Navigation section

exploitation

  1. News

    MS12-041: Vulnerabilities in Windows Kernel-Mode Drivers could allow elevation of privilege: June 12

    Resolves vulnerabilities in Windows that could allow elevation of privilege if an attacker logs on to a system and runs a specially crafted application. An attacker must have valid logon credentials and be able to log on locally to exploit any of these... More...
    • News
    • Thread
    • 2012 application drivers elevation exploitation june kernel-mode logon management microsoft patch privilege security support update vulnerabilities windows
    • Replies: 0
    • Forum: Knowledge Base (KB)
  2. News

    MS12-038 - Critical : Vulnerability in .NET Framework Could Allow Remote Code Execution (2706726) -

    Severity Rating: Critical Revision Note: V1.0 (June 12): Bulletin published. Summary: This security update resolves one privately reported vulnerability in the Microsoft .NET Framework. The vulnerability could allow remote code execution on a client system if a user views a...
    • News
    • Thread
    • ad content bulletin code access security compromised websites critical email links exploitation instant messenger microsoft net framework privately reported remote code execution security update severity rating user rights user-provided content vulnerability web attack web browser xaml
    • Replies: 0
    • Forum: Security Alerts
  3. News

    MS10-070: Description of the security update for the Microsoft .NET Framework 3.5.1 in Windows 7 Ser

    Resolves a vulnerability in ASP.NET that could allow information disclosure. An attacker that successfully exploited this vulnerability could read data, such as the view state, which was encrypted by the server. Link Removed
    • News
    • Thread
    • asp.net data disclosure encryption exploitation framework information microsoft security update vulnerability windows 7
    • Replies: 0
    • Forum: Knowledge Base (KB)
  4. News

    MS10-070: Description of the security update for the Microsoft .NET Framework 3.5.1 in Windows 7 and

    Resolves a vulnerability in ASP.NET that could allow information disclosure. An attacker that successfully exploited this vulnerability could read data, such as the view state, which was encrypted by the server. Link Removed
    • News
    • Thread
    • asp.net data protection exploitation framework information disclosure microsoft security update vulnerability windows 7
    • Replies: 0
    • Forum: Knowledge Base (KB)
  5. News

    MS11-015: Vulnerability in Microsoft DirectShow could allow remote code execution: March 8, 2011

    Resolves vulnerabilities in Windows Media Player and Windows Media Center that could allow remote code execution if a user opens a specially crafted Microsoft Digital Video Recording (.dvr-ms) file. More...
    • News
    • Thread
    • directshow dvr exploitation media center media player microsoft remote code execution security update vulnerability windows media
    • Replies: 0
    • Forum: Knowledge Base (KB)
  6. News

    MS10-016: Vulnerability in Windows Movie Maker could allow remote code execution

    Resolves a vulnerability in Windows Movie Maker and Microsoft Office Producer for Microsoft Office PowerPoint 2003 that could allow remote code execution if an attacker sent a specially crafted Movie Maker or Producer file. More...
    • News
    • Thread
    • attack exploitation kb975561 malware microsoft office powerpoint remote code execution security patch vulnerability windows movie maker
    • Replies: 0
    • Forum: Knowledge Base (KB)
  7. News

    MS12-032: Vulnerability in TCP/IP could allow elevation of privilege: May 8, 2012

    Resolves vulnerabilities in Microsoft Windows that could allow elevation of privilege if an attacker logs on to a system and runs a specially crafted application. More...
    • News
    • Thread
    • application attacker elevate exploitation microsoft ms12-032 patch privilege resolves risk security support tcp/ip update vulnerability windows
    • Replies: 0
    • Forum: Knowledge Base (KB)
  8. News

    MS12-030 - Important : Vulnerabilities in Microsoft Office Could Allow Remote Code Execution (266383

    Severity Rating: Important Revision Note: V1.0 (May 8, 2012): Bulletin published. Summary: This security update resolves one publicly disclosed and five privately reported vulnerabilities in Microsoft Office. The vulnerabilities could allow remote code execution if a user...
    • News
    • Thread
    • bulletin exploitation microsoft office patch remote code execution security update user rights vulnerabilities
    • Replies: 0
    • Forum: Security Alerts
  9. A

    Windows 7 Microsoft Kills Hotmail Hijack Threat

    It took Redmond 1 day to kill a threat that allowed users with a Firefox add-on (Tamper Data) to remotely reset the password of a Hotmail account and allowing them to access the outgoing HTTP request, then modify the data. Microsoft was notified April 20, 2012, applied the fix April 21...
    • Adamsappleone
    • Thread
    • cybersecurity data modification exploitation firefox fix hacking hotmail microsoft password protection remote access security tamper data threat token protection unauthorized access update vulnerability web security
    • Replies: 1
    • Forum: Windows Security
  10. News

    MS10-055: Vulnerability in Cinepak codec could allow remote code execution

    Resolves a vulnerability in the Cinepak Codec that allow remote code execution if a user opens a specially crafted media file or receive specially crafted streaming content from a Web site or any application that delivers Web content. More...
    • News
    • Thread
    • cinepak codec exploitation media files microsoft patch remote code execution security update vulnerability web content
    • Replies: 0
    • Forum: Knowledge Base (KB)
  11. News

    MS12-028 - Important : Vulnerability in Microsoft Office Could Allow Remote Code Execution (2639185)

