This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Detail
Vendor Microsoft First view 2011-01-20
Product Windows 7 Last view 2015-04-21
Version * Type Os
Update *  
Edition professional  
Language *  
Sofware Edition *  
Target Software *  
Target Hardware *  
Other *  
 
CPE Product cpe:2.3:o:microsoft:windows_7

Activity : Overall

Related : CVE

  Date Alert Description
7.2 2015-04-21 CVE-2015-1701

Win32k.sys in the kernel-mode drivers in Microsoft Windows Server 2003 SP2, Vista SP2, and Server 2008 SP2 allows local users to gain privileges via a crafted application, as exploited in the wild in April 2015, aka "Win32k Elevation of Privilege Vulnerability."

7.6 2011-01-20 CVE-2010-4701

Heap-based buffer overflow in the CDrawPoly::Serialize function in fxscover.exe in Microsoft Windows Fax Services Cover Page Editor 5.2 r2 in Windows XP Professional SP3, Server 2003 R2 Enterprise Edition SP2, and Windows 7 Professional allows remote attackers to execute arbitrary code via a long record in a Fax Cover Page (.cov) file. NOTE: some of these details are obtained from third party information.

CWE : Common Weakness Enumeration

%idName
50% (1) CWE-264 Permissions, Privileges, and Access Controls
50% (1) CWE-119 Failure to Constrain Operations within the Bounds of a Memory Buffer

SAINT Exploits

Description Link
Microsoft Windows Fax Cover Page Editor Double Free Memory Corruption Vulnerability More info here

Open Source Vulnerability Database (OSVDB)

id Description
70126 Microsoft Windows Fax Cover Page Editor CDrawPoly::Serialize() Function Overflow

OpenVAS Exploits

id Description
2011-01-27 Name : Microsoft Windows Fax Cover Page Editor BOF Vulnerabilities
File : nvt/gb_ms_windows_fscpe_bof_vuln.nasl

Information Assurance Vulnerability Management (IAVM)

id Description
2015-A-0108 Multiple Vulnerabilities in Microsoft Windows Kernel-Mode Driver (MS15-051)
Severity: Category II - VMSKEY: V0060653

Snort® IPS/IDS

Date Description
2015-06-23 Microsoft Windows Win32k.sys kernel-mode driver privilege escalation attempt
RuleID : 34499 - Type : OS-WINDOWS - Revision : 3
2015-06-23 Microsoft Windows Win32k.sys kernel-mode driver privilege escalation attempt
RuleID : 34498 - Type : OS-WINDOWS - Revision : 3
2015-03-31 Microsoft Windows Fax Services Cover Page Editor Double Free Memory Corruptio...
RuleID : 33604 - Type : FILE-OTHER - Revision : 2
2015-03-31 Microsoft Windows Fax Services Cover Page Editor Double Free Memory Corruptio...
RuleID : 33603 - Type : FILE-OTHER - Revision : 2

Nessus® Vulnerability Scanner

id Description
2015-05-12 Name: The remote Windows host is affected by multiple vulnerabilities.
File: smb_nt_ms15-051.nasl - Type: ACT_GATHER_INFO
2011-04-13 Name: A fax cover page editor on the remote host has a memory corruption vulnerabil...
File: smb_nt_ms11-024.nasl - Type: ACT_GATHER_INFO