Microsoft Windows iSNS Server Memory Corruption (MS17-012: CVE-2017-0104)

A memory corruption vulnerability exist in Windows iSNS Server. The vulnerability is due to incorrect input validation of malformed attribute in iSNS packet. A remote attacker can exploit this vulnerability to execute arbitrary code on the server...

March 2017 Security Monthly Quality Rollup for Windows 7 SP1 and Windows Server 2008 R2 SP1

March 2017 Security Monthly Quality Rollup for Windows 7 SP1 and Windows Server 2008 R2 SP1 Summary This security update resolves the following vulnerabilities in Windows: MS17-022 Security update for Microsoft XML Core Services MS17-021 Security update for DirectShow MS17-020 Security update for...

Microsoft Windows DLL Loading Remote Code Execution (MS17-012: CVE-2017-0039)

A remote code execution vulnerability has been reported in Microsoft Windows. The vulnerability is due to the way Windows improperly validates input before loading certain libraries. A remote attacker could exploit this vulnerability by enticing a target user to open a specially crafted file...

Microsoft Windows COM Elevation of Privilege (MS17-012: CVE-2017-0100)

An elevation of privilege vulnerability has been reported in Microsoft Windows. The vulnerability is due to an error in the way Windows COM session moniker enforces RunAs permissions when registering DCOM objects. A remote attacker can exploit this vulnerability to execute arbitrary code...

Microsoft Windows SMB Tree Connect Response denial of service vulnerability

Overview Microsoft Windows contains a memory corruption bug in the handling of SMB traffic, which may allow a remote, unauthenticated attacker to cause a denial of service on a vulnerable system. Description Microsoft Windows fails to properly handle traffic from a malicious server. In particular...