A Deep Dive into the GetProcessHandleFromHwnd API

Posted by James Forshaw In my previous blog post I mentioned the GetProcessHandleFromHwnd API. This was an API I didn’t know existed until I found a publicly disclosed UAC bypass using the Quick Assist UI Access application. This API looked interesting so I thought I should take a closer look. I...

Microsoft Windows Kernel-Mode Drivers Privilege Escalation Vulnerability (2913602)

This host is missing an important security update according to Microsoft Bulletin MS14-003 OpenVAS Vulnerability Test $Id: secpodms14-003.nasl 34348 2014-01-15 08:49:46Z jan$ Microsoft Windows Kernel-Mode Drivers Privilege Escalation Vulnerability 2913602 Authors: Antu Sanadi Copyright: Copyright...

Sandbox Escape: Win32k Window Handle Vulnerability (EoP)

This bug was disclosed directly to Microsoft. http://technet.microsoft.com/en-us/security/bulletin/ms14-003...

CVE-2013-1334

win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows Server 2012, and Windows RT does not properly handle objects in memory, which allows local users to gain...

Code injection

Unspecified vulnerability in the Deployment component in Oracle Java SE and Java for Business 6 Update 21 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. NOTE: the previous information was obtained from the January 2011 CPU. Oracle has not...

Oracle Java ActiveX Plugin Uninitialized Window Handle Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Oracle's Java platform that utilize the ActiveX Plugin. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The...