Computer Security
[EN] securityvulns.ru
no-pyccku



Name:MICROSOFT : Windows 2008 Server

8!Microsoft Internet Explorer multiple security vulnerabilities
updated since 12.02.2014
document Multiple memory corruptions, crossite access, privilege escalation.
8!Microsoft Windows multiple security vulnerabilities
document DirectShow memory corruptions, SilverLight restrictions bypass, SAMR restrictions bypass, kernel mode drivers privilege escalations.
8!Microsoft Internet Explorer multiple security vulnerabilities
document Multiple memory corruptions.
8!Microsoft Windows multiple security vulnerabilities
document XML services information leakage, IPv6 DoS, Direct2D memory corruption, .Net privilege escalation, VBScript code execution.
6!Microsoft Windows security vulnerabilities
document Privilege escalations via NDProxy and win32k.
9!Microsoft Windows multiple security vulnerabilities
updated since 16.12.2013
document Memory corruption in graphics library, signature check bypass, use-after-free in scripting, multiple privilege escalations.
8!Microsoft Internet Explorer multiple security vulnerabilities
document Multiple memory corruption and privilege escalations.
8!Microsoft Windows multiple security vulnerabilities
document GDI integer overflow, InformationCardSigninHelper ActiveX code execution, AFD driver information leak, X.509 certificates DoS, Hyper-V privilege escalation.
8!Microsoft Internet Explorer multiple security vulnerabilities
document Multiple information leaks and memory corruptions.
8!Microsoft Windows multiple security vulnerabilities
updated since 09.10.2013
document .Net code execution, comctl32.dll integer overflow.
8!Microsoft Internet Explorer multiple security vulnerabilities
document Multiple memory corruption.
8!Microsoft Windows multiple security vulnerabilities
document OLE code execution, Windows Theme files code execution, kernel mode drivers privilege escalation, SCM privilege escalation, Acrive Directory DoS.
8!Microsoft Internet Explorer multiple security vulnerabilities
document Multiple memory corruptions.
8!Microsoft Windows multiple security vulnerabilities
updated since 14.08.2013
document Unicode Scripts Processor memory corruption, RPC privilege escalation, kernel protection bypass and memory corruptions, IPv6 and NAT DoS.
8!Microsoft Internet Explorer multiple security vulnerabilities
updated since 14.08.2013
document Protection bypass, crossite scripting, memory corruptions.
9!Microsoft Windows multiple security vulnerabilities
updated since 10.07.2013
document Multiple vulnerabilities in .Net and Silverlight, multiple kernel components vulnerabilities, GDI+ TrueType parsing memory corruption, DirectShow memory corruption, VMW parsing memory corruption, multiple Internet Explorer memory corruption, Windows Defender privilege escalation.
7!Microsoft Windows multiple security vulnerabilities
document Kernel information leakage, drivers DoS, print spooler privilege escalation.
8!Microsoft Internet Explorer multiple security vulnerabilities
document Multiple memory corruptions.
7!Microsoft Windows multiple security vulnerabilities
document http.sys DoS, multiple kernel privilege escalations, .Net signature spoofing and authorization bypass.
8!Microsoft Internet Explorer multiple security vulnerabilities
document Information leakage, multiple use-after-free vulnerabilities
7!Microsoft Internet Explorer multiple security vulnerabilities
updated since 12.04.2013
document Use-after-free vulnerabilities.
 Microsoft Active Directory DoS
document Memory exhaustion.
7!Microsoft Windows multiple security vulnerabilities
document Multiple privilege escalations in kernel, CSRSS and drivers.
7!Microsoft Remote Desktop Connection Client ActiveX code execution
document Use-after-free in ActiveX
7!Microsoft Internet Explorer multiple security vulnerabilities
updated since 13.03.2013
document Multiple use-after-free vulnerabilities.
 Microsoft Windows USB devices privilege escalation
updated since 13.03.2013
document Few different vulnerabilities on USB device plugging with ability of code execution.
