Security Research & Defense

Information from Microsoft about vulnerabilities, mitigations and workarounds, active attacks, security research, tools and guidance

Browse by Tags

Related Posts
  • Blog Post: MS08-025: Win32k vulnerabilities

    MS08-025 addresses several vulnerabilities in win32k.sys where you can execute arbitrary code in kernel mode. These bugs can only be exploited locally and there is no remote vector we are aware of. One of these vulnerabilities deals on how we can bypass some of the ProbeForWrite and ProbeForRead checks...
  • Blog Post: MS08-061 : The case of the kernel mode double-fetch

    MS08-061 addresses several vulnerabilities in win32k.sys where you can execute arbitrary code in kernel mode. These bugs can only be exploited locally and there is no remote vector based on our investigation of the vulnerability. One of these vulnerabilities involves multiple kernel mode accesses...
  • Blog Post: MS13-027: Addressing an issue in the USB driver requiring physical access

    Today we are addressing a vulnerability in the way that the Windows USB drivers handle USB descriptors when enumerating devices. ( KB 2807986 ). This update represents an expansion of our risk assessment methodology to recognize vulnerabilities that may require physical access, but do not require a valid...
  • Blog Post: MS09-001: Prioritizing the deployment of the SMB bulletin

    This month we released an update for SMB that addresses three vulnerabilities. This blog post provides additional information that might help prioritize the deployment of this update, and help explain the risk for code execution. In the bulletin you will see that the cumulative severity rating is...