exploitation

  1. MS11-057 - Critical: Cumulative Security Update for Internet Explorer (2559049)

    Bulletin Severity Rating:Critical - This security update resolves five privately reported vulnerabilities and two publicly disclosed vulnerabilities in Internet Explorer. The most severe vulnerabilities could allow remote code execution if a user views a specially crafted Web page using Internet...
    • News
    • Thread
    • admin rights critical rating cumulative update exploitation extended security updates internet explorer remote code execution user rights vulnerabilities webpage
    • Replies: 0
    • Forum: Security Alerts

  2. Windows 7 Trend Micro Control Manager file disclosure vulnerability

    Link Removed - Invalid URL
    • JMH
    • Thread
    • cybersecurity exploitation information information disclosure malware management security trend micro vulnerability
    • Replies: 0
    • Forum: Windows Security

  3. Windows 7 Highly Critical Vulnerabilities Identified in VLC Media Player

    Link Removed - Invalid URL
    • JMH
    • Thread
    • arbitrary code avi files buffer overflow critical flaws cve-2011-2587 cve-2011-2588 cybersecurity demuxer exploitation heap overflow hossein lotfi media player realmedia research secunia security software security tech news vlc vulnerabilities
    • Replies: 0
    • Forum: Windows Security

  4. Windows 7 Cookiejacking - The bane of IE Existence.

    Cookiejacking - The bane of IE Existence | WindowsTalk.org
    • JMH
    • Thread
    • cookiejacking credentials exploitation hacking internet explorer security websites
    • Replies: 0
    • Forum: Windows Security

  5. MS11-054 - Important: Vulnerabilities in Windows Kernel-Mode Drivers Could Allow Elevation of Privil

    Severity Rating: Important - Revision Note: V1.0 (July 12, 2011): Bulletin published.Summary: This security update resolves 15 privately reported vulnerabilities in Microsoft Windows. The most severe of these vulnerabilities could allow elevation of privilege if an attacker logged on locally and...
    • News
    • Thread
    • attacker bulletin drivers elevation exploitation important kernel-mode local logon microsoft privilege security update vulnerabilities windows
    • Replies: 0
    • Forum: Security Alerts

  6. MS11-053: Vulnerability in Bluetooth Stack could allow remote code execution: July 12, 2011

    Resolves a vulnerability in the Windows Bluetooth Stack that could allow remote code execution if an attacker sent a series of specially crafted Bluetooth packets to an affected system. More...
    • News
    • Thread
    • 2011 attack bluetooth bluetooth stack exploitation fix impact microsoft ms11-053 network patch remote code execution resolve safety security system update vulnerability windows
    • Replies: 0
    • Forum: Knowledge Base (KB)

  7. Windows 7 Attackers exploit latest Flash bug on large

    Hackers are aggressively exploiting a just-patched Flash vulnerability, serving attack code "on a fairly large scale" from compromised sites as well as from their own malicious domains, a security researcher said June 17. Attacks show up in Korea, Taiwan, and India. They're also attacking...
    • reghakr
    • Thread
    • attack exploitation flash player hackers india malware security south korea taiwan vulnerability
    • Replies: 1
    • Forum: Windows Security

  8. MS11-039 - Critical: Vulnerability in .NET Framework and Microsoft Silverlight Could Allow Remote Co

    Bulletin Severity Rating:Critical - This security update resolves a privately reported vulnerability in Microsoft .NET Framework and Microsoft Silverlight. The vulnerability could allow remote code execution on a client system if a user views a specially crafted Web page using a Web browser that...
    • News
    • Thread
    • asp.net browser client code security critical exploitation iis microsoft net framework remote code execution security server security silverlight software security update user rights vulnerability web server xaml xbaps
    • Replies: 0
    • Forum: Security Alerts

  9. MS11-036 - Important: Vulnerabilities in Microsoft PowerPoint Could Allow Remote Code Execution (254

    Bulletin Severity Rating:Important - This security update resolves two privately reported vulnerabilities in Microsoft PowerPoint. The vulnerabilities could allow remote code execution if a user opens a specially crafted PowerPoint file. An attacker who successfully exploited either of these...
    • News
    • Thread
    • attack vector cve-2011-1269 cve-2011-1270 exploitation file validation microsoft powerpoint remote code execution security update user rights vulnerabilities
    • Replies: 0
    • Forum: Security Alerts

  10. MS11-036 - Important: Vulnerabilities in Microsoft PowerPoint Could Allow Remote Code Execution (254

    Severity Rating: Important - Revision Note: V1.0 (May 10, 2011): Bulletin published.Summary: This security update resolves two privately reported vulnerabilities in Microsoft PowerPoint. The vulnerabilities could allow remote code execution if a user opens a specially crafted PowerPoint file. An...
    • News
    • Thread
    • attack vector cve-2011-1269 cve-2011-1270 exploitation file validation important microsoft office powerpoint remote code execution revision note security update user rights vulnerabilities
    • Replies: 0
    • Forum: Security Alerts

  11. Unpatched DLL bugs let hackers exploit Windows 7 and IE9, says researcher

    Although Microsoft has patched multiple DLL load hijacking vulnerabilities since last summer, Windows and Internet Explorer 9 (IE9) can still be exploited, a security company warned today. Link Removed due to 404 Error
    • News
    • Thread
    • bugs dll exploitation hijack internet explorer patch research security software vulnerabilities windows 7
    • Replies: 0
    • Forum: Live RSS Feeds