8!Microsoft Windows multiple security vulnerabilities
updated since 14.02.2013
document Quartz.dll memory corruption, .Net privilege escalation, multiple kernel race conditions, CSRSS privilege escalation, TCP/IP DoS.
 Microsoft Windows Server NFS server DoS
document NULL pointer dereference.
8!Microsoft Internet Explorer multiple security vulnerabilities
document Information leakage, multiple use-after-free vulnerabilities, VML memory corruption.
8!Microsoft Internet Explorer use-after-free vulnerabilities
document Use-after-free vulnerability in CButton is actively used in-the-wild.
8!Microsoft Windows multiple security vulnerabilities
document Print spooler service code execution, XML library integer overflow and memory corruption, multiple .Net vulnerabilities, Win32K privilege escalation SSL/TLS library protection bypass, Open Data Protocol DoS.
 Microsoft Internet Explorer stack overflow
document Stack overrun on malformed tags sequence.
9!Microsoft Windows multiple security vulnerabilities
document Buffer overflow on OpenType and TrueType fonts parsing, memory corruption on filname handling, DirectPlay buffer overflow, DirectAccess IP-HTTPS insufficient certificate check.
7!Microsoft Internet Explorer multiple security vulnerabilities
document Few use-after-free vulnerabilities.
 Internet Explorer information leakage
document Page can track any mouse movements, even behind the page.
 Microsoft Internet Information Services security vulnerabilities
document log files information leakage, FTP STARTTLS session command injection.
8!Microsoft Windows security vulnerabilities
document Windows Briefacese integer overflows, .Net protection bypass, information leakage and code execution, kernel drivers privilege escalations.
7!Microsoft Internet Explorer multiple security vulnerabilities
document Few different use-after-free vulnerabilities.
9!Microsoft Internet Explorer memory corruption
updated since 19.09.2012
document Use-after-free vulnereability is actively used in-the-wild to install malware.
7!Microsoft Windows kernel integer overflow
document Kernel integer overflow leads to privilege escalation.
6!Microsoft Windows kerberos server DoS
document NULL pointer dereference on authentication request.
9!Microsoft Windows multiple security vulnerabilities
updated since 11.07.2012
document Microsoft XML Services memory corruption, ADO memory corruption, kernel drivers vulnerabilities, Window Shell command injection, TLS vulnerabilities
8!Microsoft Internet Explorer multiple security vulnerabilities
document Memory corruptions, integer overflow, function pointer corruption.
9!Microsoft Windows multiple security vulnerabilities
updated since 09.05.2012
document TCP/IP privilege escalation, partition manager privilege escalation, multiple security vulnerabililities in .Net, Silverlight, font management, GDI+, window components, etc.
9!Microsoft Internet Explorer multiple security vulnerabilities
updated since 13.06.2012
document Multiple memory corruptions, code executions, information leakage.
6!Microsoft IIS protection bypass
document Password protection bypass, script files content access.
8!Microsoft Remote Desktop memory corruption
document Memory corruption on RDP packets processing.
 Opera / Mozilla / Internet Explorer DoS
updated since 12.02.2010
document Large number of nested tags leads to buffer overflow.
7!Microsoft Windows multiple security vulnerabilities
updated since 11.04.2012
document MSCOMCTL.ocx code execution, .Net code execution, WinVerifyTrust digital signature validation vulnerability
8!Microsoft Internet Explorer multiple security vulnerabilities
updated since 11.04.2012
document Multple vulnerabilities allow remote code execution.
9!Microsoft .Net multiple security vulnerabilities
updated since 02.01.2012
document DoS, multiple vulnerabilities in forms authentication.
8!Microsoft Windows multiple security vulnerabilities
document Kernel drivers privileges escalation, DirectWrite API DoS, RDP memory corruption and DoS.
6!Microsoft WIndows DNS Server DoS
document Crash on request processing.
