Navigation section
privilege escalation
-
MS15-104 - Important: Vulnerabilities in Skype for Business Server and Lync Server Could...
Severity Rating: Important Revision Note: V1.0 (September 8, 2015): Bulletin published. Summary: This security update resolves vulnerabilities in Skype for Business Server and Microsoft Lync Server. The most severe of these vulnerabilities could allow elevation of privilege if a user clicks a...- News
- Thread
- crafted url email security important instant messenger lync server microsoft ms15-104 patch management privilege escalation remote access security bulletin security update september 2015 skype for business threats update vulnerabilities web security
- Replies: 0
- Forum: Security Alerts
-
TA15-195A: Adobe Flash and Microsoft Windows Vulnerabilities
Original release date: July 14, 2015 | Last revised: July 15, 2015 Systems Affected Microsoft Windows systems with Adobe Flash Player installed. Overview Used in conjunction, recently disclosed vulnerabilities in Adobe Flash and Microsoft Windows may allow a remote attacker to execute...- News
- Thread
- adobe flash attack surface reduction cve-2015-2387 cve-2015-5119 cve-2015-5122 cve-2015-5123 cybersecurity defense techniques exploit exploit mitigation internet security memory corruption microsoft windows patch management privilege escalation security system privileges update user awareness vulnerabilities
- Replies: 0
- Forum: Security Alerts
-
MS15-072 - Important: Vulnerability in Windows Graphics Component Could Allow Elevation of...
Severity Rating: Important Revision Note: V1.0 (July 14, 2015): Bulletin published. Summary: This security update resolves a vulnerability in Microsoft Windows. The vulnerability could allow elevation of privilege if the Windows graphics component fails to properly process bitmap conversions. An...- News
- Thread
- administrative rights attack vector authenticated attack critical elevation of privilege graphics component july 2015 malware microsoft ms15-072 patch privilege escalation risk assessment security software update system security update vulnerability windows
- Replies: 0
- Forum: Security Alerts
-
MS15-063 - Important: Vulnerability in Windows Kernel Could Allow Elevation of Privilege...
Severity Rating: Important Revision Note: V1.0 (June 9, 2015): Bulletin published. Summary: This security update resolves a vulnerability in Microsoft Windows. The vulnerability could allow elevation of privilege if an attacker places a malicious .dll file in a local directory on the machine or...- News
- Thread
- attacker malicious dll ms15-063 network share privilege escalation security bulletin update vulnerability windows kernel windows security
- Replies: 0
- Forum: Security Alerts
-
MS15-049 - Important: Vulnerability in Silverlight Could Allow Elevation of Privilege...
Severity Rating: Important Revision Note: V1.0 (May 12, 2015): Bulletin published. Summary: This security update resolves a vulnerability in Microsoft Silverlight. The vulnerability could allow elevation of privilege if a specially crafted Silverlight application is run on an affected system. To...- News
- Thread
- application attacker crafted application cybersecurity elevation of privilege important july 2015 microsoft ms15-049 patch privilege escalation revision note security silverlight system security technical documentation update user security vulnerability
- Replies: 0
- Forum: Security Alerts
-
MS15-050: Vulnerability in Service Control Manager could allow elevation of privilege: May...
Link Removed- News
- Thread
- may update ms15-050 patch management privilege escalation security service control manager vulnerability windows updates
- Replies: 0
- Forum: Knowledge Base (KB)
-
TA14-323A: Microsoft Windows Kerberos KDC Remote Privilege Escalation Vulnerability
Original release date: November 19, 2014 Systems Affected Microsoft Windows Vista, 7, 8, and 8.1 Microsoft Server 2003, Server 2008, Server 2008 R2, Server 2012, and Server 2012 R2 Overview A remote escalation of privilege vulnerability exists in implementations of Kerberos Key Distribution...- News
- Thread
- administrator attack bulletin cve defense domain controller domain user escalation impact kerberos microsoft privilege escalation remote access research security service tickets systems affected update vulnerability windows
- Replies: 0
- Forum: Security Alerts
-
MS14-044 - Important: Vulnerabilities in SQL Server Could Allow Elevation of Privilege...
Severity Rating: Important Revision Note: V1.0 (August 12, 2014): Bulletin published. Summary: This security update resolves two privately reported vulnerabilities in Microsoft SQL Server (one in SQL Server Master Data Services and the other in the SQL Server relational database management...- News
- Thread
- attacks bulletin client-side crafted websites data services database email security internet explorer malware management system microsoft phishing privilege escalation revision note security sql server update user actions vulnerabilities web security
- Replies: 0
- Forum: Security Alerts
-
MS13-103 - Important : Vulnerability in ASP.NET SignalR Could Allow Elevation of Privilege...
