EUVD-2021-21697

Malware in sbrugna...

Design/Logic Flaw

A component in Kaspersky Password Manager could allow an attacker to elevate a process Integrity level from Medium to High...

CVE-2021-35052

A component in Kaspersky Password Manager could allow an attacker to elevate a process Integrity level from Medium to High...

CVE-2021-35052

Summary: CVE-2021-35052 concerns Kaspersky Password Manager. The connected ZDI advisory states the flaw exists in the Kaspersky Password Manager Service and arises from execution with unnecessary privileges, enabling local attackers to escalate from medium to high integrity by running code in the...

Microsoft Internet Explorer 远程代码执行漏洞(CVE-2013-3186)(MS13-059)

BUGTRAQ ID: 61663 CVECAN ID: CVE-2013-3186 Windows Internet Explorer，简称MSIE，是微软公司推出的一款网页浏览器。 Internet Explorer处理特定情况下的进程完整性级别分配存在权限提升漏洞，攻击者可利用此漏洞用提升的权限执行任意代码。 0 Microsoft Internet Explorer 6 - 10 厂商补丁： Microsoft --------- Microsoft已经为此发布了一个安全公告（MS13-059）以及相应补丁: MS13-059：Cumulative Security Update...

CVE-2013-3186

The Protected Mode feature in Microsoft Internet Explorer 7 through 10 on Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows Server 2012, and Windows RT does not properly implement the Integrity Access Level aka IL protection mechanism, which allows remote...