733 matches found
Microsoft Windows Win32k Window Class Improper Pointer Validation (MS11-012; CVE-2011-0089)
The Windows kernel-mode driver win32k.sys is a kernel-mode device driver and is the kernel part of the Windows subsystem. It contains the window manager and the Graphics Device Interface GDI. It also serves as a wrapper for DirectX support. An elevation of privilege vulnerability has been...
Microsoft Windows Win32k Insufficient User Input Validation (MS11-012; CVE-2011-0087)
The Windows kernel-mode driver win32k.sys is a kernel-mode device driver and is the kernel part of the Windows subsystem. It contains the window manager and the Graphics Device Interface GDI. It also serves as a wrapper for DirectX support. An elevation of privilege vulnerability has been...
Hardcoded credentials
The kernel-mode drivers in Microsoft Windows XP SP3 do not properly perform indexing of a function-pointer table during the loading of keyboard layouts from disk, which allows local users to gain privileges via a crafted application, as demonstrated in the wild in July 2010 by the Stuxnet worm, a...
CVE-2010-3943
win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, and R2, and Windows 7 does not properly link driver objects, which allows local users to gain privileges via a crafted application that...
Qihoo 360 Security Guard breg device drivers Privilege Escalation
Exploit for unknown platform in category local exploits =============================================================================== Qihoo 360 Security Guard breg device drivers Privilege Escalation Vulnerability =============================================================================== /...
Qihoo 360 Security Guard 6.1.5.1009 - breg device drivers Privilege Escalation
/ Software Link: http://sd.360.cn/sddownload1.html?src=360home Version: 6.1.5.1009 Tested on: Windows xp Vendor : Qihoo 360 Affected Software : 360 Security Guard 6.1.5.1009 Description: Qihoo 360 Security Guard is very famous in China. Some vulnerabilities have been reported in Qihoo 360 Securit...
Cross site request forgery (csrf)
The NT kernel-mode driver aka pstrip.sys 5.0.1.1 and earlier in EnTech Taiwan PowerStrip 3.84 and earlier allows local users to gain privileges via certain IRP parameters in an IOCTL request to \Device\Powerstrip1 that overwrites portions of memory...
CVE-2008-5725
The CVE affects the NT kernel-mode driver pstrip.sys (versions 5.0.1.1 and earlier) used by EnTech Taiwan PowerStrip (3.84 and earlier). The vulnerability arises from certain IRP parameters in an IOCTL sent to \Device\Powerstrip1, which can overwrite portions of memory and enable local privilege ...
CVE-2008-5725
The NT kernel-mode driver aka pstrip.sys 5.0.1.1 and earlier in EnTech Taiwan PowerStrip 3.84 and earlier allows local users to gain privileges via certain IRP parameters in an IOCTL request to \Device\Powerstrip1 that overwrites portions of memory...
PowerStrip 3.84 - pstrip.sys Local Privilege Escalation
PowerStrip 3.84 - pstrip.sys Local Privilege Escalation //////////////////////////////////////////////////////////////////////////////////// // +----------------------------------------------------------------------------+ // // | | // // | EnTech Taiwan - http://www.entechtaiwan.com/ | // // | |...
PowerStrip < = 3.84 (pstrip.sys) Privilege Escalation Exploit
Exploit for unknown platform in category local exploits ============================================================= PowerStrip = 3.84 pstrip.sys Privilege Escalation Exploit =============================================================...
PowerStrip 3.84 - 'pstrip.sys' Local Privilege Escalation
//////////////////////////////////////////////////////////////////////////////////// // +----------------------------------------------------------------------------+ // // | | // // | EnTech Taiwan - http://www.entechtaiwan.com/ | // // | | // // | Affected Software: | // // | PowerStrip = 3.84 ...
iDefense Security Advisory 07.11.07: Symantec AntiVirus symtdi.sys Local Privilege Escalation Vulnerability
Symantec AntiVirus symtdi.sys Local Privilege Escalation Vulnerability iDefense Security Advisory 07.11.07 http://labs.idefense.com/intelligence/vulnerabilities/ Jul 11, 2007 I. BACKGROUND Symantec has a wide range of Anti-Virus and Internet Security products that are designed to protect users fr...