Lucene search
K

157 matches found

OpenVAS
OpenVAS
added 2013/07/10 12:0 a.m.50 views

Microsoft .NET Framework Multiple Vulnerabilities (2861561)

This host is missing an important security update according to Microsoft Bulletin MS13-052. OpenVAS Vulnerability Test $Id: secpodms13-052.nasl 5555 2017-03-13 08:59:20Z cfi $ Microsoft .NET Framework Multiple Vulnerabilities 2861561 Authors: Antu Sanadi Copyright: Copyright c 2013 SecPod,...

9.3CVSS0.2AI score0.32378EPSS
Exploits0References3
seebug.org
seebug.org
added 2013/05/17 12:0 a.m.40 views

Microsoft Windows 'Win32k.sys' 本地权限提升漏洞(CVE-2013-1333)(MS13-046)

BUGTRAQ ID: 59749 CVECAN ID: CVE-2013-1333 Microsoft Windows是微软公司推出的一系列操作系统。 如果 Windows 内核模式驱动程序不正确地处理内存中的对象,则存在一个特权提升漏洞。成功利用此漏洞的攻击者可能导致系统不稳定。 0 Microsoft Windows XP Microsoft Windows Windows Server 2012 Microsoft Windows Windows RT Microsoft Windows Vista Microsoft Windows Server 2008 Microsoft...

7.2CVSS6.4AI score0.02145EPSS
Exploits1
Microsoft KB
Microsoft KB
added 2013/05/14 12:0 a.m.33 views

MS13-041: Vulnerability in Lync could allow remote code execution: May 14, 2013

Resolves a vulnerability in Microsoft Office that could allow remote code execution if a user opens a specially crafted file or previews a specially crafted email message in an affected version of Microsoft Office software.INTRODUCTIONMicrosoft has released security bulletin MS13-041. To view the...

9.3CVSS6.6AI score0.2191EPSS
Exploits1
seebug.org
seebug.org
added 2013/04/11 12:0 a.m.67 views

Microsoft Windows Kernel本地权限提升漏洞(CVE-2013-1294)(MS13-031)

BUGTRAQ ID: 58862 CVECAN ID: CVE-2013-1294 Microsoft Windows是微软公司推出的一系列操作系统。 如果 Windows 内核不正确地处理内存中的对象,则存在一个特权提升漏洞。成功利用此漏洞的攻击者可以获得更高的特权和读取任意多次内核内存。 0 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows Server 2008 Microsoft Windows Server 2003 Microsoft Windows 8 Microsoft Windows 7...

4.9CVSS6.4AI score0.01064EPSS
Exploits1
seebug.org
seebug.org
added 2013/01/10 12:0 a.m.90 views

Microsoft Windows 本地权限提升漏洞(MS13-005/CVE-2013-0008)

Bugtraq ID:57135 CVE ID: CVE-2013-0008 Microsoft Windows是一款流行的操作系统 Microsoft内核win32k.sys不正确处理window广播消息,允许本地用户利用漏洞提升权限 0 Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows RT Microsoft Windows Server 2008 Microsoft Windows Server 2012 Microsoft Windows Vista 厂商解决方案...

7.2CVSS6.3AI score0.17089EPSS
Exploits10
Microsoft KB
Microsoft KB
added 2012/10/09 12:0 a.m.43 views

MS12-070: Description of the security update for SQL Server 2012 QFE: October 9, 2012

None None...

6.1AI score
Exploits0
seebug.org
seebug.org
added 2012/07/11 12:0 a.m.45 views

Microsoft SharePoint 跨站脚本漏洞(CVE-2012-1863)

Bugtraq ID:54316 CVE ID:CVE-2012-1863 Microsoft SharePoint Server是一款服务器功能集成套件,提供全面的内容管理和企业搜索、加速共享业务流程并便利跨界限信息共享。 Microsoft SharePoint Server存在一个跨站脚本漏洞,允许攻击者通过URL中特制的JavaScript元素,注入任意WEB脚本或HTML,攻击者可以利用漏洞获得敏感信息或劫持用户会话。 0 Microsoft SharePoint Foundation 2010 SP1 Microsoft SharePoint Foundation 2010...

4.3CVSS6.5AI score0.2308EPSS
Exploits1
ThreatPost
ThreatPost
added 2012/07/10 7:23 p.m.120 views

Three Critical Fixes in July Microsoft Patch Tuesday

Microsoft issued nine bulletins fixing 16 vulnerabilities in the July 2012 edition of Patch Tuesday. Three of the bulletins received Microsoft’s most severe ‘critical’ rating, while the remaining six were deemed merely ‘important.’ First and foremost among the critical patches is MS12-043, a fix...

9.3CVSS3.1AI score0.99945EPSS
Exploits33References5
0day.today
0day.today
added 2012/06/16 12:0 a.m.38 views

Microsoft XML Core Services MSXML Uninitialized Memory Corruption

Exploit for windows platform in category remote exploits This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework...

