elevation

  1. Microsoft Security Advisory (2639658): Vulnerability in TrueType Font Parsing Could Allow Elevation

    Revision Note: V1.3 (November 8, 2011): Added link to MAPP Partners with Updated Protections in the Executive Summary. Revised impact statement for the workaround, Deny access to T2EMBED.DLL, to address a reoffer issue on Windows XP and Windows Server 2003. Also, revised the mitigating factors...
    • News
    • Thread
    • access advisory attack elevation exploitation fonts impact kernel malware mapp microsoft parsing programs protection security truetype vulnerability windows server windows xp workaround
    • Replies: 0
    • Forum: Security Alerts

  2. Microsoft Security Advisory (2639658): Vulnerability in TrueType Font Parsing Could Allow Elevation

    Revision Note: V1.0 (November 3, 2011): Advisory published. Summary: Microsoft is investigating a vulnerability in a Microsoft Windows component, the Win32k TrueType font parsing engine. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode...
    • News
    • Thread
    • advisory arbitrary attack code customer service data elevation exploitation fonts impact kernel malware microsoft revision security target truetype vulnerability win32k windows
    • Replies: 0
    • Forum: Security Alerts

  3. MS11-051: Vulnerability in Active Directory Certificate Services Web Enrollment could allow elevatio

    Resolves a vulnerability in Active Directory Certificate Services Web Enrollment that could allow elevation of privilege and enable an attacker to execute arbitrary commands on the site in the context of the target user. Link Removed
    • News
    • Thread
    • active directory arbitrary commands attack certificate services elevation ms11-051 privilege security vulnerability web enrollment
    • Replies: 0
    • Forum: Knowledge Base (KB)

  4. MS11-080 - Important : Vulnerability in Ancillary Function Driver Could Allow Elevation of Privilege

    Severity Rating: Important Revision Note: V1.0 (October 11, 2011): Bulletin published. Summary: This security update resolves a privately reported vulnerability in the Microsoft Windows Ancillary Function Driver (AFD). The vulnerability could allow elevation of privilege if...
    • News
    • Thread
    • afd attack elevation microsoft ms11-080 privilege security update vulnerability windows
    • Replies: 0
    • Forum: Security Alerts

  5. MS11-074 - Important : Vulnerabilities in Microsoft SharePoint Could Allow Elevation of Privilege (2

    Severity Rating: Important Revision Note: V1.0 (September 13, 2011): Bulletin published. Summary: This security update resolves five privately reported vulnerabilities and one publicly disclosed vulnerability in Microsoft SharePoint and Windows SharePoint Services. The most...
    • News
    • Thread
    • elevation internet explorer internet zone microsoft privilege security sharepoint update vulnerabilities xss filter
    • Replies: 0
    • Forum: Security Alerts

  6. MS11-070 - Important : Vulnerability in WINS Could Allow Elevation of Privilege (2571621) - Version:

    Severity Rating: Important Revision Note: V1.0 (September 13, 2011): Bulletin published. Summary: This security update resolves a privately reported vulnerability in the Windows Internet Name Service (WINS). The vulnerability could allow elevation of privilege if a user...
    • News
    • Thread
    • attack bulletin credentials elevation internet local access ms11-070 patch patch management privileged access revision risk security services update vulnerability windows wins
    • Replies: 0
    • Forum: Security Alerts

  7. Microsoft Security Advisory (979682): Vulnerability in Windows Kernel Could Allow Elevation of Privi

    Revision Note: V2.0 (February 9, 2010): Advisory updated to reflect publication of security bulletin. Summary: Microsoft has completed the investigation into a public report of this vulnerability. We have issued MS10-015 to address this issue. For more information about this issue...
    • News
    • Thread
    • advisory cve-2010-0232 elevation kernel microsoft security security bulletin update vulnerability windows
    • Replies: 0
    • Forum: Security Alerts

  8. Microsoft Security Advisory (983438): Vulnerability in Microsoft SharePoint Could Allow Elevation of

    Revision Note: V2.0 (June 8, 2010): Advisory updated to reflect publication of security bulletin. Summary: Microsoft has completed the investigation into a public report of this vulnerability. We have issued MS10-039 to address this issue. For more information about this issue...
    • News
    • Thread
    • advisory cve-2010-0817 elevation microsoft ms10-039 security sharepoint update vulnerability xss
    • Replies: 0
    • Forum: Security Alerts

  9. Microsoft Security Advisory (2491888): Vulnerability in Microsoft Malware Protection Engine Could Al

    Revision Note: V1.1 (March 8, 2011): Revised advisory FAQ to announce updated version of the MSRT and added Forefront Security for Exchange Server to the list of non-affected software. Summary: Microsoft is releasing this security advisory to help ensure customers are aware that an...
    • News
    • Thread
    • advisory credentials elevation engine exchange local system malware microsoft privilege protection registry security server update vulnerability
    • Replies: 0
    • Forum: Security Alerts

  10. MS11-054 - Important : Vulnerabilities in Windows Kernel-Mode Drivers Could Allow Elevation of Privi

    Severity Rating: Important Revision Note: V1.0 (July 12, 2011): Bulletin published. Summary: This security update resolves 15 privately reported vulnerabilities in Microsoft Windows. The most severe of these vulnerabilities could allow elevation of privilege if an attacker...
    • News
    • Thread
    • application attack bulletin credentials drivers elevation important kernel local microsoft patch privilege security severe update vulnerabilities windows
    • Replies: 0
    • Forum: Security Alerts

