5 matches found
Microsoft: 6 Zero-Days in March 2025 Patch Tuesday
Microsoft today issued more than 50 security updates for its various Windows operating systems, including fixes for a whopping six zero-day vulnerabilities that are already seeing active exploitation. Two of the zero-day flaws include CVE-2025-24991 and CVE-2025-24993, both vulnerabilities in NTF...
PT-2025-6307 · Microsoft · Windows +1
Name of the Vulnerable Software and Affected Versions: Windows versions prior to the fixed version Description: A tampering issue affects the Windows Remote Desktop Configuration Service, allowing attackers to impact the system. Recommendations: For versions prior to the fixed version, update to...
PT-2012-5585 · Microsoft · Windows
Name of the Vulnerable Software and Affected Versions: Microsoft Windows versions prior to the fixed version Description: A remote code execution issue exists due to the way Microsoft Windows parses filenames, potentially allowing attackers to execute arbitrary code in the context of the current...
PT-2009-2781 · Microsoft · Windows
Name of the Vulnerable Software and Affected Versions: Microsoft Windows versions prior to the fixed version Description: The issue arises from the improper validation of input received from user mode by the graphics device interface GDI implementation in the kernel. This allows remote attackers ...
PT-2008-3746 · Microsoft · Windows
Name of the Vulnerable Software and Affected Versions: Microsoft Windows versions prior to the fixed version Description: The issue is related to a double free condition in the Windows kernel, allowing local users to gain privileges via a crafted application. This could enable an attacker to run...