7.1AI score0.83638EPSS
Exploits12
ThreatPost
ThreatPost
added 2012/06/12 5:31 p.m.12 views

Seven Bulletins in Microsoft's June Patch

In the June 2012 edition of Patch Tuesday, Microsoft shipped seven security bulletins, of which, only three were deemed worthy of a critical rating. This month’s critical fixes are all remote code execution vulnerabilities in Windows, Internet Explorer, and the .NET framework. The first, MS12-036...

2.9AI score
Exploits0References8
Microsoft KB
Microsoft KB
added 2012/06/12 12:0 a.m.68 views

MS12-036: Vulnerabilities in Remote Desktop could allow remote code execution: June 12, 2012

None None...

9.3CVSS6.1AI score0.20933EPSS
Exploits1
ThreatPost
ThreatPost
added 2012/02/14 6:49 p.m.13 views

Stratfor Subscribers Experience Phishing Attempts

Cybercriminals continue targeting customers of Stratfor, the well-known, Texas-based security and policy think-tank hacked by Anonymous on Christmas, according to a TechNet report. Social engineers have been sending malicious and fraudulent emails to Strafor subscribers since their customer...

2.1AI score
Exploits0References3
ThreatPost
ThreatPost
added 2011/11/16 4:58 p.m.20 views

Microsoft Now Using IP Address to Map Malware Infections

Microsoft has a new way of determining the geolocation of systems infected with malware, and it had subtle but relevant effects on the 11th volume of the Microsoft Security Intelligence Report. It’s a novel concept, instead of relying on an administrator-specified setting that anyone with hands a...

7AI score
Exploits0References2
rdot
rdot
added 2011/11/09 12:0 a.m.32 views

Vulnerability in TCP/IP Could Allow Remote Code Execution (2588516)

Удалённое исполнение произвольного кода. Подвержены все 32 и 64 битные версии: Windows 7 Windows Vista Server 2008 в т.ч. R2 Подробнее тут Новость нашел на хабре...

3AI score
Exploits0
OpenVAS
OpenVAS
added 2011/09/14 12:0 a.m.62 views

Microsoft SharePoint Server 2007 '_layouts/help.aspx' Cross Site Scripting Vulnerability

Microsoft SharePoint Server 2007 and SharePoint Services 3.0 are prone to a cross-site scripting vulnerability because they fail to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of...

4.3CVSS6.2AI score0.28707EPSS
Exploits1References8
seebug.org
seebug.org
added 2011/08/10 12:0 a.m.37 views

Microsoft Windows DNS Server未初始化内存远程拒绝服务漏洞

Bugtraq ID: 49019 CVE ID:CVE-2011-1970 Microsoft Windows是一款流行的操作系统。 Windows DNS服务处理一个查询不存在域的请求时存在错误,不正确处理未初始化的内存对象可导致DNS服务停止响应,造成拒绝服务攻击。 Microsoft Windows Server 2008 Standard Edition SP2 Microsoft Windows Server 2008 Standard Edition Release Candidate Microsoft Windows Server 2008 Standard Editi...

5CVSS6.2AI score0.23037EPSS
Exploits1
ThreatPost
ThreatPost
added 2011/06/14 8:16 p.m.10 views

Microsoft Ships 16 Fixes in June's Patch Tuesday

Microsoft patched nine critical vulnerabilities and seven important vulnerabilities, pushing out a total of 16 patches in the June edition of Patch Tuesday. One of the bugs patched was used to compromise Internet Explorer during the Pwn2Own contest this year. Four of the critical vulnerabilities...

1.1AI score
Exploits0References3
CISA
CISA
added 2011/01/28 12:0 a.m.11 views

Microsoft Releases Security Advisory 2501696

Microsoft has released Microsoft security advisory 2501696 indicating that it is investigating public reports of a vulnerability affecting Windows. This vulnerability is due to the way MHTML interprets MIME-formatted requests for content blocks within a document. Exploitation of this vulnerabilit...

6.3AI score
Exploits0References3
Exploit DB
Exploit DB
added 2010/09/28 12:0 a.m.39 views

Microsoft Internet Explorer - 'Winhlp32.exe' MsgBox Code Execution (MS10-023) (Metasploit)

$Id: ms10022ievbscriptwinhlp32.rb 10504 2010-09-28 16:19:50Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

7.6CVSS7AI score0.86367EPSS
Exploits7
seebug.org
seebug.org
added 2010/06/10 12:0 a.m.59 views

Office Excel OBJ记录解析栈溢出漏洞(MS10-038)

BUGTRAQ ID: 40520 CVE ID: CVE-2010-0822 Excel是微软Office套件中的电子表格工具。 Excel在解析电子表格中的畸形OBJ(recType 0x5D)记录时存在栈溢出漏洞,用户受骗打开了畸形的Excel文档就会导致执行任意代码。 Microsoft Excel 2002 SP3 Microsoft Office 2008 for Mac Microsoft Office 2004 for Mac 临时解决方法: 不要打开从不可信任来源接收到或从可信任来源意外接收到的Excel文件。 厂商补丁: Microsoft ---------...

9.3CVSS2.4AI score0.70121EPSS
Exploits21
Rows per page
Query Builder