Microsoft Windows内核句柄本地权限提升漏洞（MS09-006）

BUGTRAQ ID: 34027 CVECAN ID: CVE-2009-0082 Microsoft Windows是微软发布的非常流行的操作系统。 在执行某些操作时，Windows内核没有正确地验证句柄。拥有有效登录凭据的本地攻击者可以利用这个漏洞执行任意内核态代码，然后可以安装程序；查看、更改或删除数据；或创建拥有完全用户权限的新帐号。 Microsoft Windows XP SP3 Microsoft Windows XP SP2 Microsoft Windows XP Professional x64 Edition Microsoft Windows Vista SP1...

Microsoft Windows内核GDI EMF/WMF解析远程代码执行漏洞（MS09-006）

BUGTRAQ ID: 34015 CVECAN ID: CVE-2009-0085 Microsoft Windows是微软发布的非常流行的操作系统。 Windows的GDI内核组件没有正确地验证用户态所传送输入，如果用户受骗查看了恶意网站上的特制EMF或WMF图形文件的话，就可能导致在系统上执行任意内核态代码。 Microsoft Windows XP SP3 Microsoft Windows XP SP2 Microsoft Windows Vista SP1 Microsoft Windows Vista Microsoft Windows Server 2008...

Microsoft Windows Kernel Input Validation Remote Code Execution (MS09-006; CVE-2009-0081)

The Windows kernel is the core of the operating system. It provides system level services, allocates processor time to processes, and manages error handling. A remote code execution vulnerability has been discovered in the Windows kernel.The vulnerability is due to an error in the Windows kernel...

Microsoft Security Bulletin MS09-006 – Critical Vulnerabilities in Windows Kernel Could Allow Remote Code Execution (958690)

Microsoft Security Bulletin MS09-006 – Critical Vulnerabilities in Windows Kernel Could Allow Remote Code Execution 958690 Published: March 10, 2009 Version: 1.0 General Information Executive Summary This security update resolves several privately reported vulnerabilities in the Windows kernel. T...