11 matches found
CVE-2026-32071
Null pointer dereference in Windows Local Security Authority Subsystem Service LSASS allows an unauthorized attacker to deny service over a network...
CVE-2026-20854
CVE-2026-20854 is a Windows Local Security Authority Subsystem Service (LSASS) use-after-free vulnerability that would allow an authenticated attacker to execute code remotely over the network. The primary public details come from Microsoft update guidance and vulnerability trackers, which identi...
CVE-2026-20875
CVE-2026-20875 is a null pointer dereference in Windows Local Security Authority Subsystem Service (LSASS) that enables a network-based denial of service. The vulnerability is documented with a CVSS v3.1 base score of 7.5 (Network, Low complexity, No privileges, No user interaction; impact: Avail...
PoC
PoC exploit for MS-16-137, LSASS Remote Null Ptr Deref. The target product/service is Windows LSASS Local Security Authority Subsystem Service. The vulnerability class/vector is a remote code execution vulnerability, specifically a null pointer dereference. The probable entry point is the...
CVE-2025-53809
Improper input validation in Windows Local Security Authority Subsystem Service LSASS allows an authorized attacker to deny service over a network...
CVE-2024-49126
Windows Local Security Authority Subsystem Service LSASS Remote Code Execution Vulnerability...
CVE-2022-24487
Windows Local Security Authority Subsystem Service LSASS Remote Code Execution Vulnerability...
Microsoft Windows LSASS Length Validation Local Privilege Escalation Vulnerability
Description Microsoft Windows LSASS is prone to a local privilege-escalation vulnerability. An attacker can exploit this issue to execute arbitrary code with SYSTEM-level privileges. Successful exploits will result in the complete compromise of affected computers. Failed exploit attempts may caus...
Integer overflow
Integer underflow in the NTLM authentication feature in the Local Security Authority Subsystem Service LSASS in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista Gold, SP1, and SP2, Windows Server 2008 Gold, SP2, and R2, and Windows 7 allows remote attackers to cause a deni...
Windows LSASS buffer overflow
Added: 04/04/2006 CVE: CVE-2003-0533 BID: 10108 OSVDB: 5248 Background The Local Security Authority Subsystem Service LSASS provides an interface for managing local security, domain authentication, and Active Directory processes. Problem A buffer overflow in the DsRolepInitializeLog function in t...
Microsoft Windows - ASN.1 LSASS.exe Remote Denial of Service (MS04-007)
Microsoft Windows - ASN.1 LSASS.exe Remote Denial of Service MS04-007 / MS04-007 Exploit LSASS.EXE Win2k Pro Remote Denial-of-Service Copyright C 2004 Christophe Devine This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as...