  12. MS11-022 - Important: Vulnerabilities in Microsoft PowerPoint Could Allow Remote Code Execution (248

    Severity Rating: Important - Revision Note: V1.0 (April 12, 2011): Bulletin published.Summary: This security update resolves three privately reported vulnerabilities in Microsoft PowerPoint. The vulnerabilities could allow remote code execution if a user opens a specially crafted PowerPoint...
    • News
    • Thread
    • cve-2011-0655 cve-2011-0656 exploitation microsoft powerpoint remote code execution security update user rights vulnerabilities
    • Replies: 0
    • Forum: Security Alerts

  13. MS11-019 - Critical: Vulnerabilities in SMB Client Could Allow Remote Code Execution (2511455)

    Bulletin Severity Rating:Critical - This security update resolves one publicly disclosed vulnerability and one privately reported vulnerability in Microsoft Windows. The vulnerabilities could allow remote code execution if an attacker sent a specially crafted SMB response to a client-initiated...
    • News
    • Thread
    • bulletin critical update exploitation microsoft ms11-024 remote code execution security smb client vulnerabilities windows update
    • Replies: 0
    • Forum: Security Alerts

  14. Pwn2Own 2011: IE8 on Windows 7 hijacked with 3 vulnerabilities

    Using three different vulnerabilities and clever exploitation techniques, Irish security researcher Stephen Fewer successfully hacked into a 64-bit Windows 7 (SP1) running Internet Explorer 8 to win this year’s CanSecWest hacker challenge. More...
    • News
    • Thread
    • 2011 cansecwest exploitation hacking internet explorer pwn2own researcher security vulnerabilities windows 7
    • Replies: 0
    • Forum: Live RSS Feeds

  15. Microsoft Security Advisory (2491888): Vulnerability in Microsoft Malware Protection Engine Could Al

    Revision Note: V1.0 (February 23, 2011): Advisory published. Advisory Summary:Microsoft is releasing this security advisory to help ensure customers are aware that an update to the Microsoft Malware Protection Engine also addresses a security vulnerability reported to Microsoft. The update...
    • News
    • Thread
    • advisory engine exploitation malware microsoft privilege protection security update vulnerability
    • Replies: 0
    • Forum: Security Alerts

  16. MS11-006 - Critical: Vulnerability in Windows Shell Graphics Processing Could Allow Remote Code Exec

    Bulletin Severity Rating:Critical - This security update resolves a publicly disclosed vulnerability in the Windows Shell graphics processor. The vulnerability could allow remote code execution if a user views a specially crafted thumbnail image. An attacker who successfully exploited this...
    • News
    • Thread
    • critical exploitation graphics remote code execution security shell thumbnails update vulnerability windows
    • Replies: 0
    • Forum: Security Alerts

  17. MS11-008 - Important: Vulnerabilities in Microsoft Visio Could Allow Remote Code Execution (2451879)

    Bulletin Severity Rating:Important - This security update resolves two privately reported vulnerabilities in Microsoft Visio. The vulnerabilities could allow remote code execution if a user opens a specially crafted Visio file. An attacker who successfully exploited either of these...
    • News
    • Thread
    • bulletin exploitation important microsoft remote code execution security update user rights visio vulnerabilities
    • Replies: 0
    • Forum: Security Alerts

  18. Microsoft Security Advisory (2490606): Vulnerability in Graphics Rendering Engine Could Allow Remote

    Revision Note: V1.2 (January 19, 2011): Clarified that the Modify the Access Control List (ACL) on shimgvw.dll workaround only applies to Windows XP and Windows Server 2003 systems and added a new workaround, Disable viewing of thumbnails in Windows Explorer on Windows Vista and Windows Server...
    • News
    • Thread
    • access control admin rights advisory arbitrary code data security exploitation graphics microsoft remote access rendering security security context thumbnails user rights vulnerability windows server windows vista windows xp workaround
    • Replies: 0
    • Forum: Security Alerts

  19. Microsoft Security Advisory (2501696): Vulnerability in MHTML Could Allow Information Disclosure

    Revision Note: V1.0 (January 28, 2011): Advisory published.Summary: Microsoft is investigating new public reports of a vulnerability in all supported editions of Microsoft Windows. The vulnerability could allow an attacker to cause a victim to run malicious scripts when visiting various Web...
    • News
    • Thread
    • advisory exploitation information disclosure mhtml microsoft public reports security vulnerability windows xss
    • Replies: 0
    • Forum: Security Alerts

  20. Microsoft Security Advisory (2501696): Vulnerability in MHTML Could Allow Information Disclosure - 1

    Revision Note: V1.0 (January 28, 2011): Advisory published. Advisory Summary:Microsoft is investigating new public reports of a vulnerability in all supported editions of Microsoft Windows. The vulnerability could allow an attacker to cause a victim to run malicious scripts when visiting various...
    • News
    • Thread
    • advisory attack edition exploitation impact information information disclosure malicious software microsoft proof of concept published reports revision scripting security supported vulnerability website windows xss
    • Replies: 0
    • Forum: Security Alerts