9!Microsoft Windows multiple security vulnerabilities
updated since 15.02.2012
document GDI code execution, drivers privilege escalation, unsafe DLL loading, C Runtime code execution, .Net framework and Silverlight vulnerabilities.
8!Microsoft Internet Explorer multiple security vulnerabilities
updated since 15.02.2012
document Code execution, information leakage.
7!Microsoft Windows multiple security vulnerabilities
updated since 11.01.2012
document SafeSEH protection bypass, Windows Object Packager code execution, CSRSS privilege escalation, DirectShow / Windows Media memory corruption, Windows Packager code execution, SSL/TLS information leakage.
6!Microsoft Internet Explorer multiple security vulnerabilities
updated since 15.12.2011
document Information leakage, insecure library loading.
9!Microsoft Windows multiple security vulnerabilities
updated since 15.12.2011
document Buffer overflow on TTF fonts parsing, OLE objects memory corruption, CSRSS and kernel privilege escalations, ActiveX code execution.
6!Microsoft Windows multiple applications DLL hijacking
updated since 26.08.2010
document If application is launched via file type association, current path is set to the path file is located, making it's possible to place DLLs application tries to load dynamically into same directory.
 Microsoft Windows active directory authentication bypass
document Certificate revocation list is not checked on LDAPs access.
 Microsoft Windows DoS
document Crash on TTF fonts parsing.
10!Microsoft Windows kernel UDP processing integer overflow
document Integer overflow leads to code execution via the flow of UDP packets to closed port.
8!Microsoft Internet Explorer multiple security vulnerabilities
updated since 12.10.2011
document Multiple memory corruptions with code execution.
6!Microsoft .Net / Silverlight code execution
document It's possible to escape from sandbox.
7!Microsoft Windows multiple security vulnerabilities
document Active Accessibility and Media Center insecure DLL loading
6!DigiNotar fraudulent certificates
updated since 01.09.2011
document Well known domain names certificates were issued to untrusted party.
7!Microsoft Windows WINS server memory corruption
updated since 10.05.2011
document Memory corruption on send() exceptional conditions handling.
 Microsoft Windows WIND server privilege escalation
document Loopback interface packets handling vulnereability
 Microsoft Windows CSRSS DoS
document NULL pointer dereference on console input from stdin if stderr and stdout are closed.
8!Microsoft Windows multiple security vulnerabilities
document NDISTAPI service and CSRSS privilege escalations, kernel DoS, TCP/IP DoS, RDP DoS, .Net information disclosure.
7!Microsoft Windows DNS server security vulnerabilities
document Memory corruption on NAPTR record handling, uninitialized memory access on non-existent domain lookup.
9!Microsoft Internet Explorer multiple security vulnerabilities
document Multiple memory corruptions, crossite data access, code execution.
9!Microsoft Internet Explorer multiple security vulnerabilities
updated since 15.06.2011
document mhtml handler cross application scripting, VML processor memory corruption, multiple internet explorer memory corruptions, information leakage.
7!Microsoft Windows multiple security vulnerabilities
document Uninitialized memory reference in Bluetooth stack, multiple memory handling vulnerabilities in Windows kernel, multiple privilege escalations in CSRSS.
8!Microsoft Windows multiple security vulnerabilities
updated since 15.06.2011
document Buffer overflow on WMF files parsing. Uninitialized pointers on OTF parsing. DFS memory corruptions. SMB client and server memory corruptions. afd.sys privilege escalation.
 Microsoft Hyper-V DoS
updated since 15.06.2011
document Hang on VMBus commands processing.
 Microsoft Certificate Services crossite scripting
document Crossite scripting in Active Directory Certificate Services Web Enrollment.
8!Microsoft .Net Framework multiple security vulnerabilities
document Array index overflow, JIT compiler code execution.
 Microsoft fixed SMB NTLM relay attacks
updated since 12.11.2008
document Microsoft fixed NTLM proxing vulnerability: credentials used for one services could be forwardedto different one. Attack is known for many years as NTLM weakness.
