Navigation section

attacker

  1. News

    MS11-030: Vulnerability in DNS Resolution could allow remote code execution: April 12, 2011

    Resolves a vulnerability in Windows DNS resolution that could allow remote code execution if an attacker gained access to the network and then created a custom program to send specially crafted LLMNR broadcast queries to the target systems. More...
    • News
    • Thread
    • 2011 attacker dns llmnr network remote code execution security update vulnerability windows
    • Replies: 0
    • Forum: Knowledge Base (KB)
  2. News

    MS12-009: Vulnerabilities in Ancillary Function driver could allow elevation of privilege: February

    Resolves vulnerabilities in Microsoft Windows that could allow elevation of privilege if an attacker logs on to a user's system and runs a specially crafted application. More...
    • News
    • Thread
    • ancillary attacker drivers microsoft patch privilege security update vulnerabilities windows
    • Replies: 0
    • Forum: Knowledge Base (KB)
  3. News

    MS12-009 - Important : Vulnerabilities in Ancillary Function Driver Could Allow Elevation of Privile

    Severity Rating: Important Revision Note: V1.0 (February 14, 2012): Bulletin published. Summary: This security update resolves two privately reported vulnerabilities in Microsoft Windows. The vulnerabilities could allow elevation of privilege if an attacker logs on to a...
    • News
    • Thread
    • attacker bulletin elevation february ms12-009 privilege security update vulnerabilities windows
    • Replies: 0
    • Forum: Security Alerts
  4. News

    MS11-100 - Critical : Vulnerabilities in .NET Framework Could Allow Elevation of Privilege (2638420)

    Severity Rating: Critical Revision Note: V1.1 (December 30, 2011): Added entry to the Update FAQ to address security-related changes to functionality contained in this update and added mitigation for CVE-2011-3414 Summary: This security update resolves one publicly...
    • News
    • Thread
    • asp.net attacker critical cve-2011-3414 elevation exploit extended security updates ms11-100 net framework vulnerabilities
    • Replies: 0
    • Forum: Security Alerts
  5. News

    MS10-020: Vulnerabilities in SMB client could allow remote code execution

    Resolves vulnerabilities in Microsoft Windows that could allow remote code execution if an attacker sent a specially crafted SMB response to a client-initiated SMB request. More...
    • News
    • Thread
    • attacker client microsoft remote code execution response security patch smb update vulnerability windows
    • Replies: 0
    • Forum: Knowledge Base (KB)
  6. News

    MS11-019 - Critical : Vulnerabilities in SMB Client Could Allow Remote Code Execution (2511455) - Ve

    Severity Rating: Critical Revision Note: V1.1 (April 13, 2011): Clarified the vulnerability description in the Executive Summary. Summary: This security update resolves one publicly disclosed vulnerability and one privately reported vulnerability in Microsoft Windows. The...
    • News
    • Thread
    • attacker connection critical update extended security updates microsoft ms11-024 remote code execution response smb client vulnerabilities
    • Replies: 0
    • Forum: Security Alerts
  7. News

    MS11-051 - Important : Vulnerability in Active Directory Certificate Services Web Enrollment Could A

    Severity Rating: Important Revision Note: V1.1 (June 15, 2011): Clarified the XSS Filter mitigation. Summary: This security update resolves a privately reported vulnerability in Active Directory Certificate Services Web Enrollment. The vulnerability is a cross-site...
    • News
    • Thread
    • active directory attacker certificate services extended security updates malware privilege escalation security vulnerability web enrollment xss
    • Replies: 0
    • Forum: Security Alerts
  8. News

    MS11-053 - Critical : Vulnerability in Bluetooth Stack Could Allow Remote Code Execution (2566220) -

    Severity Rating: Critical Revision Note: V1.0 (July 12, 2011): Bulletin published. Summary: This security update resolves a privately reported vulnerability in the Windows Bluetooth Stack. The vulnerability could allow remote code execution if an attacker sent a series of...
    • News
    • Thread
    • attacker bluetooth critical data security extended security updates patch remote code execution system vulnerability windows
    • Replies: 0
    • Forum: Security Alerts
  9. News

    MS11-059 - Important: Vulnerability in Data Access Components Could Allow Remote Code Execution (256

    Severity Rating: Important - Revision Note: V1.0 (August 9, 2011): Bulletin published.Summary: This security update resolves a privately reported vulnerability in Microsoft Windows. The vulnerability could allow remote code execution if a user opens a legitimate Excel file (such as a .xlsx file)...
    • News
    • Thread
    • 2011 access attacker bulletin components data directory excel execution impact microsoft network privately remote security severity rating update user rights vulnerability windows
    • Replies: 0
    • Forum: Security Alerts
  10. News

    MS11-067 - Important: Vulnerability in Microsoft Report Viewer Could Allow Information Disclosure (2

    Severity Rating: Important - Revision Note: V1.0 (August 9, 2011): Bulletin published.Summary: This security update resolves a privately reported vulnerability in Microsoft Report Viewer. The vulnerability could allow information disclosure if a user views a specially crafted Web page. In all...
    • News
    • Thread
    • attacker email important information disclosure microsoft report viewer security update vulnerability webpage
    • Replies: 0
    • Forum: Security Alerts
  11. News

    MS11-063 - Important: Vulnerability in Windows Client/Server Run-time Subsystem Could Allow Elevatio

    Bulletin Severity Rating:Important - This security update resolves a privately reported vulnerability in Microsoft Windows. The vulnerability could allow elevation of privilege if an attacker logs on to an affected system and runs a specially crafted application designed to send a device event...
    • News
    • Thread
    • attacker bulletin credentials elevation ms11-063 privilege security update vulnerability windows
    • Replies: 0
    • Forum: Security Alerts
  12. JMH

    Windows 7 Plug and Prey: Malicious USB Devices

    Plug and Prey: Malicious USB Devices
    • JMH
    • Thread
    • attacker categories detection human practices linux malicious usb mitigation security threats windows
    • Replies: 0
    • Forum: Windows Security
  13. News

    MS11-011: Vulnerabilities in Windows Kernel could allow elevation of privilege

    Resolves vulnerabilities in Windows that could allow elevation of privilege if an attacker logged on locally and ran a specially crafted application. More...
    • News
    • Thread
    • application attacker kernel privilege security update vulnerabilities windows
    • Replies: 0
    • Forum: Knowledge Base (KB)
  14. News

    MS11-054 - Important: Vulnerabilities in Windows Kernel-Mode Drivers Could Allow Elevation of Privil

    Severity Rating: Important - Revision Note: V1.0 (July 12, 2011): Bulletin published.Summary: This security update resolves 15 privately reported vulnerabilities in Microsoft Windows. The most severe of these vulnerabilities could allow elevation of privilege if an attacker logged on locally and...
    • News
    • Thread
    • attacker bulletin drivers elevation exploitation important kernel-mode local logon microsoft privilege security update vulnerabilities windows
    • Replies: 0
    • Forum: Security Alerts
  15. News

    MS11-056 - Important: Vulnerabilities in Windows Client/Server Run-time Subsystem Could Allow Elevat

    Severity Rating: Important - Revision Note: V1.0 (July 12, 2011): Bulletin published.Summary: This security update resolves five privately reported vulnerabilities in the Microsoft Windows Client/Server Run-time Subsystem (CSRSS). The vulnerabilities could allow elevation of privilege if an...
    • News
    • Thread
    • attacker bulletin csrss elevation important privilege security update vulnerabilities windows
    • Replies: 0
    • Forum: Security Alerts
  16. News

    MS11-053 - Critical: Vulnerability in Bluetooth Stack Could Allow Remote Code Execution (2566220)

    Bulletin Severity Rating:Critical - This security update resolves a privately reported vulnerability in the Windows Bluetooth Stack. The vulnerability could allow remote code execution if an attacker sent a series of specially crafted Bluetooth packets to an affected system. An attacker could...
    • News
    • Thread
    • attacker bluetooth critical data access remote code execution security stack update vulnerability windows
    • Replies: 0
    • Forum: Security Alerts
  17. News

    MS11-037 - Important: Vulnerability in MHTML Could Allow Information Disclosure (2544893)

    Bulletin Severity Rating:Important - This security update resolves a publicly disclosed vulnerability in the MHTML protocol handler in Microsoft Windows. The vulnerability could allow information disclosure if a user opens a specially crafted URL from an attacker's web site. An attacker would...
    • News
    • Thread
    • attacker email information disclosure mhtml ms11-037 patch security update vulnerability windows
    • Replies: 0
    • Forum: Security Alerts
  18. News

    MS11-042 - Critical: Vulnerabilities in Distributed File System Could Allow Remote Code Execution (2

    Bulletin Severity Rating:Critical - This security update resolves two privately reported vulnerabilities in the Microsoft Distributed File System (DFS). The more severe of these vulnerabilities could allow remote code execution when an attacker sends a specially crafted DFS response to a...
    • News
    • Thread
    • attacker best practices dfs distributed file system firewall microsoft ms11-042 remote code execution security vulnerabilities
    • Replies: 0
    • Forum: Security Alerts
  19. News

    MS11-047 - Important: Vulnerability in Hyper-V Could Allow Denial of Service (2525835)

    Bulletin Severity Rating:Important - This security update resolves a privately reported vulnerability in Windows Server 2008 Hyper-V and Windows Server 2008 R2 Hyper-V. The vulnerability could allow denial of service if a specially crafted packet is sent to the VMBus by an authenticated user in...
    • News
    • Thread
    • attacker bulletin credentials denial of service hyper-v security update virtual machine vulnerability windows server
    • Replies: 0
    • Forum: Security Alerts
  20. News

    MS11-034 - Important: Vulnerabilities in Windows Kernel-Mode Drivers Could Allow Elevation of Privil

    Severity Rating: Important - Revision Note: V1.0 (April 12, 2011): Bulletin published.Summary: This security update resolves thirty privately reported vulnerabilities in Microsoft Windows. The vulnerabilities could allow elevation of privilege if an attacker logged on locally and ran a specially...
    • News
    • Thread
    • 2011 attacker credentials drivers elevation important kernel-mode local access microsoft patch privilege security update vulnerabilities windows
    • Replies: 0
    • Forum: Security Alerts
Back
Top