34 matches found
EUVD-2019-9835
Malware in sbrugna...
CVE-2019-1270
An elevation of privilege vulnerability exists in Windows store installer where WindowsApps directory is vulnerable to symbolic link attack, aka 'Microsoft Windows Store Installer Elevation of Privilege Vulnerability'...
How to enable USB redirection for Citrix Receiver for Windows Store Edition
Objective This article describes how to enable USB redirection for Citrix Receiver for Windows Store Edition on Non Windows 10 S end points by installing USB redirection/monitor drivers which help in redirecting the devices, setting registry entries to set default redirection settings like allowi...
CVE-2020-1425 - Windows Codecs Library RCE
A remote code execution in Windows Codecs Library has been fixed by Microsoft with out-of-band patch on 30th June 2020. The vulnerability allows attacker to remotely execute arbitrary code, if the victim opens maliciously crafted media file. Recent assessments: busterb at July 07, 2020 6:42pm UTC...
Can't open Windows Store applications in Windows 8.1 or Windows Server 2012 R2
Can't open Windows Store applications in Windows 8.1 or Windows Server 2012 R2 This article describes an issue that occurs after certain updates are installed in Windows RT 8.1, Windows 8.1, or Windows Server 2012 R2. You can resolve this issue by applying the update in this article. Before you...
Single string is drawn by multiple fonts in the TextBox control of Windows Store application in Windows
Single string is drawn by multiple fonts in the TextBox control of Windows Store application in Windows This article describes an issue that occurs when the MS Mincho font is assigned for the TextBox control in Windows RT 8.1, Windows 8.1, or Windows Server 2012 R2. You can resolve this issue by...
"Access denied" error when you use a Windows Store app to configure printer property settings in Windows
"Access denied" error when you use a Windows Store app to configure printer property settings in Windows This article describes an issue that occurs when you use a Windows Store app in Windows 8.1, Windows RT 8.1, or Windows Server 2012 R2. An update is available to resolve this issue. Before you...
Windows 8.1 Store improvements: January 2014
Windows 8.1 Store improvements: January 2014 Summary This article describes the update rollup for Windows RT 8.1 and Windows 8.1 that is dated January 2014. This update package includes performance and reliability improvements. We recommend that you apply this update rollup as part of your regula...
July 2014 cumulative update for Windows Store in Windows 8.1 or Windows Server 2012 R2
July 2014 cumulative update for Windows Store in Windows 8.1 or Windows Server 2012 R2 Introduction This update makes improvements to Windows Store in Windows 8.1, Windows RT 8.1, and Windows Server 2012 R2. Improvements This update contains the following improvements: Apps that you have installe...
AppLocker Policy Bypass
Exploit Title: AppLocker 'Packaged App' Installation Policy Bypass Date: 2/1/20 Exploit Author: Social Engineering Neo - @EngineeringNeo Vendor Homepage: https://microsoft.com Software Link: N/A Version: Windows build 18363.535 and below. Tested on: Windows 10 build 17763.253, 18362.295, 18362.35...
CVE-2019-1270
An elevation of privilege vulnerability exists in Windows store installer where WindowsApps directory is vulnerable to symbolic link attack, aka 'Microsoft Windows Store Installer Elevation of Privilege Vulnerability'...
CVE-2019-1270
An elevation of privilege vulnerability exists in Windows store installer where WindowsApps directory is vulnerable to symbolic link attack, aka 'Microsoft Windows Store Installer Elevation of Privilege Vulnerability'...
CVE-2019-1270
An elevation of privilege vulnerability exists in Windows store installer where WindowsApps directory is vulnerable to symbolic link attack, aka 'Microsoft Windows Store Installer Elevation of Privilege Vulnerability'...
CVE-2019-1270
This CVE (CVE-2019-1270) describes an elevation-of-privilege vulnerability in the Windows Store Installer. The root cause is a symbolic-link attack on the WindowsApps directory, allowing misuse of the Windows Store Installer to escalate privileges locally. The issue is tied to the Windows Store I...
Microsoft Windows 10 - UAC Protection Bypass Via Microsoft Windows Store (WSReset.exe) and Registry (Metasploit)
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Windows 10 UAC Protection Bypass Via Windows Store WSReset.exe and Registry', 'Description' = %q This module exploits a flaw in the WSReset.exe...
Microsoft Windows 10 - UAC Protection Bypass Via Microsoft Windows Store (WSReset.exe) (Metasploit)
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Windows 10 UAC Protection Bypass Via Windows Store WSReset.exe', 'Description' = %q This module exploits a flaw in the WSReset.exe Windows Store...
KB4516044: Windows 10 Version 1607 and Windows Server 2016 September 2019 Security Update
The remote Windows host is missing security update 4516044. It is, therefore, affected by multiple vulnerabilities : - An elevation of privilege vulnerability exists in Windows Text Service Framework TSF when the TSF server process does not validate the source of input or commands it receives. An...
KB4516068: Windows 10 Version 1703 September 2019 Security Update
The remote Windows host is missing security update 4516068. It is, therefore, affected by multiple vulnerabilities : - An elevation of privilege vulnerability exists in Windows Text Service Framework TSF when the TSF server process does not validate the source of input or commands it receives. An...
KB4516058: Windows 10 Version 1803 September 2019 Security Update
The remote Windows host is missing security update 4516058. It is, therefore, affected by multiple vulnerabilities : - An elevation of privilege vulnerability exists in Windows Text Service Framework TSF when the TSF server process does not validate the source of input or commands it receives. An...
Microsoft Windows 10 UAC Protection Bypass Via Windows Store
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Windows 10 UAC Protection Bypass Via Windows Store WSReset.exe', 'Description' = %q This module exploits a flaw in the WSReset.exe Windows Store...