  11. MS11-046 - Important : Vulnerability in Ancillary Function Driver Could Allow Elevation of Privilege

    Severity Rating: Important Revision Note: V1.1 (June 30, 2011): Corrected the Affected Software table to include MS10-058 as a bulletin replaced by this update. This is an informational change only. There were no changes to the security update files or detection logic...
    • News
    • Thread
    • ancillary drivers elevation function microsoft privilege security update vulnerability windows
    • Replies: 0
    • Forum: Security Alerts

  12. MS11-061 - Important : Vulnerability in Remote Desktop Web Access Could Allow Elevation of Privilege

    Severity Rating: Important Revision Note: V1.0 (August 9, 2011): Bulletin published. Summary: This security update resolves a privately reported vulnerability in Remote Desktop Web Access. The vulnerability is a cross-site scripting (XSS) vulnerability that could allow...
    • News
    • Thread
    • 2011 bulletin elevation internet explorer remote desktop security update vulnerability web access xss
    • Replies: 0
    • Forum: Security Alerts

  13. MS11-056 - Important : Vulnerabilities in Windows Client/Server Run-time Subsystem Could Allow Eleva

    Severity Rating: Important Revision Note: V1.1 (July 21, 2011): Added a link to Microsoft Knowledge Base Article 2507938 under Known Issues in the Executive Summary. Summary: This security update resolves five privately reported vulnerabilities in the Microsoft Windows...
    • News
    • Thread
    • csrss elevation important knowledge base microsoft privilege security update vulnerabilities windows
    • Replies: 0
    • Forum: Security Alerts

  14. MS11-062 - Important : Vulnerability in Remote Access Service NDISTAPI Driver Could Allow Elevation

    Severity Rating: Important Revision Note: V1.0 (August 9, 2011): Bulletin published. Summary: This security update resolves a privately reported vulnerability in all supported editions of Windows XP and Windows Server 2003. This security update is rated Important for all...
    • News
    • Thread
    • attack control credentials elevation exploit ndis privileged access remote access security update vulnerability windows 2003 windows xp
    • Replies: 0
    • Forum: Security Alerts

  15. MS11-063 - Important : Vulnerability in Windows Client/Server Run-time Subsystem Could Allow Elevati

    Severity Rating: Important Revision Note: V1.1 (August 17, 2011): Corrected the hyperlink for CVE-2011-1967. Summary: This security update resolves a privately reported vulnerability in Microsoft Windows. The vulnerability could allow elevation of privilege if an attacker...
    • News
    • Thread
    • client-server cve-2011-1967 elevation important ms11-063 privilege security update vulnerability windows
    • Replies: 0
    • Forum: Security Alerts

  16. MS11-062 - Important: Vulnerability in Remote Access Service NDISTAPI Driver Could Allow Elevation o

    Severity Rating: Important - Revision Note: V1.0 (August 9, 2011): Bulletin published.Summary: This security update resolves a privately reported vulnerability in all supported editions of Windows XP and Windows Server 2003. This security update is rated Important for all supported editions of...
    • News
    • Thread
    • critical update elevation extended security updates remote access vulnerability windows 2003 windows 7 windows server windows vista windows xp
    • Replies: 0
    • Forum: Security Alerts

  17. MS11-063 - Important: Vulnerability in Windows Client/Server Run-time Subsystem Could Allow Elevatio

    Severity Rating: Important - Revision Note: V1.0 (August 9, 2011): Bulletin published.Summary: This security update resolves a privately reported vulnerability in Microsoft Windows. The vulnerability could allow elevation of privilege if an attacker logs on to an affected system and runs a...
    • News
    • Thread
    • attack bulletin elevation important ms11-063 privilege security update vulnerability windows
    • Replies: 0
    • Forum: Security Alerts

  18. MS11-063 - Important: Vulnerability in Windows Client/Server Run-time Subsystem Could Allow Elevatio

    Bulletin Severity Rating:Important - This security update resolves a privately reported vulnerability in Microsoft Windows. The vulnerability could allow elevation of privilege if an attacker logs on to an affected system and runs a specially crafted application designed to send a device event...
    • News
    • Thread
    • attacker bulletin credentials elevation ms11-063 privilege security update vulnerability windows
    • Replies: 0
    • Forum: Security Alerts

  19. MS11-062 - Important: Vulnerability in Remote Access Service NDISTAPI Driver Could Allow Elevation o

    Bulletin Severity Rating:Important - This security update resolves a privately reported vulnerability in all supported editions of Windows XP and Windows Server 2003. This security update is rated Important for all supported editions of Windows XP and Windows Server 2003. Windows Vista, Windows...
    • News
    • Thread
    • elevation extended security updates important remote access vulnerability windows server windows xp
    • Replies: 0
    • Forum: Security Alerts

  20. MS11-063: Vulnerability in Windows Client/Server Run-time subsystem could allow elevation of privile

    Resolves a vulnerability in Windows that could allow elevation of privilege if an attacker logs on to an affected system and runs a specially crafted application that is designed to send a device event message to a higher-integrity process. More...
    • News
    • Thread
    • attack client-server elevation integrity ms11-063 privilege security subsystem vulnerability windows
    • Replies: 0
    • Forum: Knowledge Base (KB)