MS12-034: Description of the security update for the .NET Framework 3.5.1 on Windows 7 Service Pack 1 and Windows Server 2008 R2 Service Pack 1: May 8, 2012

MS12-034: Description of the security update for the .NET Framework 3.5.1 on Windows 7 Service Pack 1 and Windows Server 2008 R2 Service Pack 1: May 8, 2012 Microsoft has released the security bulletin MS12-034. You can view the complete security bulletin by visiting one of the following Microsof...

Windows XP Keyboard Layouts Pool Corruption LPE 0day PoC (post-MS12-034)

No description provided by source. =========== Description =========== Windows XP keyboard layouts pool corruption 0day PoC, post-MS12-034. Vulnerability exists in the function win32k!ReadLayoutFile, that parses keyboard layout files data. Possible attack vector -- local privileges escalation...

Microsoft Windows XP - Keyboard Layouts Pool Corruption (PoC) (MS12-034)

Microsoft Windows XP - Keyboard Layouts Pool Corruption PoC MS12-034 =========== Description =========== Windows XP keyboard layouts pool corruption 0day PoC, post-MS12-034. Vulnerability exists in the function win32k!ReadLayoutFile, that parses keyboard layout files data. Possible attack vector ...

Microsoft Windows XP - Keyboard Layouts Pool Corruption (PoC) (MS12-034)

=========== Description =========== Windows XP keyboard layouts pool corruption 0day PoC, post-MS12-034. Vulnerability exists in the function win32k!ReadLayoutFile, that parses keyboard layout files data. Possible attack vector -- local privileges escalation. Similar vuln CVE-2012-0183 was patche...

Microsoft Silverlight Code Execution Vulnerabilities (2681578) - Mac OS X

This host is missing a critical security update according to Microsoft Bulletin MS12-034. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

Microsoft GDI+ EMF图形处理远程代码执行漏洞(MS12-034)

BUGTRAQ ID: 53347 CVE ID: CVE-2012-0165 Windows是流行的计算机操作系统。 GDI+ 处理特制 EMF 图像的验证的方式中存在一个远程执行代码漏洞。如果用户打开特制的 EMF 图像文件，该漏洞可能允许远程执行代码。成功利用此漏洞的攻击者可以完全控制受影响的系统。攻击者可随后安装程序；查看、更改或删除数据；或者创建拥有完全用户权限的新帐户。那些帐户被配置为拥有较少系统用户权限的用户比具有管理用户权限的用户受到的影响要小。 0 Microsoft Office 2003 Microsoft Office Office 2010 Microsoft...

Microsoft Windows本地键盘布局处理权限提升漏洞(CVE-2012-0181)(MS12-034)

BUGTRAQ ID: 53326 CVE ID: CVE-2012-0181 Microsoft Windows是流行的计算机操作系统。 Windows内核模式驱动程序管理键盘布局文件的方式中存在一个特权提升漏洞。成功利用此漏洞的攻击者可以运行内核模式中的任意代码。攻击者随后可安装程序；查看、更改或删除数据；或者创建拥有完全管理权限的新帐户。 0 Microsoft Windows Windows XP Service Pack 3 0 Microsoft Windows Windows XP Professional x64 Ed Microsoft Windows Windows ...

Microsoft Windows本地权限提升漏洞(CVE-2012-1848)(MS12-034)

BUGTRAQ ID: 53327 CVE ID: CVE-2012-1848 Microsoft Windows是流行的计算机操作系统。 Windows内核模式驱动程序中存在一个特权提升漏洞。成功利用此漏洞的攻击者可以运行内核模式中的任意代码。攻击者随后可安装程序；查看、更改或删除数据；或者创建拥有完全管理权限的新帐户。 0 Microsoft Windows Windows XP Service Pack 3 0 Microsoft Windows Windows XP Professional x64 Ed Microsoft Windows Windows XP...

MS12-034: Combined Security Update for Microsoft Office, Windows, .NET Framework, and Silverlight (2681578)

The remote Windows host is missing a security update. It is, therefore, affected by multiple vulnerabilities : - A flaw exists in the Win32k TrueType font parsing engine that allows an unauthenticated, remote attacker to execute arbitrary code by convincing a user to open a Word document containi...

Microsoft .NET Framework索引比较拒绝服务漏洞(CVE-2012-0164)(MS12-034)

BUGTRAQ ID: 53363 CVE ID: CVE-2012-0164 Microsoft Windows是流行的计算机操作系统。 .NET Framework 比较索引值的方式中存在一个拒绝服务漏洞。成功利用此漏洞的攻击者可能导致使用 WPF API 的应用程序停止响应，直至被手动重新启动。请注意，攻击者无法利用拒绝服务漏洞来以任何方式执行代码或提升其用户权限。 0 Microsoft .NET Framework 4.0 厂商补丁： Microsoft --------- Microsoft已经为此发布了一个安全公告（MS12-034）以及相应补丁:...

MS12-034: Combined Security Update for Microsoft Office, Windows, .NET Framework, and Silverlight (2681578) (Mac OS X)

The version of Microsoft Silverlight installed on the remote host is reportedly affected by several vulnerabilities : - Incorrect handling of TrueType font TTF files could lead to arbitrary code execution. CVE-2011-3402 / CVE-2012-0159 - A double-free condition leading to arbitrary code execution...

Microsoft Windows GDI+ Record Type Code Execution (MS12-034; CVE-2012-0165)

A remote code execution vulnerability has been reported in Microsoft GDI+...

Microsoft Silverlight Double-Free Remote Code Execution (MS12-034; CVE-2012-0176)

A remote code execution vulnerability has been reported in Microsoft Silverlight...

Microsoft Windows GDI+ EMF Heap Overflow (MS12-034; CVE-2012-0167)

A remote code execution vulnerability has been reported in Microsoft GDI+...

Microsoft Windows Malformed TrueType Font Remote Code Execution (MS12-034; CVE-2012-0159)

A remote code execution vulnerability has been reported in Microsoft Windows...

Microsoft .NET Framework XBAP Buffer Allocation Code Execution (MS12-034; CVE-2012-0162)

A remote code execution vulnerability has been reported in Microsoft .NET Framework...