1365 matches found
MS12-054: Vulnerabilities in Windows networking components could allow remote code execution: August 14, 2012
Resolves vulnerabilities in Microsoft Windows that could allow remote code execution if an attacker sends a specially crafted response to a Windows print spooler request.INTRODUCTIONMicrosoft has released security bulletin MS12-054. To view the complete security bulletin, go to one of the followi...
smb-print-text NSE Script
Attempts to print text on a shared printer by calling Print Spooler Service RPC functions. In order to use the script, at least one printer needs to be shared over SMB. If no printer is specified, script tries to enumerate existing ones by calling LANMAN API which might not be always available...
smb-vuln-ms10-061 NSE Script
Tests whether target machines are vulnerable to ms10-061 Printer Spooler impersonation vulnerability. This vulnerability was used in Stuxnet worm. The script checks for the vuln in a safe way without a possibility of crashing the remote system as this is not a memory corruption vulnerability. In...
Fedora Update for foomatic FEDORA-2011-9575
Check for the Version of foomatic OpenVAS Vulnerability Test Fedora Update for foomatic FEDORA-2011-9575 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...
[SECURITY] Fedora 15 Update: foomatic-4.0.7-3.fc15
Foomatic is a comprehensive, spooler-independent database of printers, printer drivers, and driver descriptions. This package contains utilities to generate driver description files and printer queues for CUPS, LPD, LPRng, and PDQ using the database packaged separately. There is also the...
RHEL 4 / 5 : foomatic (RHSA-2011:1109)
An updated foomatic package that fixes one security issue is now available for Red Hat Enterprise Linux 4 and 5. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...
Microsoft Windows - Print Spooler Service Impersonation (MS10-061) (Metasploit)
$Id: ms10061spoolss.rb 11766 2011-02-17 19:22:11Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framewor...
All Eyes On Stuxnet At Annual Virus Researcher Summit
The world will know more about the mysterious Stuxnet virus by week’s end, after top virus researchers reveal the findings of their post mortem on Stuxnet at the annual Virus Bulletin Conference. HED: All eyes on Stuxnet at annual virus researcher summit DEK: Researchers will reveal new details...
Early Stuxnet Variants Used 'Cunning' Hack of AutoRun to Spread
Early versions of the Stuxnet worm used a novel and cunning method to manipulate Windows Autorun feature in order to spread, according to information published by a Symantec Researcher who helped analyze the worm after it was first identified. Writing on the Symantec Connect blog, Symantec...
Microsoft Missed 2009 Published Article on Stuxnet-Type Attack
A security flaw affecting Microsoft’s Windows operating system that was exploited by the Stuxnet worm was publicly disclosed more than a year before the worm appeared, according to a researcher at Symantec Corp. On September 17, Symantec researcher Liam O Murchu noted on that company’s Connect bl...
Microsoft Print Spooler Service Impersonation Vulnerability
$Id: ms10061spoolss.rb 10391 2010-09-20 05:06:51Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framewor...
MS10-061: Vulnerability in Print Spooler Service Could Allow Remote Code Execution (2347290) (EMERALDTHREAD) (uncredentialed check)
The version of the Print Spooler service on the remote Windows host is affected by a service impersonation vulnerability that allows an unauthenticated, remote attacker to execute arbitrary code on a Windows XP system to escalate privileges on all other supported Windows systems. EMERALDTHREAD is...
MS10-061 Microsoft Print Spooler Service Impersonation Vulnerability
This module exploits the RPC service impersonation vulnerability detailed in Microsoft Bulletin MS10-061. By making a specific DCE RPC request to the StartDocPrinter procedure, an attacker can impersonate the Printer Spooler service to create a file. The working directory at the time is...
Microsoft Windows multiple security vulnerabilities
Privilege escalation and code execution in spooler services,memory corruption in MPEG-4 codec, memroy corruption in RPC, privilege escalation in LSA, privilege escalation in CSRSS subsystem, WordPad memory corruption...
CVE-2010-2729
The Print Spooler service in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, and R2, and Windows 7, when printer sharing is enabled, does not properly validate spooler access permissions, which allows remote attackers to create...
Design/Logic Flaw
The Print Spooler service in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, and R2, and Windows 7, when printer sharing is enabled, does not properly validate spooler access permissions, which allows remote attackers to create...
Immunity Canvas: MS10_061
Name| ms10061 ---|--- CVE| CVE-2010-2729 Exploit Pack| CANVAS Description| Microsoft Windows Print Spooler Arbitrary File Creation Notes| CVE Name: CVE-2010-2729 VENDOR: Microsoft MSADV: MS10-061 Repeatability: Note: Please refer to the Microsoft URLs to know exactly the conditions for when this...
CVE-2010-2729
CVE-2010-2729 is a remote code execution vulnerability in the Windows Print Spooler service. It stems from insufficient validation of spooler access permissions, allowing a remote attacker to create files in a system directory and execute arbitrary code by sending a crafted print request over RPC...
CVE-2010-2729
The Print Spooler service in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, and R2, and Windows 7, when printer sharing is enabled, does not properly validate spooler access permissions, which allows remote attackers to create...
Microsoft Security Bulletin MS10-061 - Critical Vulnerability in Print Spooler Service Could Allow Remote Code Execution (2347290)
Microsoft Security Bulletin MS10-061 - Critical Vulnerability in Print Spooler Service Could Allow Remote Code Execution 2347290 Published: September 14, 2010 Version: 1.0 General Information Executive Summary This security update resolves a publicly disclosed vulnerability in the Print Spooler...