Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
seebugRootSSV:60891
HistoryJul 10, 2013 - 12:00 a.m.

Microsoft Windows Defender本地权限提升漏洞(CVE-2013-3154)(MS13-058)

2013-07-1000:00:00
Root
www.seebug.org
16

0.001 Low

EPSS

Percentile

23.0%

JSON

BUGTRAQ ID: 60981
CVE(CAN) ID: CVE-2013-3154

Windows Defender内置于Windows 8 和Windows RT 中,可以帮助实时保护电脑不受病毒、间谍软件和其它恶意软件的侵害。

Microsoft Windows 7 Defender在处理不正确的路径名称时存在安全漏洞,成功利用此漏洞的攻击者可以在 LocalSystem 帐户的安全上下文中执行任意代码并完全控制系统。攻击者可随后安装程序;查看、更改或删除数据;或者创建拥有完全用户权限的新帐户。攻击者必须拥有有效的登录凭据才能利用此漏洞。匿名用户无法利用此漏洞。
0
Microsoft Windows Server 2008
Microsoft Windows 7
厂商补丁:

Microsoft

Microsoft已经为此发布了一个安全公告(MS13-058)以及相应补丁:
MS13-058:Vulnerability in Windows Defender Could Allow Elevation of Privilege (2847927)
链接:http://technet.microsoft.com/security/bulletin/MS13-058

Related

cve 1
symantec 1
nessus 1
prion 1
cvelist 1
openvas 2
nvd 1
securityvulns 1
cve
cve
CVE-2013-3154
2013-07-10 03:46:10
symantec
symantec
Microsoft Windows Defender CVE-2013-3154 Local Privilege Escalation Vulnerability
2013-07-09 00:00:00
nessus
nessus
MS13-058: Vulnerability in Windows Defender Could Allow Elevation of Privilege (2847927)
2013-07-10 00:00:00
prion
prion
Improper access control
2013-07-10 03:46:00
cvelist
cvelist
CVE-2013-3154
2013-07-10 01:00:00
openvas
openvas
Microsoft Windows Defender Privilege Elevation Vulnerability (2847927)
2013-07-10 00:00:00
Microsoft Windows Defender Privilege Elevation Vulnerability (2847927)
2013-07-10 00:00:00
nvd
nvd
CVE-2013-3154
2013-07-10 03:46:10
securityvulns
securityvulns
Microsoft Windows multiple security vulnerabilities
2013-07-29 00:00:00

0.001 Low

EPSS

Percentile

23.0%

JSON
Related for SSV:60891
cve1symantec1nessus1prion1cvelist1openvas2nvd1securityvulns1