Severity Rating: Important Revision Note: V1.0 (December 10, 2013): Bulletin published. Summary: This security update resolves a privately reported vulnerability in ASP.NET SignalR. The vulnerability could allow elevation of privilege if an attacker reflects specially crafted JavaScript back to...- News
- Thread
- asp.net javascript microsoft patch privilege escalation security signalr trustworthy update vulnerability
- Replies: 0
- Forum: Security Alerts
-
TA13-253A: Microsoft Updates for Multiple Vulnerabilities
Original release date: September 10, 2013 Systems Affected Windows Operating System and Components Microsoft Server Software Microsoft Office Internet Explorer Overview Select Microsoft software products contain multiple vulnerabilities. Microsoft has released updates to address these...- News
- Thread
- automated updates denial of service home users information disclosure internet explorer microsoft office patch privilege escalation remote code execution security security bulletin september server system administration testing updates vulnerabilities windows wsus
- Replies: 0
- Forum: Security Alerts
-
TA13-168A: Microsoft Updates for Multiple Vulnerabilities
Original release date: June 17, 2013 | Last revised: June 18, 2013 Systems Affected Microsoft Windows Microsoft Internet Explorer Microsoft Office Overview Select Microsoft software products contain multiple vulnerabilities. Microsoft has released updates to address these...- News
- Thread
- administration automated update cybersecurity denial of service information disclosure internet explorer june 2013 microsoft office patch management privilege escalation remote access remote code execution security security bulletin software update system security updates vulnerabilities windows
- Replies: 0
- Forum: Security Alerts
-
MS13-012 - Critical : Vulnerabilities in Microsoft Exchange Server Could Allow Remote Code Execution
Severity Rating: Critical Revision Note: V1.0 (February 12, 2013): Bulletin published. Summary: This security update resolves publicly disclosed vulnerabilities in Microsoft Exchange Server. The most severe vulnerability is in Microsoft Exchange Server WebReady Document...- News
- Thread
- critical exchange server localservice microsoft outlook web app privilege escalation remote code execution security update vulnerabilities webready document viewing
- Replies: 0
- Forum: Security Alerts
-
MS12-061 - Important : Vulnerability in Visual Studio Team Foundation Server Could Allow Elevation o
Severity Rating: Important Revision Note: V1.0 (September 11, 2012): Bulletin published. Summary: This security update resolves a privately reported vulnerability in Visual Studio Team Foundation Server. The vulnerability could allow elevation of privilege if a user clicks...- News
- Thread
- bulletin cybersecurity email attack exploit instant messenger link click microsoft ms12-061 patch patching privilege escalation risk management security software team foundation technet update visual studio vulnerability
- Replies: 0
- Forum: Security Alerts
-
MS12-042: Description of the security update for Windows 7 and Windows Server 2008 R2: June 12, 2012
Resolves vulnerabilities in Microsoft Windows that could allow elevation of privilege if an attacker logs on to an affected system and runs a specially crafted application that exploits the vulnerability. An attacker must have valid logon credentials... More...- News
- Thread
- cve june 2012 microsoft patch management privilege escalation security server 2008 update vulnerabilities windows 7
- Replies: 0
- Forum: Knowledge Base (KB)
-
MS12-042: Description of the security update for Windows 7, Windows Server 2008 R2 2010, Windows Vis
Resolves vulnerabilities in Microsoft Windows that could allow elevation of privilege if an attacker logs on to an affected system and runs a specially crafted application that exploits the vulnerability. An attacker must have valid logon credentials... More...- News
- Thread
- application credentials microsoft ms12-042 privilege escalation security update vulnerability windows 7 windows server
- Replies: 0
- Forum: Knowledge Base (KB)
-
MS10-015: Vulnerabilities in Windows kernel could allow elevation of privilege
Resolves vulnerabilities in Windows that could allow elevation of privilege if an attacker logged on to the system and then ran a specially crafted application. More...- News
- Thread
- kernel vulnerability ms10-015 privilege escalation security update windows security
- Replies: 0
- Forum: Knowledge Base (KB)
-
MS11-100: Vulnerability in the .NET Framework could allow elevation of privilege: December 29, 2011
This article contains details for the ASP.NET update for the .NET Framework. More...- News
- Thread
- asp.net december 2011 microsoft ms11-100 net framework patch privilege escalation security update vulnerability
- Replies: 0
- Forum: Knowledge Base (KB)
-
MS11-051 - Important : Vulnerability in Active Directory Certificate Services Web Enrollment Could A
Severity Rating: Important Revision Note: V1.1 (June 15, 2011): Clarified the XSS Filter mitigation. Summary: This security update resolves a privately reported vulnerability in Active Directory Certificate Services Web Enrollment. The vulnerability is a cross-site...- News
- Thread
- active directory attacker certificate services malware privilege escalation security update user security vulnerability web enrollment xss
- Replies: 0
- Forum: Security Alerts
-
MS11-051 - Important: Vulnerability in Active Directory Certificate Services Web Enrollment Could Al
Bulletin Severity Rating:Important - This security update resolves a privately reported vulnerability in Active Directory Certificate Services Web Enrollment. The vulnerability is a cross-site scripting (XSS) vulnerability that could allow elevation of privilege, enabling an attacker to execute...- News
- Thread
- active directory certificate services cross-site scripting microsoft privilege escalation security update vulnerability web enrollment xss
- Replies: 0
- Forum: Security Alerts
-
MS11-010 - Important: Vulnerability in Windows Client/Server Run-time Subsystem Could Allow Elevatio
Bulletin Severity Rating:Important - This security update resolves a privately reported vulnerability in the Microsoft Windows Client/Server Run-time Subsystem (CSRSS) in Windows XP and Windows Server 2003. This security update is rated Important for all supported editions of these operating...- News
- Thread
- attack vector csrss elevation important update privilege escalation security update vulnerability windows server windows xp
- Replies: 0
- Forum: Security Alerts