Page 4 of 31 results (0.027 seconds)
CVSS: 7.8EPSS: 8%CPEs: 29EXPL: 2
CVSS: 7.8EPSS: 8%CPEs: 29EXPL: 2CVE-2006-6696 – Microsoft Windows - 'MessageBox' Memory Corruption Local Denial of Service
https://notcve.org/view.php?id=CVE-2006-6696
22 Dec 2006 — Double free vulnerability in Microsoft Windows 2000, XP, 2003, and Vista allows local users to gain privileges by calling the MessageBox function with a MB_SERVICE_NOTIFICATION message with crafted data, which sends a HardError message to Client/Server Runtime Server Subsystem (CSRSS) process, which is not properly handled when invoking the UserHardError and GetHardErrorText functions in WINSRV.DLL. Vulnerabilidad de liberación de memoria doble en Microsoft Windows 2000, XP, 2003, y Vista, permite a usuario... • https://www.exploit-db.com/exploits/2967 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •