Microsoft Windows Kernel整数截断本地权限提升漏洞

BUGTRAQ ID: 46136 CVE ID: CVE-2011-0045 Windows是微软发布的非常流行的操作系统。 Windows Kernel在实现上存在本地权限提升漏洞，攻击者可利用此漏洞以内核级别权限执行任意代码，从而完全控制受影响计算机。 此漏洞源于Kernel对跟踪事件的支持。由于畸形转换，Kernel为用户空间中的数据分配使用截断的长度。在填充此缓冲区时，Kernel将使用造成缓冲区溢出的另一个长度。这将造成内存破坏并导致执行任意代码。 Microsoft Windows XP Tablet PC Edition SP3 Microsoft Windows XP...

Microsoft Windows Kernel Integer Truncation Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability. An attacker can exploit this issue to execute arbitrary code with kernel-level privileges. Successful exploits will result in the complete compromise of affected computers. Failed exploit attempts may cause a...

Microsoft Windows OpenType Font (OTF) Format Driver CVE-2010-2741 Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability. Attackers may exploit this issue to execute arbitrary code with kernel-level privileges. Successfully exploiting this issue will result in the complete compromise of affected computers. Failed exploit attempts...

Microsoft Help and Support Center 'sysinfo/sysinfomain.htm' Cross Site Scripting Weakness

Description Help and Support Center is prone to a cross-site scripting weakness because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the privileged zone of the browser of an unsuspecting user. NOTE: This issue is a...

Microsoft GDI+ PNG File Processing Remote Code Execution Vulnerability

Description Microsoft GDI+ is prone to a remote code-execution vulnerability because the vector graphics link library improperly processes PNG image files. An attacker could exploit this issue to execute arbitrary code with the privileges of the currently logged-in user. Failed exploit attempts m...

Microsoft Windows AFD Driver Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability in the Ancillary Function Driver 'afd.sys'. A successful exploit of this vulnerability will let a local attacker completely compromise an affected computer. Technologies Affected Microsoft Windows Server 2003...

Microsoft MFC库CFileFind::FindFile缓冲区溢出漏洞

Microsoft Windows是一款流行的操作系统。 Microsoft Windows包含的MFC库处理CFileFind::FindFile方法存在缓冲区溢出，远程攻击者可以利用漏洞以链接此库的应用程序权限执行任意指令。 问题存在于MFC库包含的FindFile函数中，FindFile函数管理垮文件系统文件搜索，可指定文件类型进行搜索。FindFile函数为buffer1分配内存，buffer1用于存储function2的第一个参数，而没有对其大小进行检查。这个数据用于开始一个搜索。...

Microsoft Windows SNMP Service Remote Code Execution Vulnerability

Description Microsoft Windows SNMP service is prone to a memory-corruption vulnerability because the software fails to properly bounds-check user-supplied network data before copying it to an insufficiently sized memory buffer. Exploiting this issue allows remote attackers to execute arbitrary...

Microsoft Windows Help存在多个漏洞

Microsoft Help WINHLP32.EXE处理.hlp文件存在多个远程代码执行和拒绝服务问题。 攻击者可以在WEB页上防止恶意帮助文件，或者通过EMAIL附件形式发送，诱使用户打开来触发此漏洞，成功利用此漏洞可以以进程权限执行任意指令。 Microsoft Windows XP Tablet PC Edition SP2 Microsoft Windows XP Tablet PC Edition SP1 Microsoft Windows XP Tablet PC Edition Microsoft Windows XP Professional x64 Edition...

Microsoft Windows图形设备接口附加库拒绝服务漏洞

Microsoft Windows是一款流行的操作系统。 Microsoft Windows图形社诶接口附加库处理畸形图象文件存在问题，远程攻击者可以利用漏洞可对系统进行拒绝服务攻击。 问题存在于Windows GDI+库'gdiplus.dll'中，构建恶意的图象文件，诱使用户打开，可导致系统崩溃。 Microsoft Windows XP Tablet PC Edition SP2 Microsoft Windows XP Tablet PC Edition SP1 Microsoft Windows XP Tablet PC Edition Microsoft Windows XP...

Microsoft Windows Server Driver Remote Information Disclosure Vulnerability

Description Microsoft Windows Server driver is susceptible to a remote information-disclosure vulnerability. This issue is due to a flaw in the handling of certain SMB traffic. Exploiting this issue allows remote attackers to gain access to potentially sensitive fragments of kernel memory. This m...

Microsoft Windows Korean Input Method Editor Privilege Escalation Vulnerability

Description Microsoft Windows Korean Input Method Editor is prone to a local privilege-escalation vulnerability. Successful exploitation can allow local attackers to completely compromise a vulnerable computer. Technologies Affected Microsoft Office 2003 Microsoft Office 2003 SP1 Microsoft Office...

Windows XP Tablet PC Edition

Windows XP Tablet PC Edition...