Kategorie: Allgemein

Concurrent execution using shared resource with improper synchronization (‚race condition‘) in Windows Hyper-V allows an authorized attacker to elevate privileges locally.

Access of resource using incompatible type (‚type confusion‘) in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

Inadequate encryption strength in .NET, .NET Framework, Visual Studio allows an authorized attacker to disclose information over a network.

Improper input validation in Microsoft Office SharePoint allows an authorized attacker to execute code over a network.

Improper input validation in Windows Error Reporting allows an authorized attacker to elevate privileges locally.

Use after free in Inbox COM Objects allows an unauthorized attacker to execute code locally.

Use of uninitialized resource in Windows Kernel allows an authorized attacker to elevate privileges locally.

Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.

External control of file name or path in Windows Core Shell allows an unauthorized attacker to perform spoofing over a network.

Incorrect implementation of authentication algorithm in Microsoft Exchange Server allows an unauthorized attacker to elevate privileges locally.