CVSS: 7.8EPSS: 0%CPEs: 10EXPL: 0CVE-2015-2363
https://notcve.org/view.php?id=CVE-2015-2363
14 Jul 2015 — win32k.sys in the kernel-mode drivers in Microsoft Windows Server 2003 SP2 and R2 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012, and Windows RT allows local users to gain privileges via a crafted application, aka "Win32k Elevation of Privilege Vulnerability." Win32k.sys en los controladores de modo kernel en Microsoft Windows Server 2003 SP2 y R2 SP2, Windows Vista SP2, Windows Server 2008 SP2 y R2 SP1, Windows 7 SP1, Windows 8, Window... • http://www.securitytracker.com/id/1032904 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 7.8EPSS: 0%CPEs: 14EXPL: 0CVE-2015-2364
https://notcve.org/view.php?id=CVE-2015-2364
14 Jul 2015 — The graphics component in Microsoft Windows Server 2003 SP2 and R2 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows local users to gain privileges via a crafted application that leverages an incorrect bitmap conversion, aka "Graphics Component EOP Vulnerability." El componente gráfico en Microsoft Windows Server 2003 SP2 y R2 SP2, Windows Vista SP2, Windows Server 2008 SP2 y R2 SP1, Windows ... • http://www.securitytracker.com/id/1032902 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 7.8EPSS: 12%CPEs: 14EXPL: 2CVE-2015-2365 – Microsoft Windows Kernel - 'UserCommitDesktopMemory' Use-After-Free (MS15-073)
https://notcve.org/view.php?id=CVE-2015-2365
14 Jul 2015 — win32k.sys in the kernel-mode drivers in Microsoft Windows Server 2003 SP2 and R2 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows local users to gain privileges via a crafted application, aka "Win32k Elevation of Privilege Vulnerability." win32k.sys en los controladores del modo kernel en Microsoft Windows Server 2003 SP2 y R2 SP2, Windows Vista SP2, Windows Server 2008 SP2 y R2 SP1, Window... • https://packetstorm.news/files/id/133656 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 5.5EPSS: 0%CPEs: 14EXPL: 0CVE-2015-2367 – Microsoft Windows NtUserDisableProcessWindowFiltering Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2015-2367
14 Jul 2015 — win32k.sys in the kernel-mode drivers in Microsoft Windows Server 2003 SP2 and R2 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows local users to obtain sensitive information from uninitialized kernel memory via a crafted application, aka "Win32k Information Disclosure Vulnerability." Win32k.sys en los controladores de modo kernel en Microsoft Windows Server 2003 SP2 y R2 SP2, Windows Vista ... • http://www.securitytracker.com/id/1032904 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 7.2EPSS: 7%CPEs: 14EXPL: 1CVE-2015-2370 – Microsoft Windows 8.1 - DCOM DCE/RPC Local NTLM Reflection Privilege Escalation (MS15-076)
https://notcve.org/view.php?id=CVE-2015-2370
14 Jul 2015 — The authentication implementation in the RPC subsystem in Microsoft Windows Server 2003 SP2 and R2 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 does not prevent DCE/RPC connection reflection, which allows local users to gain privileges via a crafted application, aka "Windows RPC Elevation of Privilege Vulnerability." La implementación de autenticación en el sub-sistema RPC en Microsoft Windows ... • https://www.exploit-db.com/exploits/37768 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 7.8EPSS: 32%CPEs: 14EXPL: 0CVE-2015-2387 – Microsoft ATM Font Driver Privilege Escalation Vulnerability
https://notcve.org/view.php?id=CVE-2015-2387
14 Jul 2015 — ATMFD.DLL in the Adobe Type Manager Font Driver in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows local users to gain privileges via a crafted application, aka "ATMFD.DLL Memory Corruption Vulnerability." ATMFD.DLL en el Controlador de Adobe Type Manager Font en Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 y R2 SP1, Windows 7 S... • http://www.securityfocus.com/bid/75587 • CWE-264: Permissions, Privileges, and Access Controls CWE-787: Out-of-bounds Write •
CVSS: 8.4EPSS: 13%CPEs: 14EXPL: 0CVE-2015-2416
https://notcve.org/view.php?id=CVE-2015-2416
14 Jul 2015 — OLE in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows remote attackers to gain privileges via crafted input, as demonstrated by a transition from Low Integrity to Medium Integrity, aka "OLE Elevation of Privilege Vulnerability," a different vulnerability than CVE-2015-2417. El objeto OLE en Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2... • http://www.securitytracker.com/id/1032906 • CWE-20: Improper Input Validation •
CVSS: 8.4EPSS: 13%CPEs: 14EXPL: 0CVE-2015-2417
https://notcve.org/view.php?id=CVE-2015-2417
14 Jul 2015 — OLE in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows remote attackers to gain privileges via crafted input, as demonstrated by a transition from Low Integrity to Medium Integrity, aka "OLE Elevation of Privilege Vulnerability," a different vulnerability than CVE-2015-2416. OLE en Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 y ... • http://www.securitytracker.com/id/1032906 • CWE-20: Improper Input Validation •
CVSS: 7.3EPSS: 4%CPEs: 5EXPL: 0CVE-2015-2369
https://notcve.org/view.php?id=CVE-2015-2369
14 Jul 2015 — Untrusted search path vulnerability in Windows Media Device Manager in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, and Windows 7 SP1 allows local users to gain privileges via a Trojan horse DLL in the current working directory, as demonstrated by a directory that contains a .rtf file, aka "DLL Planting Remote Code Execution Vulnerability." Vulnerabilidad en la busqueda de ruta no confiable de Windows Media Device Manager en Microsoft Windows Server 2003 SP2, Win... • http://www.securitytracker.com/id/1032898 •
CVSS: 7.4EPSS: 1%CPEs: 8EXPL: 0CVE-2015-2374
https://notcve.org/view.php?id=CVE-2015-2374
14 Jul 2015 — The Netlogon service in Microsoft Windows Server 2003 SP2 and R2 SP2, Windows Server 2008 SP2 and R2 SP1, and Windows Server 2012 Gold and R2 does not properly implement domain-controller communication, which allows remote attackers to discover credentials by leveraging certain PDC access and spoofing the BDC role in a PDC communication channel, aka "Elevation of Privilege Vulnerability in Netlogon." El servicio Netlogon en Microsoft Windows Server 2003 SP2 y R2 SP2, Windows Server 2008 SP2 y R2 SP1, y Wind... • http://www.securityfocus.com/bid/75633 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •