Lucene search
+L

36 matches found

Prion
Prion
added 2012/05/09 12:55 a.m.23 views

Design/Logic Flaw

win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, Windows 7 Gold and SP1, and Windows 8 Consumer Preview does not properly handle user-mode input passed to kernel mode for 1 windows and 2...

7.2CVSS6.7AI score0.01263EPSS
Exploits1References5Affected Software2
Cvelist
Cvelist
added 2012/05/09 12:0 a.m.28 views

CVE-2012-0180

win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, Windows 7 Gold and SP1, and Windows 8 Consumer Preview does not properly handle user-mode input passed to kernel mode for 1 windows and 2...

6.2AI score0.01263EPSS
Exploits1References5
Cvelist
Cvelist
added 2012/05/09 12:0 a.m.35 views

CVE-2012-1848

win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, Windows 7 Gold and SP1, and Windows 8 Consumer Preview does not properly handle user-mode input passed to kernel mode, which allows local...

6.1AI score0.01899EPSS
Exploits1References5
CVE
CVE
added 2012/05/09 12:0 a.m.117 views

CVE-2012-0180

CVE-2012-0180 affects win32k.sys in multiple Windows releases (XP SP2/SP3, Server 2003 SP2, Vista SP2, Server 2008 SP2/R2, Windows 7 SP1, Windows 8 CP). The issue is improper handling of user-mode input in kernel-mode for windows and messages, enabling local privilege escalation via a crafted app...

7.8CVSS6.2AI score0.01263EPSS
Exploits1References5Affected Software5
NVD
NVD
added 2012/02/14 10:55 p.m.28 views

CVE-2012-0149

afd.sys in the Ancillary Function Driver in Microsoft Windows Server 2003 SP2 does not properly validate user-mode input passed to kernel mode, which allows local users to gain privileges via a crafted application, aka "Ancillary Function Driver Elevation of Privilege Vulnerability."...

7.2CVSS6.3AI score0.01585EPSS
Exploits0References3
Prion
Prion
added 2012/02/14 10:55 p.m.25 views

Privilege escalation

afd.sys in the Ancillary Function Driver in Microsoft Windows XP SP2, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 on 64-bit platforms does not properly validate user-mode input passed to kernel mode, which allows local users to...

7.2CVSS6.8AI score0.0166EPSS
Exploits0References3Affected Software2
NVD
NVD
added 2011/06/16 8:55 p.m.33 views

CVE-2011-1249

The Ancillary Function Driver AFD in afd.sys in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 does not properly validate user-mode input, which allows local users to gain privileges v...

7.2CVSS6.3AI score0.08488EPSS
Exploits5References3
NVD
NVD
added 2011/02/09 1:0 a.m.20 views

CVE-2011-0089

win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, and R2, and Windows 7 does not properly validate user-mode input, which allows local users to gain privileges via a crafted application, ak...

7.2CVSS6.3AI score0.01676EPSS
Exploits0References6
Cvelist
Cvelist
added 2011/02/09 12:0 a.m.29 views

CVE-2011-0088

win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, and R2, and Windows 7 does not properly validate user-mode input, which allows local users to gain privileges via a crafted application, ak...

6.2AI score0.01831EPSS
Exploits0References6
Cvelist
Cvelist
added 2011/02/09 12:0 a.m.27 views

CVE-2011-0089

win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, and R2, and Windows 7 does not properly validate user-mode input, which allows local users to gain privileges via a crafted application, ak...

6.3AI score0.01676EPSS
Exploits0References6
Prion
Prion
added 2010/12/16 7:33 p.m.21 views

Memory corruption

win32k.sys in the kernel-mode drivers in Microsoft Windows Server 2008 R2 and Windows 7 does not properly validate user-mode input, which allows local users to gain privileges via a crafted application, aka "Win32k Memory Corruption Vulnerability."...

7.2CVSS6.7AI score0.03764EPSS
Exploits6References4Affected Software1
Cvelist
Cvelist
added 2010/12/16 7:0 p.m.37 views

CVE-2010-3944

win32k.sys in the kernel-mode drivers in Microsoft Windows Server 2008 R2 and Windows 7 does not properly validate user-mode input, which allows local users to gain privileges via a crafted application, aka "Win32k Memory Corruption Vulnerability."...

6.2AI score0.03764EPSS
Exploits6References4
Prion
Prion
added 2010/08/11 6:47 p.m.23 views

Input validation

The Windows kernel-mode drivers in win32k.sys in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, and Windows Server 2008 Gold and SP2 do not properly validate user-mode input passed to kernel mode, which allows local users to gain privileges via a crafted...

7.2CVSS6.7AI score0.01418EPSS
Exploits1References3Affected Software3
CVE
CVE
added 2010/08/11 6:0 p.m.71 views

CVE-2010-1896

CVE-2010-1896 corresponds to Win32k User Input Validation Vulnerability. Affected software includes Windows XP SP2/SP3, Windows Server 2003 SP2, Windows Vista SP1/SP2, and Windows Server 2008 (Gold/SP2). The flaw is in win32k.sys where user-mode input is not properly validated before kernel-mode ...

8.4CVSS6.2AI score0.01418EPSS
Exploits1References3Affected Software5
Prion
Prion
added 2009/06/10 6:30 p.m.25 views

Design/Logic Flaw

The kernel in Microsoft Windows 2000 SP4, XP SP2 and SP3, and Server 2003 SP2 does not properly validate the user-mode input associated with the editing of an unspecified desktop parameter, which allows local users to gain privileges via a crafted application, aka "Windows Desktop Parameter Edit...

7.2CVSS6.7AI score0.01438EPSS
Exploits1References7Affected Software1
NVD
NVD
added 2007/11/14 1:46 a.m.31 views

CVE-2007-5667

NWFILTER.SYS in Novell Client 4.91 SP 1 through SP 4 for Windows 2000, XP, and Server 2003 makes the .\nwfilter device available for arbitrary user-mode input via METHODNEITHER IOCTLs, which allows local users to gain privileges by passing a kernel address as an argument and overwriting kernel...

7.2CVSS6.5AI score0.00366EPSS
Exploits1References8
Rows per page
Query Builder