9!Microsoft Windows multiple security vulnerabilities
updated since 13.04.2011
document SMB client and server memory corruption, Fax Cover Page Editor memory corruption, MFC library unsafe DLL loading, MHTML library information leak, GDI+ library integer overflow, DNS client memory corruption, memory corruption in .Net Framework, memory corruption in JScript / VBScript engines, stack overflow in OpenType fonts parsing, multiple drivers vulnerabilities.
8!Microsoft Internet Explorer multiple security vulnerabilities
updated since 13.04.2011
document Multiple memory corruptions and information leaks.
 Multiple systems ICMPv6 flood DoS
document router announcement packets flood resourceds exhaustion
 Windows help system buffer overflow
document Buffer overflow on CHM files parsing.
6!Multiple ActiveX components security vulnerabilities
document kill bit update for multiple components of different vendors.
6!Microsoft Windows multiple security vulnerabilities
document Unsafe library loading, code execution with .dvr-ms files.
6!Microsoft Windows application policy bypass
document It's possible to bypass application restriction policy by directly loading code into suspended process' memory via e.g. Microsoft Word macro.
8!Microsoft Windows multiple security vulnerabilities
updated since 08.02.2011
document Buffer overflow in shell on thumbnail parsing, memory corruption on OpenType Compact Font Format parsing, privilege escalation via CSRSS, LSA, kernel and different drivers, Kerberos server spoofing, JScript/VBScript memory content leak.
8!Microsoft Internet Explorer multiple security vulnerabilities
updated since 08.02.2011
document Multiple memory corruptions, unsafe DLL loading.
9!Microsoft IIS FTP Server buffer overflow
document Heap buffer overflow.
 Microsoft Fax Cover Page Editor double free vulnerability
document Double free vulnerability on .cov files parsing.
 Microsoft ADO security vulnerabilities
document Buffer overflow, memory corruption.
9!Microsoft Internet Explorer multiple security vulnerabilities
updated since 15.12.2010
document Crossite data access, multiple memory corruptions.
9!Microsoft Windows multiple security vulnerabilities
document OpenType Font parsing memory corruption, task scheduler privilege escalation, usafe DLL loading, multiple kernel vulnerabilities, Consent User Interface privilege escalation, Netlogon DoS.
 Microsoft Hyper-V DoS
document VMBus messages vulnerability
 Microsoft Windows hidden administrative group membership
document It's possible to include user's account into administrative group without direct group membership.
 Microsoft Windows 2008 Shared Cluster Disks weak permissions
document Everyone:Full Control permissions is granted on new disks by default.
6!Microsoft Windows Wordpad / Windows Shell code execution
document Code execution via embedded COM object.
 Windows Media Player memory corruption
document Memory corruption if page with WMP ActiveX is reloaded.
6!Microsoft Sharepoint SafeHTML crossite scripting
document Few crossite scripting possibilities.
9!Microsoft Internet Explorer multiple security vulnerabilities
document Multiple memory corruptions, cross domain information disclosure.
9!Microsoft Windows multiple security vulnerabilities
document Multiple privilege escalation with different drivers. MFC buffer overflow. EOT and OTF fonts memory corruptions and integer overflow. comctl32 buffer overflow. LPC buffer overflow. SChannel DoS.
9!Microsoft Office multiple security vulnerabilities
updated since 15.09.2010
document Buffer overflow in Microsoft Outlook message parsing, memory corruption on fonts parsing.
9!Microsoft Internet Information Services multiple security vulnerabilities
document Authentication bypass, buffer overflow, DoS.
9!Microsoft Windows multiple security vulnerabilities
updated since 15.09.2010
document Privilege escalation and code execution in spooler services,memory corruption in MPEG-4 codec, memroy corruption in RPC, privilege escalation in LSA, privilege escalation in CSRSS subsystem, WordPad memory corruption.
 Multiple browsers certificates validation weakness
document Wildmasks in certificates issued to IP address are enabled.
