Browsing the "windows" Tag

Stuck with Windows 7? Here’s a security game plan

January 21st, 2020 📆 | 7968 Views ⚑

Last week, Microsoft’s Windows 7, once the go-to operating system of nearly 60 percent of all computers, reached the company’s

Tagged with: security • stuck • windows

WTF, EFS? Experts warn Windows encryption could spawn nasty new ransomware • DigitalMunition

January 21st, 2020 📆 | 6884 Views ⚑

The encryption technology Microsoft uses to protect its own file system could also be turned into a weapon for ransomware

Tagged with: could • encryption • experts • nasty • ransomware • spawn • windows

Plantronics Hub up to 3.13 on Windows Client Application privilege escalation

January 20th, 2020 📆 | 1851 Views ⚑

CVSS Meta Temp Score CVSS is a standardized scoring system to determine possibilities of attacks. The Temp Score considers temporal

Tagged with: application • client • escalation • plantronics • privilege • windows

Week in review: Windows crypto flaw, API security risks, exploits for Citrix security hole abound

January 19th, 2020 📆 | 8414 Views ⚑

Here’s an overview of some of last week’s most interesting news and articles: Cable Haunt: Unknown millions of Broadcom-based cable

Tagged with: citrix • crypto • exploits • review • risks • security • windows

Intel SNMP Subagent Stand-Alone on Windows Installer Search Path privilege escalation

January 19th, 2020 📆 | 5112 Views ⚑

CVSS Meta Temp Score CVSS is a standardized scoring system to determine possibilities of attacks. The Temp Score considers temporal

Tagged with: alone • installer • intel • search • stand • subagent • windows

Intel RWC 3 prior 7.010.009.000 on Windows Permission privilege escalation

January 19th, 2020 📆 | 4518 Views ⚑

CVSS Meta Temp Score CVSS is a standardized scoring system to determine possibilities of attacks. The Temp Score considers temporal

Tagged with: escalation • intel • permission • prior • privilege • windows

Intel VTune Amplifier up to Update 7 on Windows Access Control privilege escalation

January 19th, 2020 📆 | 3022 Views ⚑

CVSS Meta Temp Score CVSS is a standardized scoring system to determine possibilities of attacks. The Temp Score considers temporal

Tagged with: access • amplifier • control • intel • update • vtune • windows

Trend Micro Password Manager on Windows/macOS RootCA.crt privilege escalation

January 18th, 2020 📆 | 6269 Views ⚑

A vulnerability has been found in Trend Micro Password Manager on Windows/macOS (the affected version is unknown) and classified as

Tagged with: macos • manager • micro • password • rootca • trend • windows

Microsoft Windows 10 (19H1 1901 x64) – ‘ws2ifsl.sys’ Use After Free Local Privilege Escalation (kASLR kCFG SMEP)

January 18th, 2020 📆 | 2270 Views ⚑

/* The exploit works on 19H1. It was tested with ntoskrnl version 10.0.18362.295 EDB Note: Download ~ https://github.com/offensive-security/exploitdb-bin-sploits/raw/master/bin-sploits/47935.zip */ #include

Tagged with: after • escalation • local • microsoft • privilege • windows • ws2ifsl

Microsoft Windows – CryptoAPI (Crypt32.dll) Elliptic Curve Cryptography (ECC) Spoof Code-Signing Certificate

January 18th, 2020 📆 | 2563 Views ⚑

# EDB Note ~ Download: https://github.com/offensive-security/exploitdb-bin-sploits/raw/master/bin-sploits/47933.zip require 'openssl' raw = File.read "ca.crt" ca_cert = OpenSSL::X509::Certificate.new(raw) # Parse public key from

Tagged with: crypt32 • cryptoapi • cryptography • curve • elliptic • microsoft • windows

How Malware Gains Trust by Abusing the Windows CryptoAPI Flaw

January 17th, 2020 📆 | 4146 Views ⚑

The new Windows CryptoAPI CVE-2020-0601 vulnerability disclosed by the NSA can be abused by malware developers to sign their executables

