Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

Zero Day Initiative
Zero Day Initiativeadded 2026/05/12 12:0 a.m.8 views

Microsoft Windows Message Queueing Double Free Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows that run Message Queueing. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists...

7.8CVSS6.2AI score0.0005EPSS
Exploits0References1
NVD
NVDadded 2014/07/26 3:55 p.m.12 views

CVE-2014-4971

Microsoft Windows XP SP3 does not validate addresses in certain IRP handler routines, which allows local users to write data to arbitrary memory locations, and consequently gain privileges, via a crafted address in an IOCTL call, related to 1 the MQAC.sys driver in the MQ Access Control subsystem...

7.2CVSS6.3AI score0.23441EPSS
Exploits21References18
Prion
Prionadded 2014/07/26 3:55 p.m.13 views

Memory corruption

Microsoft Windows XP SP3 does not validate addresses in certain IRP handler routines, which allows local users to write data to arbitrary memory locations, and consequently gain privileges, via a crafted address in an IOCTL call, related to 1 the MQAC.sys driver in the MQ Access Control subsystem...

7.2CVSS6.7AI score0.23441EPSS
Exploits21References18
CVE
CVEadded 2014/07/26 3:0 p.m.68 views

CVE-2014-4971

CVE-2014-4971 affects Microsoft Windows XP SP3 and relates to two drivers: MQAC.sys in the MQ Access Control subsystem and BthPan.sys in Bluetooth PAN. The vulnerability arises because certain IRP/IOCTL handling does not validate addresses, enabling local attackers to write to arbitrary memory lo...

7.2CVSS6.2AI score0.23441EPSS
Exploits21References18Affected Software1
Cvelist
Cvelistadded 2014/07/26 3:0 p.m.21 views

CVE-2014-4971

Microsoft Windows XP SP3 does not validate addresses in certain IRP handler routines, which allows local users to write data to arbitrary memory locations, and consequently gain privileges, via a crafted address in an IOCTL call, related to 1 the MQAC.sys driver in the MQ Access Control subsystem...

6.2AI score0.23441EPSS
Exploits21References18
Exploit DB
Exploit DBadded 2014/07/25 12:0 a.m.33 views

Microsoft Windows XP SP3 - 'MQAC.sys' Arbitrary Write Privilege Escalation (Metasploit)

This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' require 'rex' class Metasploit3 'MQAC.sys Arbitrary Write Privilege Escalation', 'Description' = %q A vulnerability within the MQAC.sys module allows an...

7.2CVSS7.4AI score0.23441EPSS
Exploits21
securityvulns
securityvulnsadded 2014/07/22 12:0 a.m.48 views

Microsoft Windows XP privilege escalation

BthPan.sys and MQAC.sys privilege escalation...

7.2CVSS2.9AI score0.23441EPSS
Exploits21References2
Rows per page
Query Builder