6!Microsoft Windows Kerberos tickets spoofing
document It's possible to logon with any account by manipulating network traffic.
7!Microsoft .Net and Silverlight security vulnerabilities
document Memory corruption, code execution.
 Microsoft Windows Tracing Feature for Services security vulnerabilities
document Weak permissions on registry keys, buffer overflow on registry keys reading.
6!Microsoft Windows TCP/IP stack security vulnerabilities
document DoS, privilege escalation.
7!Microsoft Windows SMB/CIFS service multiple security vulnerabilities
document Buffer overflow, privilege escalation, DoS.
9!Microsoft Internet Explorer multiple security vulnerabilities
document Multiple memory corruptions, crossite access.
8!Microsoft XML Core Services memory corruption
document Memory corruption on server's response pasrsing in XMLHTTP.
6!Microsoft Windows kernel multiple security vulnerabilities
updated since 10.08.2010
document Memory corruptions, privilege escalations, DoS.
6!Microsoft Windows shortcuts code execution
document Code execution on shortcut icon displaying.
 Microsoft ClickOnce technology insufficient security
document Installation of unsigned elements is allowed.
7!Microsoft Windows Canonical Display integer overflow
document Integer overflow on image displaying.
 Microsoft Windows CHM files protection bypass
document It's possible to bypass CHM file locking protection for file downloaded from Internet.
6!Microsoft Windows win32k privilege escalation
updated since 08.06.2010
document Multiple memory corruptions.
6!Microsoft .Net XML signing protection bypass
document Only part of signature is compared in case of incomplete HMAC.
6!Microsoft Windows OpenType Compact Font Format driver memory corruption
document Memory corruption on IOCTL processing.
 Microsoft IIS memory corruption
document Memory corruption if Extended Protection for Authentication is enabled.
7!Code execution with multiple ActiveX components in Microsoft Windows
updated since 08.06.2010
   
7!Microsoft Windows media files parsing memroy corruption
document Memory corruption on JPEG / MJPEG parsing.
8!Microsoft Internet Explorer multiple security vulnerabilities
document Crossite scripting, information leakage, multiple memory corruptions.
 Multiple browsers DoS
updated since 20.05.2010
document Mail program compose message window is created for avery frame with mailto:, news:, nntp:, etc URI.
 Microsoft Internet Explorer information leak
document It's possible to access external UNC location via ICMFilter option, leaking authentication information.
 Microsoft Windows Mail / Outlook Express integer overflow
document Integer overflow on POP3 or IMAP server reply parsing.
 Microsoft Internet Explorer, Google Chrome, Opera and Mozilla Firefox DoS
document Large buffer within <marquee> tag causes browser to crash.
 Microsoft Windows ISATAP IPv6 address spoofing
document Insufficient check for tunneling address.
7!Microsoft Windows MP3 codec buffer overflow
document Buffer overflow on AVI files with MP3 audio stream.
7!Microsoft SMB client multiple security vulnerabilities
updated since 10.02.2010
document Memory corruptions, race conditions.
6!Microsoft Windows kernel multiple privilege escalations
document Multiple DoS conditions, race conditions, memory corruptions.
8!Microsoft Windows file signature spoofing
document Signature spoofing in PE and CAB files.
9!Microsoft Internet Explorer multiple security vulnerabilities
updated since 31.03.2010
document Multiple security vulnerability are used in-the-wild for hiddden malware installation.
8!Microsoft Internet Explorer memory corruption
document Memory corruption on XML/HTML processing.
6!Microsoft Windows kernel privilege escalation
document Double free() vulnerability, exception handler vulnerability.
 Microsoft Hyper-V DoS
updated since 10.02.2010
document Insufficient instruction set validation in virtual machine.
 Microsoft Windows Kerberos DoS
document NULL pointer dereference on TGT renewal request processing.
6!Microsoft DirectShow buffer overflow
document Buffer overflow on AVI parsing.
7!Microsoft Windows SMB server multiple security vulnerabilities
document Memory corruptions, buffer overflow, DoS conditions, cryptography weakness.
7!Microsoft Data Analyzer ActiveX Control memory corruption
   
9!Microsoft Windows TCP/IP and TCP/IPv6 multiple security vulnerabilities
updated since 09.02.2010
document Multiple memory corruptions in ICMPv6, IPSec, TCP implementations.
8!Microsoft Internet Explorer information leak
document It's possible to retrieve any file from client computer via URLMON and Dynamic OBJECT tag.
9!Internet Explorer memory corruption
updated since 22.11.2009
document Memory corruption then setting outerHTML from body style.
8!Microsoft Internet Explorer Multiple security vulnerabilities
updated since 19.01.2010
document 0-day use-after-free vulnerability on createEventObject processing: <body onload="for(var i=0; i!=10000; i++) ev.srcElement"> <img src=. onerror="ev=createEventObject(event); outerHTML++">, Multiple memory corruptions.
8!Microsoft Windows Embedded OpenType (EOT) Fonts multiple security vulnerabilities
updated since 14.07.2009
document Integer overflows, heap buffer overflows.
6!Microsoft IIS protection bypass
document It's possible to bypass 3rd party upload protection by file extension, because part of filename after semicolon is ingored then detecting file type. E.g. script.asp;.jpg is treated by web server as ASP file.
9!Microsoft Internet Explorer multiple security vulnerabilities
updated since 09.12.2009
document Multiple memory corruptions, code execution.
7!Microsoft Internet Authentication Service multiple security vulnerabilities
document MS-CHAP authentication bypass, memory corruption.
7!Microsoft Windows Active Directory Federation Service multiple security vulnerabilities
document Code execution, session hijack.
9!Multiple TCP implementations different security vulnerabilities
updated since 09.09.2009
document Multiple security vulnerabilities in different operation sustems caused by resource exhaustions on maintaining TCP states table.
8!Microsoft Windows GDI code execution
document Memory corruption on EOT (Embedded Open Type) font parsing, privilege escalation, DoS.
8!Web Services on Devices Application Programming Interface API memory corruption
document Memory corruption on WSD (TCP/5357, TCP/5358, UDP/3702) network packet parsing.
 Microsoft Active Directory DoS
document LSASS stack overflow (stack memory exhaustion).
 Microsoft Internet Explorer DoS
document Unremovable dialog with cycled setHomePage.
 Microsoft Windows Media Player information leak
document Windows Media Player plugin allows to detect local file existance.
6!Microsoft Windows kernel multiple security vulnerabilities
updated since 13.10.2009
document Integer overflow, NULL pointer dereference, exception handler vulnerability.
7!Microsoft Internet Explorer multiple security vulnerabilities
updated since 13.10.2009
document Multiple memory corruptions.
6!Microsoft Windows Media Runtime multiple security vulnerabilities
updated since 13.10.2009
document Buffer overflows, memory corruptions.
8!Microsoft .Net multiple security vulnerabilities
document Multiple vulnerabilities allow escape from sandbox environment.
8!Microsoft GDI+ multiple security vulnerabilities
document Multiple vulnerabilities on WMF, PNG, TIFF, BMP parsing.
9!Microsoft Active Template Library (ATL) multiple security vulnerabilities
updated since 29.07.2009
document Memory corruptions, information leak, initialization problem, leading to killbit protection bypass.
8!Microsoft Windows IIS FTP server buffer overflow
updated since 31.08.2009
document Buffer overflow in NLST command. Same vulnerability may be used for stack overflow (stack memory exhaustion) without need fo write access.
6!Microsoft CryptoAPI certificate spoofing
document Certificate name spoofing with NULL byte.
9!Microsoft Windows (including Windows 7) SMB2 array index overflow
updated since 08.09.2009
document Crash on SMB2 protocol NEGOTIATE PROTOCOL REQUEST SMB request parsing
6!Microsoft Windows LSA DoS
document Crash on NTLM authentication parsing.
