Lucene search
+L

12 matches found

CVE
CVE
added 3 days ago5 views

CVE-2026-50480

Windows Web Proxy Auto-Discovery Protocol (WPAD) has a heap-based buffer overflow vulnerability (CVE-2026-50480) that can be exploited by an authenticated local attacker to achieve privilege escalation. The issue affects WPAD in Windows, with the root cause described as a heap-based overflow in W...

7.8CVSS6.1AI score0.00245EPSS
Exploits0References1
Cvelist
Cvelist
added 3 days ago32 views

CVE-2026-50480 Windows Web Proxy Auto-Discovery Protocol (WPAD) Elevation of Privilege Vulnerability

...

7.8CVSS0.00245EPSS
Exploits0References1
Microsoft CVE
Microsoft CVE
added 3 days ago4 views

Windows Web Proxy Auto-Discovery Protocol (WPAD) Elevation of Privilege Vulnerability

Integer overflow or wraparound in Windows Web Proxy Auto-Discovery Protocol WPAD allows an authorized attacker to elevate privileges locally...

7.8CVSS6.1AI score0.00245EPSS
Exploits0
Microsoft KB
Microsoft KB
added 2020/04/10 12:0 a.m.6 views

You encounter a memory leak issue when an application calls the WinHttpGetProxyForUrl function in Windows 7 or in Windows Server 2008 R2

You encounter a memory leak issue when an application calls the WinHttpGetProxyForUrl function in Windows 7 or in Windows Server 2008 R2 Symptoms Assume that you develop an application that makes use of the WinHTTP Web Proxy Auto-Discovery Service WinHttpAutoProxySvc or calls the...

6.9AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2019/03/12 12:0 a.m.7 views

The vulnerability in the Google Chrome web browser, related to incorrect input validation, allows a hacker to redirect resources to the local host.

The vulnerability in the Google Chrome web browser is related to the absence of a special localhost registration in the WPAD files. Exploiting this vulnerability allows an attacker to redirect resources to localhost using a specially created WPAD file...

5.7CVSS6.8AI score0.00443EPSS
Exploits0References4Affected Software2
BDU FSTEC
BDU FSTEC
added 2016/07/04 12:0 a.m.8 views

Vulnerability of the Windows operating system and the Internet Explorer browser, allowing attackers to increase their privileges

The vulnerability of the Web Proxy Auto Discovery protocol for the Windows operating system and the Internet Explorer browser is related to deficiencies in access control. Exploiting this vulnerability can allow a malicious actor to enhance their privileges remotely by using the NetBIOS name...

9.3CVSS7.6AI score0.70288EPSS
Exploits2References5Affected Software1
OSV
OSV
added 2016/06/16 1:59 a.m.5 views

CVE-2016-3236

The Web Proxy Auto Discovery WPAD protocol implementation in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 mishandles proxy discovery, which allows remote attackers to...

9.8CVSS5.8AI score0.77658EPSS
Exploits2References2
CVE
CVE
added 2016/06/16 1:0 a.m.124 views

CVE-2016-3236

CVE-2016-3236 affects the WPAD proxy discovery implementation in multiple Windows editions (Vista through Windows 10). The weakness arises when WPAD proxy discovery is mishandled, which could allow a remote attacker to redirect network traffic via unspecified vectors, effectively an elevation of ...

10CVSS9.1AI score0.77658EPSS
Exploits2References2Affected Software7
OpenVAS
OpenVAS
added 2016/06/15 12:0 a.m.138 views

Microsoft Web Proxy Auto Discovery (WPAD) Privilege Elevation Vulnerabilities (3165191)

This host is missing an important security update according to Microsoft Bulletin MS16-077. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

10CVSS6.5AI score0.77658EPSS
Exploits2References5
Microsoft KB
Microsoft KB
added 2016/06/14 7:0 a.m.73 views

MS16-077: Description of the security update for WPAD: June 14, 2016

None None...

10CVSS6.7AI score0.77658EPSS
Exploits2
Microsoft CVE
Microsoft CVE
added 2016/06/14 7:0 a.m.64 views

WPAD Elevation of Privilege Vulnerability

An elevation of privilege vulnerability exists in Microsoft Windows when the Web Proxy Auto Discovery WPAD protocol falls back to a vulnerable proxy discovery process. An attacker who successfully exploited this vulnerability could bypass security and gain elevated privileges on a targeted system...

9.3CVSS8.9AI score0.70288EPSS
Exploits2
Check Point Advisories
Check Point Advisories
added 2016/06/14 12:0 a.m.40 views

Microsoft Windows WPAD Proxy Discovery Elevation of Privilege (MS16-077; CVE-2016-3236)

An elevation of privilege vulnerability exists in Microsoft Windows. The vulnerability is due to improper handling of certain proxy discovery scenarios using the Web Proxy Autodiscovery WPAD protocol method. A remote attacker can exploit this issue by sending specially crafted NBNS responses...

10CVSS8.7AI score0.77658EPSS
Exploits2
Rows per page
Query Builder