157 matches found
Microsoft SAFER Bypass
Hi @ll, Microsoft introduced SAFER alias Software Restriction Policies SRP with Windows XP about 20 years ago. See for the API, plus the TechNet articles "How Software Restriction Policies Work" and "Using Software Restriction Policies to Protect Against Unauthorized Software" for the use case...
MS15-033: Description of the security update for Office Web Apps Server 2013: April 14, 2015
Resolves vulnerabilities in Office Web Apps Server 2013 that could allow remote code execution if an authenticated attacker sends specially crafted page content to a targeted computer that is running SharePoint Server.IntroductionThis update resolves vulnerabilities in Microsoft Office Web Apps...
MS15-033: Description of the security update for SharePoint Server 2013 Word Automation Services: April 14, 2015
Resolves vulnerabilities in Microsoft Office that could allow remote code execution if an attacker convinces a user to open or preview a specially crafted Microsoft Word file in an affected version of Office.IntroductionThis security update resolves vulnerabilities in Microsoft Office that could...
MS15-022: Description of the security update for Office 2013: March 10, 2015
Resolves vulnerabilities in Microsoft Office that could allow remote code execution when an Office file that is located in the same network directory as a specially crafted library file is opened.IntroductionThis update resolves vulnerabilities in Microsoft Office that could allow remote code...
MS14-081: Description of the security update for Word 2013: December 9, 2014
Resolves vulnerabilities in Microsoft Office that could allow remote code execution if an attacker convinces a user to open or preview a specially crafted Microsoft Word file in an affected version of Office.IntroductionThis security update resolves vulnerabilities in Microsoft Office that could...
MS15-046: Description of the security update for Office Web Apps Server 2013: May 12, 2015
Resolves vulnerabilities in Microsoft Office that could allow remote code execution if a user opens a specially crafted Microsoft Office file.IntroductionThis update resolves vulnerabilities in Microsoft Office Web Apps Server 2013 that could allow remote code execution if an authenticated attack...
MS15-046: Description of the security update for SharePoint Server 2013 Word Automation Services: May 12, 2015
Resolves vulnerabilities in Microsoft Office that could allow remote code execution if an attacker convinces a user to open or preview a specially crafted Microsoft Word file in an affected version of Office.IntroductionThis security update resolves vulnerabilities in Microsoft Office that could...
MS15-022: Description of the security update for Office Web Apps Server 2013: March 10, 2015
Resolves vulnerabilities in Office Web Apps Server 2013 that could allow remote code execution if an authenticated attacker sends specially crafted page content to a targeted computer that is running SharePoint Server.IntroductionThis update resolves vulnerabilities in Microsoft Office Web Apps...
MS15-022: Description of the security update for SharePoint Server 2013: March 10, 2015
MS15-022: Description of the security update for SharePoint Server 2013: March 10, 2015 Introduction This security update resolves vulnerabilities in Microsoft Office that could allow remote code execution if an attacker convinces a user to open or preview a specially crafted Office file in an...
MS15-081: Description of the security update for Office 2010: August 11, 2015
MS15-081: Description of the security update for Office 2010: August 11, 2015 Summary This security update resolves vulnerabilities in Microsoft Office that could allow remote code execution if a user opens a specially crafted Office file. To learn more about these vulnerabilities, see Microsoft...
MS15-022: Description of the security update for SharePoint Server 2013: March 10, 2015
MS15-022: Description of the security update for SharePoint Server 2013: March 10, 2015 Introduction This security update resolves vulnerabilities in Microsoft Office that could allow remote code execution if an attacker convinces a user to open or preview a specially crafted Microsoft Word file ...
Security update for Adobe Flash Player: January 8, 2019
Security update for Adobe Flash Player: January 8, 2019 Summary This update resolves issues in Adobe Flash Player that is installed on any of the operating systems that listed in the "applies to" section. To learn more, go to ADV190001. More Information Important All security and nonsecurity...
Description of the security update for SharePoint Server 2013: August 14, 2018
Description of the security update for SharePoint Server 2013: August 14, 2018 Summary This security update resolves vulnerabilities in Microsoft Office that could allow information disclosure if a user opens a specially crafted Office file. To learn more about these vulnerabilities, see Microsof...
Security and Quality updates for .NET Framework 2.0 SP2, 3.0 SP2, 4.5.2 and 4.6 for Windows Server 2008 SP2 (KB 4345593)
Security and Quality updates for .NET Framework 2.0 SP2, 3.0 SP2, 4.5.2 and 4.6 for Windows Server 2008 SP2 KB 4345593 Summary This security update resolves an information disclosure vulnerability in Microsoft .NET Framework that could allow an attacker to access information in multi-tenant...
Description of the security update for the Windows elevation of privilege vulnerability in Windows Server 2008: July 10, 2018
Description of the security update for the Windows elevation of privilege vulnerability in Windows Server 2008: July 10, 2018 Summary An elevation of privilege vulnerability exists when Windows fails a check, allowing a sandbox escape. To learn more about the vulnerability, go to CVE-2018-8314. H...
technet-it.co.uk XSS vulnerability
Open Bug Bounty ID: OBB-638640 Description| Value ---|--- Affected Website:| technet-it.co.uk Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
Description of the security update for the HIDParser elevation of privilege vulnerability in Windows Server 2008, Windows Embedded POSReady 2009, and Windows Embedded Standard 2009: June 12, 2018
Description of the security update for the HIDParser elevation of privilege vulnerability in Windows Server 2008, Windows Embedded POSReady 2009, and Windows Embedded Standard 2009: June 12, 2018 Summary To learn more about the vulnerability, go to CVE-2018-8169.Important If you install a languag...
Description of the security update for Microsoft Office Compatibility Pack Service Pack 3: June 12, 2018
Description of the security update for Microsoft Office Compatibility Pack Service Pack 3: June 12, 2018 Summary This security update resolves vulnerabilities in Microsoft Office that could allow remote code execution if a user opens a specially crafted Office file. To learn more about these...
MS10-012: Vulnerabilities in SMB Server could allow remote code execution
MS10-012: Vulnerabilities in SMB Server could allow remote code execution Support for Windows Vista Service Pack 1 SP1 ends on July 12, 2011. To continue receiving security updates for Windows, make sure you're running Windows Vista with Service Pack 2 SP2. For more information, refer to this...
MS08-025: Vulnerability in Windows Kernel could allow elevation of privilege
MS08-025: Vulnerability in Windows Kernel could allow elevation of privilege Support for Windows Vista Service Pack 1 SP1 ends on July 12, 2011. To continue receiving security updates for Windows, make sure you're running Windows Vista with Service Pack 2 SP2. For more information, refer to this...