Giorgius
14-07-2004, 11.15.16
Microsoft Windows POSIX Subsystem Privilege Escalation Vulnerability
Effetti:
Rafal Wojtczuk has reported a vulnerability in Microsoft Windows, which can be exploited by malicious, local users to gain escalated privileges.
The vulnerability is caused due to a boundary error within the POSIX subsystem and can be exploited to cause a buffer overflow.
Successful exploitation allows execution of arbitrary code with SYSTEM privileges.
Leggi: http://secunia.com/advisories/12062/
Microsoft Internet Information Server Redirection Buffer Overflow Vulnerability
Effetti:
Microsoft has released an update for Internet Information Server. This fixes a vulnerability, allowing malicious people to compromise a vulnerable system.
The vulnerability is caused due to a boundary error in the handling of permanent redirects. This could be exploited by supplying an overly long maliciously crafted URL.
This vulnerability affects Internet Information Server 4.0 on Microsoft Windows NT 4.0.
Leggi: http://secunia.com/advisories/12061/
Microsoft Windows Task Scheduler Buffer Overflow Vulnerability
Effetti:
Microsoft has issued an update for Windows. This fixes a vulnerability, allowing malicious websites to execute arbitrary code on a vulnerable system.
The vulnerability is caused due a boundary error during application name validation in the Task Scheduler ("Mstask.dll"). According to Microsoft, this could lead to system access if the current user has administrative privileges.
This affects Microsoft Windows 2000 and Windows XP. Microsoft Windows NT 4 is also affected if Internet Explorer 6 SP1 is installed.
Leggi: http://secunia.com/advisories/12060/
Effetti:
Rafal Wojtczuk has reported a vulnerability in Microsoft Windows, which can be exploited by malicious, local users to gain escalated privileges.
The vulnerability is caused due to a boundary error within the POSIX subsystem and can be exploited to cause a buffer overflow.
Successful exploitation allows execution of arbitrary code with SYSTEM privileges.
Leggi: http://secunia.com/advisories/12062/
Microsoft Internet Information Server Redirection Buffer Overflow Vulnerability
Effetti:
Microsoft has released an update for Internet Information Server. This fixes a vulnerability, allowing malicious people to compromise a vulnerable system.
The vulnerability is caused due to a boundary error in the handling of permanent redirects. This could be exploited by supplying an overly long maliciously crafted URL.
This vulnerability affects Internet Information Server 4.0 on Microsoft Windows NT 4.0.
Leggi: http://secunia.com/advisories/12061/
Microsoft Windows Task Scheduler Buffer Overflow Vulnerability
Effetti:
Microsoft has issued an update for Windows. This fixes a vulnerability, allowing malicious websites to execute arbitrary code on a vulnerable system.
The vulnerability is caused due a boundary error during application name validation in the Task Scheduler ("Mstask.dll"). According to Microsoft, this could lead to system access if the current user has administrative privileges.
This affects Microsoft Windows 2000 and Windows XP. Microsoft Windows NT 4 is also affected if Internet Explorer 6 SP1 is installed.
Leggi: http://secunia.com/advisories/12060/