Kategorie: Allgemein

Untrusted pointer dereference in Windows Win32K – ICOMP allows an authorized attacker to elevate privileges locally.

Concurrent execution using shared resource with improper synchronization (‚race condition‘) in Windows Push Notifications allows an authorized attacker to elevate privileges locally.

Use after free in Windows Server Update Service allows an authorized attacker to elevate privileges locally.

Improper removal of sensitive information before storage or transfer in Windows Recovery Environment Agent allows an unauthorized attacker to bypass a security feature with a physical attack.

Acceptance of extraneous untrusted data with trusted data in Windows COM allows an unauthorized attacker to elevate privileges locally.

Null pointer dereference in Windows Redirected Drive Buffering allows an authorized attacker to deny service locally.

Concurrent execution using shared resource with improper synchronization (‚race condition‘) in Windows Biometric Service allows an unauthorized attacker to bypass a security feature with a physical attack.

Information published.

Concurrent execution using shared resource with improper synchronization (‚race condition‘) in Windows User Interface Core allows an authorized attacker to elevate privileges locally.

Heap-based buffer overflow in Windows USB Print Driver allows an unauthorized attacker to elevate privileges with a physical attack.