8!Microsoft Windows Wireless LAN AutoConfig service buffer overflow
document Buffer overflow on access point frame parsing.
8!Microsoft Windows JavaScript engine memory corruption
document Memory corruption on "arguments" keyword parsing.
7!Microsoft RDP client multiple security vulnerabilities
updated since 11.08.2009
document Memory corruption in ActiveX control, memory corruption on server reply processing.
6!Microsoft Windows Workstation service memory corruption
updated since 11.08.2009
document Memory corruption on RPC message parsing.
8!Microsoft Windows media files processing memory corruption
document Memory corruptions and integer overflows on AVI processing.
6!Microsoft ASP.NET DoS
   
 Microsoft telnet NTLM relaying
document NTLM relaying attack against telnet client authentication is possible.
8!Microsoft Internet Explorer multiple security vulnerabilities
updated since 29.07.2009
document Multiple memory corruptions, workaround for ATL vulnerability added.
 Multiple browsers DoS
updated since 16.07.2009
document select() method doesn't limie the number of selected elements, leading to resources exhaustion.
 Multiple browsers DoS
document Crash or resources exhaustion on oversized unicode string operations via Javascript.
 Mozilla Firefox / Microsoft Internet Explorer / Opera /Google Chrome DoS
updated since 26.05.2009
document Hang on circle with large radius value in SVG tags. Hang and memory leak on reload with keygen tag.
8!Windows print spooler multiple security vulnerabilities
updated since 10.06.2009
document Buffer overflow, unauthorized files access, privilege escalation with dynamic library loading.
8!Microsoft Internet Explorer multiple security vulnerabilities
updated since 09.06.2009
document Crossite data access, multiple memory corruptions.
6!Microsoft Windows kernel multiple privilege escalation
document Multiple vulnerabilities in different subsystems.
8!Microsoft Internet Explorer multiple security vulnerabilities
updated since 15.04.2009
document Code exexuction, multiple memory corruptions, NTLM relaying.
6!Microsoft Windows WinHTTP servive multiple security vulnerabilities
document Integer overflow, certificate spoofing, NTLM relaying.
6!Microsoft Windows privilege escalation
document Privilege escalation with MSDTC, WMI, RPCSS, Windows Thread Pool services.
 Microsoft Internet Explorer DoS
document Browser hangs while trying to determine charset of the text document with large number of random characters.
 Microsoft Windows DNS and WINS special records spoofing
document It's possible to spoof WPAD and ISATAP records.
10!Microsoft Windows kernel multiple security vulnerabilities
document Multiple security vulnerabilities allow code execution via EMF/WMF files.
 Google Chrome, Mozilla Firefox, Opera, Internet Explorer browsers DoS
updated since 30.09.2008
document Calling window.print() function in loop causes browser to hang. Uncontrollable memory allocation. Script can close window without user approval.
6!Microsoft Internet Explorer multiple security vulnerabilities
document Few memory corruptions.
 Microsoft SQL Server memory corruption
document sp_replwritetovarbin stored procedure memory overwrite.
 Microsoft Windows fails to disable autorun
document None of documented methods to disable autorun does it completely. This way of distribution is actively used by malware. CERT advises to add next record into registry (@ means default value for key). [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\IniFileMapping\Autorun.inf] @="@SYS:DoesNotExist"
9!Microsoft Windows SMB multiple security vulnerabilities
updated since 13.01.2009
document Buffer overflows and DoS conditions.
 Microsoft Internet Explorer DoS
document Crash on recursive script creation with createElement().
9!Microsoft Internet Explorer multiple security vulnerabilities
updated since 10.12.2008
document Multiple memory corruptions.
9!Microsoft Windows Media Player buffer overflow
document Buffer overflow on WAV parsing
 Mozilla Firefox, Microsoft Internet Explorer, Opera and Google Chrome DoS
document Printing <irame> in endless loop from javascript causes resources exhaustion and leads to browser hang.
