Windows 7@* Security Vulnerabilities and Issues — Page 9 of Windows 7@* CVE List

Lucene search

MicrosoftWindows 7*

420 matches found

CVE•added 2012/07/10 9:55 p.m.•47 views

CVE-2012-1893

win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 does not properly validate callback parameters during creation of a hook procedure, which allows local users to ...

7.2CVSS6.4AI score0.00427EPSS

CVE•added 2013/02/13 12:4 p.m.•47 views

CVE-2013-1263

Race condition in win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 allows local users to gain privileges, and consequently read the contents of arbitrary kernel ...

4.9CVSS6.3AI score0.00434EPSS

CVE•added 2013/02/13 12:4 p.m.•46 views

CVE-2013-0076

The Client/Server Run-time Subsystem (CSRSS) in Microsoft Windows Server 2008 R2 and R2 SP1 and Windows 7 Gold and SP1 does not properly handle objects in memory, which allows local users to gain privileges via a crafted application, aka "Reference Count Vulnerability."

7.2CVSS6.4AI score0.008EPSS

CVE•added 2013/02/13 12:4 p.m.•46 views

CVE-2013-1254

4.9CVSS6.4AI score0.00434EPSS

CVE•added 2013/02/13 12:4 p.m.•46 views

CVE-2013-1280

The kernel in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, Windows 7 Gold and SP1, Windows 8, Windows Server 2012, and Windows RT does not properly handle objects in memory, which allows local users to gain privileges via a c...

7.2CVSS6.4AI score0.008EPSS

CVE•added 2013/07/10 3:46 a.m.•46 views

CVE-2013-3172

Buffer overflow in win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, and Windows 7 SP1 allows local users to cause a denial of service (system hang) via a crafted application that leverages impr...

4.9CVSS6.4AI score0.00248EPSS

CVE•added 2015/04/14 8:59 p.m.•46 views

CVE-2015-0098

Task Scheduler in Microsoft Windows 7 SP1 and Windows Server 2008 R2 SP1 allows local users to gain privileges by triggering application execution by an invalid task, aka "Task Scheduler Elevation of Privilege Vulnerability."

7.2CVSS6.7AI score0.00815EPSS

CVE•added 2010/11/04 7:0 p.m.•45 views

CVE-2010-4182

Untrusted search path vulnerability in the Data Access Objects (DAO) library (dao360.dll) in Microsoft Windows XP Professional SP3, Windows Server 2003 R2 Enterprise Edition SP3, Windows Vista Business SP1, and Windows 7 Professional allows local users, and possibly remote attackers, to execute arb...

9.3CVSS7.4AI score0.3316EPSS

CVE•added 2012/03/13 9:55 p.m.•45 views

CVE-2012-0156

DirectWrite in Microsoft Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 does not properly render Unicode characters, which allows remote attackers to cause a denial of service (application hang) via a (1) instant message or (2) web site, aka "DirectWrite Appl...

4.3CVSS6.6AI score0.23239EPSS

CVE•added 2012/06/12 10:55 p.m.•44 views

CVE-2012-1866

win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 does not properly handle user-mode input passed to kernel mode for driver objects, which allows local users to g...

7.2CVSS6.3AI score0.00872EPSS

CVE•added 2013/02/13 12:4 p.m.•44 views

CVE-2013-1269

4.9CVSS6.4AI score0.00434EPSS

CVE•added 2013/02/13 12:4 p.m.•44 views

CVE-2013-1276

4.9CVSS6.4AI score0.00366EPSS

CVE•added 2010/02/26 7:30 p.m.•43 views

CVE-2010-0719

An unspecified API in Microsoft Windows 2000, Windows XP, Windows Server 2003, Windows Vista, Windows Server 2008, and Windows 7 does not validate arguments, which allows local users to cause a denial of service (system crash) via a crafted application.

4.7CVSS6.4AI score0.00416EPSS

CVE•added 2013/09/11 2:3 p.m.•43 views

CVE-2013-3862

Double free vulnerability in Microsoft Windows 7 and Server 2008 R2 SP1 allows local users to gain privileges via a crafted service description that is not properly handled by services.exe in the Service Control Manager (SCM), aka "Service Control Manager Double Free Vulnerability."

6.9CVSS6.3AI score0.00461EPSS

Web

CVE•added 2011/04/06 5:55 p.m.•41 views

CVE-2011-1652

The default configuration of Microsoft Windows 7 immediately prefers a new IPv6 and DHCPv6 service over a currently used IPv4 and DHCPv4 service upon receipt of an IPv6 Router Advertisement (RA), and does not provide an option to ignore an unexpected RA, which allows remote attackers to conduct man...

5CVSS6.5AI score0.12305EPSS

CVE•added 2013/02/13 12:4 p.m.•41 views

CVE-2013-1268

4.9CVSS6.4AI score0.00445EPSS

CVE•added 2013/12/11 12:55 a.m.•41 views

CVE-2013-3902

Use-after-free vulnerability in win32k.sys in the kernel-mode drivers in Microsoft Windows Server 2008 R2 SP1 and Windows 7 SP1 on 64-bit platforms allows local users to gain privileges via a crafted application, aka "Win32k Use After Free Vulnerability."

7.2CVSS6.4AI score0.00363EPSS

CVE•added 2013/02/13 12:4 p.m.•40 views

CVE-2013-1265

7CVSS6.3AI score0.003EPSS

CVE•added 2010/12/16 7:33 p.m.•39 views

CVE-2010-3957

Double free vulnerability in the OpenType Font (OTF) driver in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, and R2, and Windows 7 allows local users to gain privileges via a crafted OpenType font, aka "OpenType Font Double Free...

7.3CVSS6.4AI score0.04043EPSS

CVE•added 2013/02/13 12:4 p.m.•36 views

CVE-2013-1270

4.9CVSS6.4AI score0.00434EPSS

Total number of security vulnerabilities420