15 matches found
EUVD-2017-17540
Malware in sbrugna...
EUVD-2016-8080
Malware in sbrugna...
EUVD-2020-2200
Malware in sbrugna...
EUVD-2017-17516
Malware in sbrugna...
CVE-2025-49687 Windows Input Method Editor (IME) Elevation of Privilege Vulnerability
...
CVE-2025-47972 Windows Input Method Editor (IME) Elevation of Privilege Vulnerability
...
CVE-2020-0707
An elevation of privilege vulnerability exists when the Windows IME improperly handles memory.To exploit this vulnerability, an attacker would first have to gain execution on the victim system, aka 'Windows IME Elevation of Privilege Vulnerability'...
CVE-2020-0707
An elevation of privilege vulnerability exists when the Windows IME improperly handles memory.To exploit this vulnerability, an attacker would first have to gain execution on the victim system, aka 'Windows IME Elevation of Privilege Vulnerability'...
Privilege escalation
An elevation of privilege vulnerability exists when the Windows IME improperly handles memory.To exploit this vulnerability, an attacker would first have to gain execution on the victim system, aka 'Windows IME Elevation of Privilege Vulnerability'...
CVE-2017-8591
Windows Input Method Editor IME in Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allows an remote code execution vulnerability when it fails to properly handle objects in memory, aka "Windows IME Remote Code Execution...
KLA11087 Multiple vulnerabilities in Microsoft Windows
Multiple vulnerabilities were found in Microsoft Windows. Malicious users can exploit these vulnerabilities to gain privileges, execute arbitrary code, cause denial of service, obtain sensitive information. Below is a complete list of vulnerabilities: 1. An elevation of privilege vulnerability in...
CVE-2016-7221
Input Method Editor IME in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, and 1607, and Windows Server 2016 mishandles DLL loading, which allows local users to gain privileges via...
CVE-2016-7221
CVE-2016-7221 is a Windows IME DLL-loading privilege-escalation issue. The IME loads DLLs via a registry-controlled mechanism and can be exploited by a locally authenticated user to gain higher privileges when an application initiates the IME. Public writeups (e.g., JVN/JVND) describe the exploit...
Microsoft Windows IME Elevation of Privilege Vulnerability
Microsoft Windows is a series of operating systems released by the American company Microsoft. An elevation of privilege vulnerability exists in Windows when the Windows Input Method Editor IME incorrectly handles DLL loading. If the IME is not present, there is no impact. A local, authenticated...
New Trojan Disguised as Windows IME
There’s a new attack technique in use right now that enables attackers to inject Trojan code onto victims’ machines by disguising it as a Windows input method editor IME. The technique is a twist on the classic attack vector of making malicious code look like something benign. In this case, the...