SP2 and SP3, and Server 2003 SP2 allows remote attackers to cause a denial of service heap corruption or execute arbitrary code via malformed data in a stream in a media file, as demonstrated by an AVI file...
Remote code execution
Active Directory Federation Services ADFS in Microsoft Windows Server 2003 SP2 and Server 2008 Gold and SP2 does not properly validate headers in HTTP requests, which allows remote authenticated users to execute arbitrary code via a crafted request to an IIS web server, aka "Remote Code Execution...