    Severity Rating: Important Revision Note: V1.0 (April 10, 2012): Bulletin published. Summary: This security update resolves a privately reported vulnerability in Microsoft Office and Microsoft Works. The vulnerability could allow remote code execution if a user opens a...
    • News
    • Thread
    • administrative rights april 2012 exploitation microsoft office ms12-028 remote code execution security update user rights vulnerability work file
    • Replies: 0
    • Forum: Security Alerts
  12. News

    MS12-028 - Important : Vulnerability in Microsoft Office Could Allow Remote Code Execution (2639185)

    Severity Rating: Important Revision Note: V1.0 (April 10, 2012): Bulletin published. Summary: This security update resolves a privately reported vulnerability in Microsoft Office and Microsoft Works. The vulnerability could allow remote code execution if a user opens a...
    • News
    • Thread
    • bulletin exploitation important microsoft microsoft office microsoft works patch remote code execution security update update user rights vulnerability
    • Replies: 0
    • Forum: Security Alerts
  13. News

    MS12-027 - Critical : Vulnerability in Windows Common Controls Could Allow Remote Code Execution (26

    Severity Rating: Critical Revision Note: V1.0 (April 10, 2012): Bulletin published. Summary: This security update resolves a privately disclosed vulnerability in Windows common controls. The vulnerability could allow remote code execution if a user visits a website...
    • News
    • Thread
    • common controls critical cybersecurity email attachment exploitation ms12-027 remote code execution security update vulnerability windows
    • Replies: 0
    • Forum: Security Alerts
  14. News

    MS11-100 - Critical : Vulnerabilities in .NET Framework Could Allow Elevation of Privilege (2638420)

    Severity Rating: Critical Revision Note: V1.3 (February 1, 2012): Corrected registry keys and installation switches in the deployment tables for Windows Server 2003 and Windows Server 2008, and installation switches in the deployment table for Windows Vista. This is an informational...
    • News
    • Thread
    • asp.net attack command execution critical deployment elevation of privilege exploitation informational change microsoft net framework private reports public disclosure registry keys security update server 2003 server 2008 unauthorized access vulnerabilities windows vista
    • Replies: 0
    • Forum: Security Alerts
  15. News

    MS12-018 - Important : Vulnerability in Windows Kernel-Mode Drivers Could Allow Elevation of Privile

    Severity Rating: Important Revision Note: V1.0 (March 13, 2012): Bulletin published. Summary: This security update resolves a privately reported vulnerability in Microsoft Windows. The vulnerability could allow elevation of privilege if an attacker logs on to a system and...
    • News
    • Thread
    • drivers exploitation kernel march 2012 microsoft privilege security update vulnerability windows
    • Replies: 0
    • Forum: Security Alerts
  16. News

    MS12-022 - Important : Vulnerability in Expression Design Could Allow Remote Code Execution (2651018

    Severity Rating: Important Revision Note: V1.0 (March 13, 2012): Bulletin published. Summary: This security update resolves one privately reported vulnerability in Microsoft Expression Design. The vulnerability could allow remote code execution if a user opens a legitimate...
    • News
    • Thread
    • cybersecurity dll exploitation expression design file handling malware microsoft ms12-022 patch remote code execution risk assessment security threat update vulnerability webdav
    • Replies: 0
    • Forum: Security Alerts
  17. News

    MS11-093 - Important : Vulnerability in OLE Could Allow Remote Code Execution (2624667) - Version: 1

    Severity Rating: Important Revision Note: V1.0 (December 13, 2011): Bulletin published. Summary: This security update resolves a privately reported vulnerability in all supported editions of Windows XP and Windows Server 2003. This security update is rated Important for all...
    • News
    • Thread
    • attack bulletin exploitation important microsoft ole patch remote code execution security update software system security technical note threat user rights vulnerability windows 7 windows server windows server 2008 windows vista windows xp
    • Replies: 0
    • Forum: Security Alerts
  18. News

    MS12-013 - Critical : Vulnerability in C Run-Time Library Could Allow Remote Code Execution (2654428

    Severity Rating: Critical Revision Note: V1.0 (February 14, 2012): Bulletin published. Summary: This security update resolves a privately reported vulnerability in Microsoft Windows. The vulnerability could allow remote code execution if a user opens a specially crafted...
    • News
    • Thread
    • critical email attachments exploitation media files ms12-013 remote code execution security update vulnerability windows
    • Replies: 0
    • Forum: Security Alerts
  19. News

    MS12-004: Vulnerabilities in Windows Media could allow remote code execution: January 10, 2012

    Resolves vulnerabilities in Microsoft Windows that could allow remote code execution if a user opens a specially crafted media file. An attacker who successfully exploited the vulnerabilities could gain the same user rights as the local user. More...
    • News
    • Thread
    • exploitation media files microsoft ms12-004 remote code execution security update user rights vulnerabilities windows
    • Replies: 0
    • Forum: Knowledge Base (KB)
  20. News

    MS12-001: Vulnerability in Windows Kernel could allow security Feature bypass: January 10, 2012

    Resolves a vulnerability in Microsoft Windows that could allow security feature bypass if an attacker exploited it to circumvent the SafeSEH security feature. More...
    • News
    • Thread
    • exploitation feature bypass january 2012 kernel microsoft patch resolves safeseh security update vulnerability windows
    • Replies: 0
    • Forum: Knowledge Base (KB)
Back
Top