9!Microsoft Windows Media Player integer overflow
document Integer overflow on WAV parsing.
10!Microsoft Internet Explorer memory corruption
document Memory corruption leads to code execution. Vulnerability is used in-the-wild for hidden malware installation.
 Microsoft Windows Media Player multiple security vulnerabilities
document NTLM credentials leak and relaying.
8!Microsoft Windows GDI library multiple security vulnerabilities
document Buffer overflow and integer overflow on WMF parsing.
 Internet Explorer, Opera, Google Chrome, Mozilla browsers DoS
updated since 03.10.2008
document window.close() в цикле на событие OnLoad() приводит к зависанию браузера. Multiple resource exhaustion attacks with Javascript.
7!Microsoft XML multiple security vulnerabilities
document Memory corruption, crossite scripting, information leak.
10!Microsoft Windows code execution
updated since 24.10.2008
document It's possible toexecute code without authentication with RPC request UUID 4b324fc8-1670-01d3-1278-5a47bf6ee188 to browser service via SERVER (LanmanServer) service, TCP/139, TCP/445. Reccomendation is to disable browser service.
7!Microsoft Internet Explorer multiple security vulnerabilities
updated since 14.10.2008
document Memory corruptions, information hijack, crossite scripting.
8!Microsoft Windows SMB buffer overflow
document Buffer overflow on SMB protocol parsing.
 Microsoft Windows kernel multiple security vulnerabilities
document Double free() vulnerability and memory corruptions.
 Windows kernel integer overflow
document Integer overflow in IopfCompleteRequest function.
 Internet Information Server and IAS ActiveX unauthorized access and DoS
document ActiveX allows privileged actions to be silently executed.
 Microsoft Internet Explorer DoS
document Browser hangs on malcrafted PNG image.
 Mozilla Firefox / Opera / Microsoft Internet Explorer browsers DoS
document window.sidebar.addPanel() in the loop causes browser to hang.
7!Microsoft Windows Media Encoder ActiveX code execution
document Control supports unsafe methods.
6!Microsoft Windows Media Player memory corruption
document Server-Side playlists parsing memory corruption.
8!Microsoft Windows GDI library multiple security vulnerabilities
document Multiple vulnerabilities on different graphics format parsing.
8!Microsoft Internet Explorer multiple security vulnerabilities
updated since 12.08.2008
document Multiple memory corruptions, MHTML crossite scripting.
 Microsoft Windows IPSec policies vulnerability
document Under certain conditions rules are not applied after Windows 2003 domain is migrated to Windows 2008.
7!Microsoft Windows Explorercode execution
document Problem while parsing saved search files .search-ms.
6!Microsoft Windows PGM DoS
document Infinite loop on PGM packet parsing.
 Microsoft Active Directory DoS
document Uninitialized memory reference on LDAP processing.
7!Microsoft DirectX code execution
document MJPEG format AVI and ASF files parsing vulnerability, SAMI files parsing vulnerability.
6!Microsoft Internet Explorer multiple security vulnerabilities
document Crossite scripting, information leak.
6!Microsoft Windows Realtek HD Audio privilege escalation
document Multiple security vulnerabilities on IOCTL processing.
6!Microsoft Internet Explorer memory corruption
updated since 08.04.2008
document Memory corruption on datasream processing.
8!Microsoft Windows multiple ActiveX elements security update
updated since 08.04.2008
document Code execution in hxvz.dll.
9!Microsoft Windows GDI multiple security vulnerabilities
updated since 08.04.2008
document Multiple buffer overflows on EMF and WMF files parsing.
6!Microsoft Windows privilege escalation
document Code execution in kernel context.
 Microsoft Internet Explorer / mozilla Firefox address spoofing
   
6!Microsoft Internet Explorer 7 request modification
document Headers manipulation and invalid chunked encoding processing allow response splitting.
                    

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod

 
 



Rating@Mail.ru