Lucene search
Symantec Security ResponseSMNTC-70364HistoryOct 14, 2014 - 12:00 a.m.
Microsoft Windows Kernel 'Win32k.sys' CVE-2014-4113 Local Privilege Escalation Vulnerability
2014-10-1400:00:00
Symantec Security Response
www.symantec.com
73
EPSS
0.677
Percentile
98.0%
Description
Microsoft Windows is prone to a local privilege-escalation vulnerability. A local attacker can exploit this issue to execute arbitrary code with elevated privileges and gain access to kernel memory.
Technologies Affected
- Microsoft Exchange Server 2003 SP2
- Microsoft Windows 7 for 32-bit Systems SP1
- Microsoft Windows 7 for x64-based Systems SP1
- Microsoft Windows 8 for 32-bit Systems
- Microsoft Windows 8 for x64-based Systems
- Microsoft Windows 8.1 for 32-bit Systems
- Microsoft Windows 8.1 for x64-based Systems
- Microsoft Windows RT 8.1
- Microsoft Windows RT
- Microsoft Windows Server 2003 Itanium SP2
- Microsoft Windows Server 2003 x64 Edition Service Pack 2
- Microsoft Windows Server 2008 R2 for Itanium-based Systems SP1
- Microsoft Windows Server 2008 R2 for x64-based Systems SP1
- Microsoft Windows Server 2008 for 32-bit Systems SP2
- Microsoft Windows Server 2008 for Itanium-based Systems SP2
- Microsoft Windows Server 2008 for x64-based Systems SP2
- Microsoft Windows Server 2012
- Microsoft Windows Server 2012 R2
- Microsoft Windows Vista Service Pack 2
- Microsoft Windows Vista x64 Edition Service Pack 2
Recommendations
Permit local access for trusted individuals only. Where possible, use restricted environments and restricted shells.
To exploit this vulnerability, an attacker requires local access to an affected computer. Grant local access for trusted and accountable users only.
Updates are available. Please see the references or vendor advisory for more information.
Related
zdt
zdt
Microsoft Windows - Kernel 'win32k.sys' Privilege Escalation (MS14-058)
2016-04-05 00:00:00
Windows 8.0 - 8.1 x64 TrackPopupMenu Privilege Escalation (MS14-058) Exploit
2015-05-20 00:00:00
Windows TrackPopupMenu Win32k NULL Pointer Dereference Exploit
2014-10-29 00:00:00
cvelist
cvelist
CVE-2014-4113
2014-10-15 10:00:00
exploitdb
exploitdb
exploitpack
exploitpack
packetstorm
packetstorm
Windows TrackPopupMenu Win32k NULL Pointer Dereference
2014-10-28 00:00:00
Windows 8.0 / 8.1 x64 TrackPopupMenu Privilege Escalation
2015-05-21 00:00:00
Microsoft Windows Net-NTLMv2 Reflection DCOM/RPC Privilege Escalation
2019-01-16 00:00:00
seebug
seebug
Windows TrackPopupMenu Win32k NULL Pointer Dereference
2014-11-13 00:00:00
MS14-058 Windowsε
ζ ΈζζζΌζ΄ (CVE-2014-4113)
2016-01-29 00:00:00
thn
thn
Hackers Infect 50,000 MS-SQL and PHPMyAdmin Servers with Rootkit Malware
2019-05-29 18:50:00
State-Sponsored SCADA Malware targeting European Energy Companies
2016-07-13 00:12:00
metasploit
metasploit
Windows TrackPopupMenu Win32k NULL Pointer Dereference
2014-10-23 23:51:30
Windows Net-NTLMv2 Reflection DCOM/RPC
2018-08-03 06:09:24
Windows Net-NTLMv2 Reflection DCOM/RPC (Juicy)
2019-01-10 16:20:43
cisa_kev
cisa_kev
Microsoft Win32k Privilege Escalation Vulnerability
2022-05-04 00:00:00
attackerkb
attackerkb
CVE-2014-4113
2014-10-15 00:00:00
prion
prion
Privilege escalation
2014-10-15 10:55:00
cve
cve
CVE-2014-4113
2014-10-15 10:55:07
threatpost
threatpost
50k Servers Infected with Cryptomining Malware in Nansh0u Campaign
2019-05-29 13:00:27
Malware Dropper Built to Target European Energy Company
2016-07-12 09:31:54
Researchers Crack Furtim, SFG Malware Connection
2016-07-18 13:26:09
nvd
nvd
CVE-2014-4113
2014-10-15 10:55:07
nessus
nessus
openvas
openvas
myhack58
myhack58
githubexploit
githubexploit
Exploit for Vulnerability in Winmagic Securedoc
2020-06-30 23:01:33
fireeye
fireeye
CARBANAK Week Part Two: Continuing the CARBANAK Source Code Analysis
2019-04-23 17:45:00
securityvulns
securityvulns
Microsoft Windows multiple security vulnerabilities
2014-10-15 00:00:00
kaspersky
kaspersky
KLA10601 Multiple vulnerabilities in Microsoft products
2014-11-11 00:00:00