You encounter a memory leak issue when an application calls the WinHttpGetProxyForUrl function in Windows 7 or in Windows Server 2008 R2

You encounter a memory leak issue when an application calls the WinHttpGetProxyForUrl function in Windows 7 or in Windows Server 2008 R2 Symptoms Assume that you develop an application that makes use of the WinHTTP Web Proxy Auto-Discovery Service WinHttpAutoProxySvc or calls the...

The vulnerability in the Google Chrome web browser, related to incorrect input validation, allows a hacker to redirect resources to the local host.

The vulnerability in the Google Chrome web browser is related to the absence of a special localhost registration in the WPAD files. Exploiting this vulnerability allows an attacker to redirect resources to localhost using a specially created WPAD file...

Vulnerability of the Windows operating system and the Internet Explorer browser, allowing attackers to increase their privileges

The vulnerability of the Web Proxy Auto Discovery protocol for the Windows operating system and the Internet Explorer browser is related to deficiencies in access control. Exploiting this vulnerability can allow a malicious actor to enhance their privileges remotely by using the NetBIOS name...

CVE-2016-3236

The Web Proxy Auto Discovery WPAD protocol implementation in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 mishandles proxy discovery, which allows remote attackers to...

CVE-2016-3236

CVE-2016-3236 affects the WPAD proxy discovery implementation in multiple Windows editions (Vista through Windows 10). The weakness arises when WPAD proxy discovery is mishandled, which could allow a remote attacker to redirect network traffic via unspecified vectors, effectively an elevation of ...

Microsoft Web Proxy Auto Discovery (WPAD) Privilege Elevation Vulnerabilities (3165191)

This host is missing an important security update according to Microsoft Bulletin MS16-077. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

WPAD Elevation of Privilege Vulnerability

An elevation of privilege vulnerability exists in Microsoft Windows when the Web Proxy Auto Discovery WPAD protocol falls back to a vulnerable proxy discovery process. An attacker who successfully exploited this vulnerability could bypass security and gain elevated privileges on a targeted system...

MS16-077: Description of the security update for WPAD: June 14, 2016

MS16-077: Description of the security update for WPAD: June 14, 2016 Summary This security update resolves vulnerabilities in Microsoft Windows. The vulnerabilities could allow elevation of privilege if the Web Proxy Auto Discovery WPAD protocol falls back to a vulnerable proxy discovery process ...

Microsoft Windows WPAD Proxy Discovery Elevation of Privilege (MS16-077; CVE-2016-3236)

An elevation of privilege vulnerability exists in Microsoft Windows. The vulnerability is due to improper handling of certain proxy discovery scenarios using the Web Proxy Autodiscovery WPAD protocol method. A remote attacker can exploit this issue by sending specially crafted NBNS responses...