Security Research & Defense

Friday, January 09, 2009 12:24 PM

MS09-001: Prioritizing the deployment of the SMB bulletin

This month we released an update for SMB that addresses three vulnerabilities. This blog post provides additional information that might help prioritize the deployment of this update, and help explain the risk for code execution. In the bulletin you will

Posted by swiblog | (Comments Off)

Filed under: SMB, rating, kernel, Exploitability

Tuesday, October 14, 2008 10:11 AM

MS08-061 : The case of the kernel mode double-fetch

MS08-061 addresses several vulnerabilities in win32k.sys where you can execute arbitrary code in kernel mode. These bugs can only be exploited locally and there is no remote vector based on our investigation of the vulnerability. One of these vulnerabilities

Posted by swiblog | (Comments Off)

Filed under: ProbeForRead, kernel, win32k.sys, double fetch

Wednesday, April 09, 2008 9:02 AM

MS08-025: Win32k vulnerabilities

MS08-025 addresses several vulnerabilities in win32k.sys where you can execute arbitrary code in kernel mode. These bugs can only be exploited locally and there is no remote vector we are aware of. One of these vulnerabilities deals on how we can bypass

Posted by swiblog | (Comments Off)

Filed under: ProbeForRead, ProbeForWrite, kernel, win32k.sys

Security Research & Defense

This Blog

Syndication

Search

News

Blogroll

Report a Vulnerability to Microsoft

Tags

Recent Posts

Archives

Browse by Tags

MS09-001: Prioritizing the deployment of the SMB bulletin

MS08-061 : The case of the kernel mode double-fetch

MS08-025: Win32k vulnerabilities