43 matches found
Exploit for CVE-2026-40369
CVE-2026-40369: Arbitrary Kernel Address Increment via NtQuery...
Exploit for Improper Restriction of Operations within the Bounds of a Memory Buffer in Microsoft
CVE-2024-30090 - LPE PoC CVE-2024-30090https://msrc.mic...
Microsoft CLIPSP.SYS License Update out-of-bounds read vulnerability
Talos Vulnerability Report TALOS-2024-1988 Microsoft CLIPSP.SYS License Update out-of-bounds read vulnerability August 13, 2024 CVE Number None SUMMARY An out-of-bounds read vulnerability exists in the License Update functionality of Microsoft CLIPSP.SYS 10.0.22621 Build 22621. A specially crafte...
Microsoft Windows CLIPSP.SYS License Update Field Type 0xC9 out-of-bounds read vulnerability
Talos Vulnerability Report TALOS-2024-1968 Microsoft Windows CLIPSP.SYS License Update Field Type 0xC9 out-of-bounds read vulnerability August 13, 2024 CVE Number CVE-2024-38062 SUMMARY An out-of-bounds read vulnerability exists in the License Update Field Type 0xC9 functionality of Microsoft...
Microsoft CLIPSP.SYS License update out-of-bounds read vulnerability
Talos Vulnerability Report TALOS-2024-1965 Microsoft CLIPSP.SYS License update out-of-bounds read vulnerability August 13, 2024 CVE Number CVE-2024-38185 SUMMARY Multiple out-of-bounds read vulnerabilities exists in the License update functionality of Microsoft CLIPSP.SYS 10.0.22621 Build 22621,...
Microsoft Windows CLIPSP.SYS License Update Field Type 0xD3 out-of-bounds read vulnerability
Talos Vulnerability Report TALOS-2024-1970 Microsoft Windows CLIPSP.SYS License Update Field Type 0xD3 out-of-bounds read vulnerability August 13, 2024 CVE Number None SUMMARY An out-of-bounds read vulnerability exists in the License Update Field Type 0xD3 functionality of Microsoft Windows...
Microsoft CLIPSP.SYS License update signature check bypass vulnerability
Talos Vulnerability Report TALOS-2024-1964 Microsoft CLIPSP.SYS License update signature check bypass vulnerability August 13, 2024 CVE Number CVE-2024-38184 SUMMARY A signature check bypass vulnerability exists in the License update functionality of Microsoft CLIPSP.SYS 10.0.22621 Build 22621,...
Microsoft Windows CLIPSP.SYS License Update Field Type 0x20 out-of-bounds read vulnerability
Talos Vulnerability Report TALOS-2024-1969 Microsoft Windows CLIPSP.SYS License Update Field Type 0x20 out-of-bounds read vulnerability August 13, 2024 CVE Number CVE-2024-38187 SUMMARY An out-of-bounds read vulnerability exists in the License Update Field Type 0x20 functionality of Microsoft...
Microsoft CLIPSP.SYS License update privilege escalation vulnerability
Talos Vulnerability Report TALOS-2024-1966 Microsoft CLIPSP.SYS License update privilege escalation vulnerability August 13, 2024 CVE Number CVE-2024-38186 SUMMARY A privilege escalation vulnerability exists in the License update functionality of Microsoft CLIPSP.SYS 10.0.22621 Build 22621,...
Microsoft Windows CLIPSP.SYS License Update Field Type 0xCC out-of-bounds read vulnerability
Talos Vulnerability Report TALOS-2024-1971 Microsoft Windows CLIPSP.SYS License Update Field Type 0xCC out-of-bounds read vulnerability August 13, 2024 CVE Number None SUMMARY An out-of-bounds read vulnerability exists in the License Update Field Type 0xCC functionality of Microsoft Windows...
Exploit for Integer Overflow or Wraparound in Microsoft
CVE-2024-20698 About this vulnerability: https://msrc.microsof...
CVE-2023-21768
Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability...
CVE-2021-31955
Windows Kernel Information Disclosure Vulnerability Recent assessments: gwillcox-r7 at June 17, 2021 3:23pm UTC reported: Ah good old NtQuerySystemInformation strikes again, never quite going out of style : In this case CVE-2021-31955 is an information disclosure in good old ntoskrnl.exe, aka the...
DELL dbutil_2_3.sys 2.3 Arbitrary Write / Privilege Escalation
Exploit Title: DELL dbutil23.sys 2.3 - Arbitrary Write to Local Privilege Escalation LPE Date: 10/05/2021 Exploit Author: Paolo Stagno aka VoidSec Version: include include include include define IOCTLCODE 0x9B0C1EC8 // IOCTLCODE value, used to reach the vulnerable function taken from IDA define...
Exploit for Exposed IOCTL with Insufficient Access Control in Dell Dbutil
CVE-2021-21551 Exploit to SYSTEM for CVE-2021-21551 SpoolPrin...
STOPzilla AntiMalware 6.5.2.59 - Privilege Escalation (2)
/ 3y3t3m th!s - Ivan Ivanovic Ivanov Иван-дурак недействительный 31337 Team clone of https://www.exploit-db.com/exploits/45401 deb yaaaa win7 narrrr fails ch@ng3 p@yl0@d!!!!!!!!!!!!! / include include include include pragma commentlib,"winsta.lib" pragma commentlib,"advapi32.lib" define...
Microsoft Windows - nt!NtQuerySystemInformation (SystemPageFileInformation(Ex)) Kernel 64-bit Stack
Exploit for windows platform in category dos / poc / We have discovered that the nt!NtQuerySystemInformation system call invoked with the SystemPageFileInformation 0x12 and SystemPageFileInformationEx 0x90 information classes discloses uninitialized kernel stack memory to user-mode clients. The...
Microsoft Windows - 'nt!NtQueryInformationProcess (ProcessImageFileName)' Kernel 64-bit Pool/Stack Memory Disclosure
/ We have discovered that the nt!NtQueryInformationProcess system call invoked with the ProcessImageFileName 0x1B information class discloses uninitialized kernel memory to user-mode clients. The vulnerability affects 64-bit versions of Windows 7 to 10. According to the ZwQueryInformationProcess...
System Shield 5.0.0.136 - Privilege Escalation Exploit
Exploit for windows platform in category local exploits / Exploit Title - System Shield AntiVirus & AntiSpyware Arbitrary Write Privilege Escalation Date - 29th January 2018 Discovered by - Parvez Anwar @parvezghh Vendor Homepage - http://www.iolo.com/ Tested Version - 5.0.0.136 Driver Version -...
Microsoft Windows - nt!NtQuerySystemInformation (information class 138, QueryMemoryTopologyInformati
Exploit for windows platform in category dos / poc / We have discovered that the nt!NtQuerySystemInformation system call invoked with the 138 information class discloses portions of uninitialized kernel pool memory to user-mode clients. The specific information class is handled by an internal...