Tagged with: abusing • cryptoapi • gains • malware • trust • windows

BSOD caused by new Windows Malware Disguised as WAV

January 17th, 2020 📆 | 5310 Views ⚑

Security researchers from Guardicore revealed a sophisticated malware attack that managed to compromise some 800 devices belonging to a medium-sized

Tagged with: caused • disguised • malware • windows

Why you must update Windows 10 immediately: Government agencies issue warning about “critical flaw”

January 17th, 2020 📆 | 3191 Views ⚑

Following reports that America’s National Security Agency had uncovered a severe and critical flaw in Windows 10, Microsoft has now

Tagged with: agencies • government • immediately • issue • update • warning • windows

Leaving Windows 7 in Production Puts You at High Risk of Ransomware Attack

January 17th, 2020 📆 | 3984 Views ⚑

Tagged with: attack • leaving • production • ransomware • windows

US Intelligence Agency Warns About Windows 10 Security Flaw;

January 17th, 2020 📆 | 1870 Views ⚑

Tagged with: about • agency • intelligence • security • warns • windows

A Windows 10 Vulnerability Was Used to Rickroll the NSA and Github

January 17th, 2020 📆 | 6460 Views ⚑

Less than a day after Microsoft disclosed one of the most critical Windows vulnerabilities ever, a security researcher has demonstrated

Tagged with: github • rickroll • vulnerability • windows

Critical Windows 10 vulnerability used to Rickroll the NSA and Github

January 16th, 2020 📆 | 5007 Views ⚑

Enlarge / Chrome on Windows 10 as it Rickrolls the NSA. Less than a day after Microsoft disclosed one of

Tagged with: critical • github • rickroll • vulnerability • windows

I’m still on Windows 7 – what should I do? | Technology

January 16th, 2020 📆 | 5209 Views ⚑

I do a lot of work on a Windows 7 desktop PC that is about five years old. I’m a

Tagged with: should • still • technology • windows

Microsoft urges critical Windows 10 patch | Information Age

January 16th, 2020 📆 | 7667 Views ⚑

Windows 10 is open to exploitation unless you update. Image: Shutterstock Microsoft has pushed out its latest security updates that

Tagged with: critical • information • microsoft • patch • urges • windows

Microsoft Windows up to Server 2019 Media Service privilege escalation

January 16th, 2020 📆 | 4245 Views ⚑

CVSS Meta Temp Score CVSS is a standardized scoring system to determine possibilities of attacks. The Temp Score considers temporal

Tagged with: escalation • media • microsoft • privilege • server • service • windows

Microsoft Windows up to Server 2019 Win32k memory corruption

January 16th, 2020 📆 | 1649 Views ⚑

CVSS Meta Temp Score CVSS is a standardized scoring system to determine possibilities of attacks. The Temp Score considers temporal

Tagged with: corruption • memory • microsoft • server • win32k • windows

PyInstaller up to 3.5 on Windows Onefile Mode TempPath privilege escalation

January 16th, 2020 📆 | 7126 Views ⚑

CVSS Meta Temp Score CVSS is a standardized scoring system to determine possibilities of attacks. The Temp Score considers temporal

Tagged with: escalation • onefile • privilege • pyinstaller • temppath • windows

Critical Windows 10 vulnerability used to Rickroll the NSA and Github

January 16th, 2020 📆 | 2275 Views ⚑

Enlarge / Chrome on Windows 10 as it Rickrolls the NSA. Less than a day after Microsoft disclosed one of

Tagged with: critical • github • rickroll • vulnerability • windows

Viscosity 1.8.2 on Windows/macOS OpenVPN Parameter Code Execution

January 16th, 2020 📆 | 8602 Views ⚑

CVSS Meta Temp Score CVSS is a standardized scoring system to determine possibilities of attacks. The Temp Score considers temporal

Tagged with: execution • macos • openvpn • parameter • viscosity • windows