attacker

  1. MS11-007 - Critical: Vulnerability in the OpenType Compact Font Format (CFF) Driver Could Allow Remo

    Bulletin Severity Rating:Critical - This security update resolves a privately reported vulnerability in the Windows OpenType Compact Font Format (CFF) driver. The vulnerability could allow remote code execution if a user views content rendered in a specially crafted CFF font. In all cases, an...
    • News
    • Thread
    • attacker cff driver critical font format opentype remote code execution security update vulnerability windows
    • Replies: 0
    • Forum: Security Alerts

  2. MS11-009 - Important: Vulnerability in JScript and VBScript Scripting Engines Could Allow Informatio

    Bulletin Severity Rating:Important - This security update resolves a privately reported vulnerability in the JScript and VBScript scripting engines. The vulnerability could allow information disclosure if a user visited a specially crafted Web site. An attacker would have no way to force users...
    • News
    • Thread
    • attacker information information disclosure jscript rapidly security update vbscript vulnerability websites
    • Replies: 0
    • Forum: Security Alerts

  3. MS10-093 - Important: Vulnerability in Windows Movie Maker Could Allow Remote Code Execution (242443

    Severity Rating: Important - Revision Note: V1.0 (December 14, 2010): Bulletin published.Summary: This security update resolves a publicly disclosed vulnerability in Windows Movie Maker. The vulnerability could allow remote code execution if an attacker convinces a user to open a legitimate...
    • News
    • Thread
    • attacker extended security updates movie maker ms10-093 network folder publicly disclosed remote code execution user education vulnerability webdav
    • Replies: 0
    • Forum: Security Alerts

  4. MS10-087 - Critical: Vulnerabilities in Microsoft Office Could Allow Remote Code Execution (2423930)

    Severity Rating: Critical - Revision Note: V1.0 (November 9, 2010): Bulletin published.Summary: This security update resolves one publicly disclosed vulnerability and four privately reported vulnerabilities in Microsoft Office. The most severe vulnerability could allow remote code execution if a...
    • News
    • Thread
    • attacker critical microsoft office remote code execution rtf security update user rights vulnerability
    • Replies: 0
    • Forum: Security Alerts

  5. MS10-075 - Critical: Vulnerability in Media Player Network Sharing Service Could Allow Remote Code E

    Severity Rating: Critical - Revision Note: V1.0 (October 12, 2010): Bulletin published.Summary: This security update resolves a privately reported vulnerability in the Microsoft Windows Media Player Network Sharing Service. The vulnerability could allow remote code execution if an attacker sent...
    • News
    • Thread
    • attacker bulletin configuration critical cve exploitation home media internet access media player microsoft network sharing patch remote code execution rtsp security subnet update vulnerability windows
    • Replies: 0
    • Forum: Security Alerts

  6. MS10-074 - Moderate: Vulnerability in Microsoft Foundation Classes Could Allow Remote Code Execution

    Bulletin Severity Rating:Moderate - This security update resolves a publicly disclosed vulnerability in the Microsoft Foundation Class (MFC) Library. The vulnerability could allow remote code execution if a user is logged on with administrative user rights and opens an application built with the...
    • News
    • Thread
    • access control admin rights attacker execution exploit extended security updates foundation information disclosure mfc library microsoft permissions remote code execution security risks severity rating software security system control update user rights vulnerability
    • Replies: 0
    • Forum: Security Alerts

  7. MS10-082 - Important: Vulnerability in Windows Media Player Could Allow Remote Code Execution (23781

    Bulletin Severity Rating:Important - This security update resolves a privately reported vulnerability in Windows Media Player. The vulnerability could allow remote code execution if Windows Media Player opened specially crafted media content hosted on a malicious Web site. An attacker who...
    • News
    • Thread
    • attacker extended security updates malicious content media player ms10-082 remote code execution severity rating system impact user rights vulnerability
    • Replies: 0
    • Forum: Security Alerts

  8. Microsoft Security Advisory (2401593): Vulnerability in Outlook Web Access Could Allow Elevation of

    Revision Note: V1.0 (September 14, 2010): Advisory published.Summary: Microsoft has completed the investigation of a publicly disclosed vulnerability in Outlook Web Access (OWA) that may affect Microsoft Exchange customers. An attacker who successfully exploited this vulnerability could hijack...
    • News
    • Thread
    • advisory attacker authentication customer impact email security exchange investigation microsoft october outlook owa risk security session hijacking vulnerability web access
    • Replies: 0
    • Forum: Security Alerts

  9. Microsoft Security Advisory (2401593): Vulnerability in Outlook Web Access Could Allow Elevation of

    Revision Note: V1.0 (September 14, 2010): Advisory published.Summary: Microsoft has completed the investigation of a publicly disclosed vulnerability in Outlook Web Access (OWA) that may affect Microsoft Exchange customers. An attacker who successfully exploited this vulnerability could hijack...
    • News
    • Thread
    • advisory attacker cybersecurity exchange exploit microsoft outlook risk security security context session hijacking vulnerability web access
    • Replies: 0
    • Forum: Security Alerts

  10. Microsoft Security Advisory (2401593): Vulnerability in Outlook Web Access Could Allow Elevation of

    Revision Note: V1.0 (September 14, 2010): Advisory published. Advisory Summary:Microsoft has completed the investigation of a publicly disclosed vulnerability in Outlook Web Access (OWA) that may affect Microsoft Exchange customers. An attacker who successfully exploited this vulnerability could...
    • News
    • Thread
    • advisory attacker exchange microsoft outlook patch security session hijacking vulnerability web access
    • Replies: 0
    • Forum: Security Alerts

  11. Microsoft Security Advisory (2401593): Vulnerability in Outlook Web Access Could Allow Elevation of

    Revision Note: V1.0 (September 14, 2010): Advisory published.Summary: Microsoft has completed the investigation of a publicly disclosed vulnerability in Outlook Web Access (OWA) that may affect Microsoft Exchange customers. An attacker who successfully exploited this vulnerability could hijack...
    • News
    • Thread
    • advisory attacker authentication exchange microsoft outlook security session hijacking vulnerability web access
    • Replies: 0
    • Forum: Security Alerts

  12. MS10-065 - Important: Vulnerabilities in Microsoft Internet Information Services (IIS) Could Allow R

    Bulletin Severity Rating:Important - This security update resolves two privately reported vulnerabilities and one publicly disclosed vulnerability in Internet Information Services (IIS). The most severe of these vulnerabilities could allow remote code execution if a client sends a specially...
    • News
    • Thread
    • attacker bulletin control execution http iis important microsoft remote security system update vulnerability
    • Replies: 0
    • Forum: Security Alerts

  13. MS10-048 - Important: Vulnerabilities in Windows Kernel-Mode Drivers Could Allow Elevation of Privil

    Severity Rating: Important - Revision Note: V1.0 (August 10, 2010): Bulletin published.Summary: This security update resolves one publicly disclosed and four privately reported vulnerabilities in the Windows kernel-mode drivers. The most severe of these vulnerabilities could allow elevation of...
    • News
    • Thread
    • attacker august bulletin drivers elevation exploitation important kernel privilege security update vulnerabilities windows
    • Replies: 0
    • Forum: Security Alerts

  14. MS10-059 - Important: Vulnerabilities in the Tracing Feature for Services Could Allow Elevation of P

    Severity Rating: Important - Revision Note: V1.0 (August 10, 2010): Bulletin published.Summary: This security update resolves one publicly disclosed vulnerability and one privately reported vulnerability in the Tracing Feature for Services. The vulnerabilities could allow elevation of privilege...
    • News
    • Thread
    • attacker elevation local logon ms10-059 privilege security services tracing update vulnerabilities
    • Replies: 0
    • Forum: Security Alerts
  15. J

    Windows 7 MS Internet Explorer VML Remote Buffer Overflow Exploit

    A remote code execution vulnerability exists in the Vector Markup Language (VML) implementation in Microsoft Windows. An attacker could exploit the vulnerability by constructing a specially crafted Web page or HTML e-mail that could potentially allow remote code execution if a user visited the...
    • josh_rain
    • Thread
    • attacker buffer overflow cybersecurity execution exploit hacking html internet explorer malware microsoft remote code execution risk securiteam security advisory system control threats vml vulnerability webpage windows
    • Replies: 1
    • Forum: Windows Security