Vulnerability & Exploit Database

Displaying entries 141 - 150 of 126650 in total

Microsoft CVE-2018-0828: Windows Elevation of Privilege Vulnerability Vulnerability

  • Severity: 4
  • Published: February 12, 2018

An elevation of privilege vulnerability exists in Microsoft Windows when the MultiPoint management account password is improperly secured. An attacker who successfully exploited this vulnerability could run arbitrary code with elevated privileges. To exploit this vulnerability, an attacker must first log on to the system. An attacker cou...

Microsoft CVE-2018-0822: Windows NTFS Global Reparse Point Elevation of Privilege Vulnerability Vulnerability

  • Severity: 4
  • Published: February 12, 2018

An elevation of privilege vulnerability exists when NTFS improperly handles objects. An attacker who successfully exploited this vulnerability could run processes in an elevated context. To exploit the vulnerability, an attacker would first have to log on to the system, and then run a specially crafted application to take control over th...

Microsoft CVE-2018-0809: Windows Kernel Elevation of Privilege Vulnerability Vulnerability

  • Severity: 4
  • Published: February 12, 2018

An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. To explo...

Microsoft CVE-2018-0839: Microsoft Edge Information Disclosure Vulnerability Vulnerability

  • Severity: 4
  • Published: February 12, 2018

An information disclosure vulnerability exists when Microsoft Edge improperly handles objects in memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user’s system. To exploit the vulnerability, in a web-based attack scenario, an attacker could host a website in an attempt to...

Microsoft CVE-2018-0771: Microsoft Edge Security Feature Bypass Vulnerability Vulnerability

  • Severity: 4
  • Published: February 12, 2018

A security feature bypass vulnerability exists when Microsoft Edge improperly handles requests of different origins. The vulnerability allows Microsoft Edge to bypass Same-Origin Policy (SOP) restrictions, and to allow requests that should otherwise be ignored. An attacker who successfully exploited the vulnerability could force the brow...