All use of Secunia Advisories is for non-commercial use only. No use is permitted for commercial use. For further information, see the End User License Agreement or contact us. If you are an IT security professional, request a trial of the Secunia VIM.

 
Less critical

Microsoft Windows Kernel Information Disclosure and Privilege Escalation Vulnerabilities

-

Release Date:  2014-08-12    Last Update:  2014-08-28    Views:  1,099

Secunia Advisory SA60673

Where:

Log in with your Secunia community profile. If you are an IT security professional, request a trial of the Secunia VIM.

Impact:

Log in with your Secunia community profile. If you are an IT security professional, request a trial of the Secunia VIM.

Solution Status:

Log in with your Secunia community profile. If you are an IT security professional, request a trial of the Secunia VIM.

Software:

Log in with your Secunia community profile. If you are an IT security professional, request a trial of the Secunia VIM.

CVE Reference(s):

Log in with your Secunia community profile. If you are an IT security professional, request a trial of the Secunia VIM.

Description


Multiple vulnerabilities have been reported in Microsoft Windows, which can be exploited by malicious, local users to disclose certain sensitive information and gain escalated privileges


Log in with your Secunia community profile to view the full description of this Advisory. If you are an IT security professional, request a trial of the Secunia VIM.

If you are not a member of the Secunia community, you can sign up here for free.

Do you have additional information related to this advisory?

Please provide information about patches, mitigating factors, new versions, exploits, faulty patches, links, and other relevant data by posting comments to this Advisory. You can also send this information to vuln@secunia.com

Subject: Microsoft Windows Kernel Information Disclosure and Privilege Escalation Vulnerabilities

User Message
pc.tech1 RE: Microsoft Windows Kernel Information Disclosure and Privilege Escalation Vulnerabilities
Member 16th Aug, 2014 14:02
Score: 8
Posts: 22
User Since: 13th Feb 2010
System Score: N/A
Location: US
Last edited on 16th Aug, 2014 14:02
MS14-045 has been withdrawn.
___

MS14-045 - See "Known issues" ...
- https://support.microsoft.com/kb/2982791
Last Review: August 16, 2014 - Revision: 4.0 - "... Status:
Microsoft has -removed- the download links to these updates while these issues are being investigated...
Mitigations: Open the Programs and Features item in Control Panel, and then click View installed updates. Find and then -uninstall- any of the following update that are currently installed:
KB2982791
KB2970228
KB2975719
KB2975331 ..."
(More detail at the URL above.)

- https://technet.microsoft.com/library/security/ms1...
V2.0 (August 15, 2014): Bulletin revised to -remove- Download Center links for Microsoft security update 2982791. Microsoft recommends that customers -uninstall- this update. See the Update FAQ for details.
.

--
This machine has no brain.
Use your own.
.
Was this reply relevant?
+1
-0
pc.tech1 RE: Microsoft Windows Kernel Information Disclosure and Privilege Escalation Vulnerabilities
Member 27th Aug, 2014 21:42
Score: 8
Posts: 22
User Since: 13th Feb 2010
System Score: N/A
Location: US
Last edited on 27th Aug, 2014 21:42
MS14-045 rereleased
Vulnerabilities in Kernel-Mode Drivers Could Allow Elevation of Privilege (2984615)
- https://technet.microsoft.com/en-us/library/securi...
V3.0 (August 27, 2014): Bulletin rereleased to announce the replacement of the 2982791 update with the 2993651 update* for all supported releases of Microsoft Windows. See the Update FAQ for details.

* https://support.microsoft.com/kb/2993651
Last Review: Aug 27, 2014 - Rev: 2.0

- http://blogs.technet.com/b/msrc/archive/2014/08/27...
27 Aug 2014
.

--
This machine has no brain.
Use your own.
.
Was this reply relevant?
+1
-0

-

You must be logged in to post a comment.