Lucene search
K

3878 matches found

CNVD
CNVD
added 2016/12/14 12:0 a.m.3 views

Microsoft Windows Kernel Local Information Disclosure Vulnerability (CNVD-2016-12418)

Microsoft Windows is a series of operating systems released by the American company Microsoft. An information disclosure vulnerability exists in Microsoft Windows 10 and Windows Server 2016 that stems from a program's failure to properly handle page-specific error system calls. An attacker could...

5.5CVSS6AI score0.02712EPSS
Exploits0References1
CNVD
CNVD
added 2016/12/14 12:0 a.m.6 views

Microsoft Windows Kernel 'Win32k.sys' local elevation of privilege vulnerability (CNVD-2016-12463)

Microsoft Windows is a series of operating systems released by the American company Microsoft. A local elevation of privilege vulnerability exists in the Microsoft Windows Kernel 'Win32k.sys'. An attacker could exploit this vulnerability to run arbitrary code in kernel mode...

7.8CVSS7.2AI score0.01561EPSS
Exploits0References1
Microsoft KB
Microsoft KB
added 2016/12/13 12:0 a.m.41 views

MS16-152: Security update for Windows kernel: December 13, 2016

This security update resolves a vulnerability in Windows that could allow information disclosure when the Windows kernel improperly handles objects in memory. It addresses the vulnerability by correcting how the Windows kernel handles objects in memory.SummaryThe security update resolves a...

5.5CVSS5.3AI score0.02712EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2016/12/08 12:0 a.m.5 views

The vulnerability of the Windows operating system, which allows a hacker to increase their privileges

The vulnerability of the Windows operating system’s kernel mode driver is related to deficiencies in access control. Exploiting this vulnerability can allow a malicious actor, operating locally, to enhance their privileges through a specially created application...

7.2CVSS7.3AI score0.03019EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2016/12/08 12:0 a.m.7 views

The vulnerability of the Windows operating system, which allows a hacker to increase their privileges

The vulnerability of the Windows operating system’s kernel mode driver is related to deficiencies in access control. Exploiting this vulnerability can allow a malicious actor, operating locally, to enhance their privileges through a specially created application...

7.2CVSS7.2AI score0.80968EPSS
Exploits24References4
ThreatPost
ThreatPost
added 2016/11/30 4:10 p.m.9 views

Microsoft Silently Fixes Kernel Bug That Led to Chrome Sandbox Bypass

Microsoft appears to have silently fixed a two-year-old bug in in Windows Kernel Object Manager that could have allowed for the bypass of privileges in Google’s Chrome browser. James Forshaw, a researcher with Google’s Project Zero first reported the issue in December 2014. Microsoft responded to...

7.3AI score
Exploits0References4
exploitpack
exploitpack
added 2016/11/24 12:0 a.m.25 views

Microsoft Windows Kernel - win32k.sys NtSetWindowLongPtr Local Privilege Escalation (MS16-135) (1)

Microsoft Windows Kernel - win32k.sys NtSetWindowLongPtr Local Privilege Escalation MS16-135 1 Complete Proof of Concept: https://github.com/offensive-security/exploitdb-bin-sploits/raw/master/bin-sploits/40823.zip Presentation:...

0.5AI score
Exploits0
0day.today
0day.today
added 2016/11/16 12:0 a.m.76 views

Microsoft Windows Kernel - Registry Hive Loading 'nt!RtlEqualSid' Out-of-Bounds Read (MS

Exploit for windows platform in category dos / poc Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=874 We have encountered a Windows kernel crash in the nt!RtlEqualSid function invoked through nt!SeAccessCheck by nt!CmpCheckSecurityCellAccess while loading corrupted registry hiv...

2.1CVSS6.3AI score0.04142EPSS
Exploits1
exploitpack
exploitpack
added 2016/11/15 12:0 a.m.11 views

Microsoft Windows Kernel - Registry Hive Loading nt!RtlEqualSid Out-of-Bounds Read (MS16-138)

Microsoft Windows Kernel - Registry Hive Loading nt!RtlEqualSid Out-of-Bounds Read MS16-138 Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=874 We have encountered a Windows kernel crash in the nt!RtlEqualSid function invoked through nt!SeAccessCheck by...

7.4AI score
Exploits0
OSV
OSV
added 2016/11/10 6:59 a.m.3 views

CVE-2016-7218

Bowser.sys in the kernel-mode drivers in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, and 1607, and Windows Server 2016 allows local users to obtain sensitive information via a...

4.7CVSS5.8AI score0.03457EPSS
Exploits0References3
OSV
OSV
added 2016/11/10 6:59 a.m.3 views

CVE-2016-7216

The kernel API in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, and Windows 7 SP1 mishandles permissions, which allows local users to gain privileges via a crafted application, aka "Windows Kernel Elevation of Privilege Vulnerability."...

5.5CVSS5.8AI score0.04142EPSS
Exploits1References4
OSV
OSV
added 2016/11/10 6:59 a.m.1 views

CVE-2016-7215

The kernel-mode drivers in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, and 1607, and Windows Server 2016 allow local users to gain privileges via a crafted application, aka...

7.8CVSS5.8AI score0.03019EPSS
Exploits0References4
OSV
OSV
added 2016/11/10 6:59 a.m.1 views

CVE-2016-7214

The kernel-mode drivers in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, and 1607, and Windows Server 2016 allow local users to bypass the ASLR protection mechanism via a crafted...

3.3CVSS5.8AI score0.03781EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2016/11/10 6:16 a.m.6 views

CVE-2016-7255

The kernel-mode drivers in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, and 1607, and Windows Server 2016 allow local users to gain privileges via a crafted application, aka...

8.1AI score0.80968EPSS
Exploits24References11
0day.today
0day.today
added 2016/11/10 12:0 a.m.189 views

Microsoft Windows Kernel - win32k Denial of Service (MS16-135) Exploit

Exploit for windows platform in category dos / poc / Source: https://github.com/tinysec/public/tree/master/CVE-2016-7255 Full Proof of Concept: https://github.com/tinysec/public/tree/master/CVE-2016-7255 https://github.com/offensive-security/exploit-database-bin-sploits/raw/master/sploits/40745.z...

7.2CVSS7.8AI score0.80968EPSS
Exploits24
CNVD
CNVD
added 2016/11/09 12:0 a.m.6 views

Microsoft Win32k Elevation of Privilege Vulnerability (CNVD-2016-10936)

Microsoft Windows is a series of operating systems released by the American company Microsoft. An elevation of privilege vulnerability exists in the kernel mode driver for Microsoft Windows. An attacker could exploit this vulnerability to run arbitrary code in kernel mode...

7.8CVSS7.4AI score0.03019EPSS
Exploits0References1
CNVD
CNVD
added 2016/11/09 12:0 a.m.2 views

Microsoft Win32k Elevation of Privilege Vulnerability (CNVD-2016-10937)

Microsoft Windows is a series of operating systems released by the American company Microsoft. An elevation of privilege vulnerability exists in the kernel mode driver for Microsoft Windows. An attacker could exploit this vulnerability to run arbitrary code in kernel mode...

7.8CVSS7.4AI score0.80968EPSS
Exploits24References1
Exploit DB
Exploit DB
added 2016/11/09 12:0 a.m.98 views

Microsoft Windows Kernel - 'win32k' Denial of Service (MS16-135)

/ Source: https://github.com/tinysec/public/tree/master/CVE-2016-7255 Full Proof of Concept: https://github.com/tinysec/public/tree/master/CVE-2016-7255 https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/40745.zip Created: 2016-11-09 14:23:09 Filename: main.c Author:...

7.8CVSS7AI score0.80968EPSS
Exploits24
CNVD
CNVD
added 2016/11/09 12:0 a.m.5 views

Microsoft Win32k Information Leakage Vulnerability

Microsoft Windows is a series of operating systems released by the American company Microsoft. An information disclosure vulnerability exists in the Microsoft Windows kernel. An attacker exploits the vulnerability to retrieve the memory address of a kernel object...

3.3CVSS6.1AI score0.03781EPSS
Exploits0References1
CNVD
CNVD
added 2016/11/09 12:0 a.m.37 views

Microsoft Windows Kernel Local Privilege Elevation Vulnerability (CNVD-2016-11012)

Microsoft Windows is a series of operating systems released by Microsoft Corporation in the United States. kernel is one of the kernels. A local elevation of privilege vulnerability exists in the Microsoft Windows kernel. Due to a failure of the kernel API to properly handle privileges, a local...

5.5CVSS7AI score0.04142EPSS
Exploits1References1
Rows per page
Query Builder