Security
Headlines
HeadlinesLatestCVEs

Tag

#Windows Workstation Service

CVE-2024-38050: Windows Workstation Service Elevation of Privilege Vulnerability

**What privileges could be gained by an attacker who successfully exploited this vulnerability?** If successfully exploited, this vulnerability could case attacker-controlled data on the heap to overwrite critical structures of the service, leading to arbitrary memory write or control flow hijacking, resulting in privilege escalation

Microsoft Security Response Center
Open in Source
#vulnerability#windows#Windows Workstation Service#Security Vulnerability
CVE-2023-21549: Windows SMB Witness Service Elevation of Privilege Vulnerability

**How could an attacker exploit the vulnerability?** To exploit this vulnerability, an attacker could execute a specially crafted malicious script which executes an RPC call to an RPC host. This could result in elevation of privilege on the server.

CVE-2022-38034: Windows Workstation Service Elevation of Privilege Vulnerability

**What privileges could an attacker gain?** An attacker who successfully exploited this vulnerability could execute RPC functions that are restricted to local clients only.