Microsoft Security Response Center Blog Alerts

CVE-2025-24067 Kernel Streaming Service Driver Elevation of Privilege Vulnerability

Posted on Tuesday March 11, 2025

Heap-based buffer overflow in Microsoft Streaming Service allows an authorized attacker to elevate privileges locally.

 

CVE-2025-24066 Kernel Streaming Service Driver Elevation of Privilege Vulnerability

Posted on Tuesday March 11, 2025

Heap-based buffer overflow in Windows Kernel-Mode Drivers allows an authorized attacker to elevate privileges locally.

 

CVE-2025-24064 Windows Domain Name Service Remote Code Execution Vulnerability

Posted on Tuesday March 11, 2025

Use after free in DNS Server allows an unauthorized attacker to execute code over a network.

 

CVE-2025-24061 Windows Mark of the Web Security Feature Bypass Vulnerability

Posted on Tuesday March 11, 2025

Protection mechanism failure in Windows Mark of the Web (MOTW) allows an unauthorized attacker to bypass a security feature locally.

 

CVE-2025-24059 Windows Common Log File System Driver Elevation of Privilege Vulnerability

Posted on Tuesday March 11, 2025

Incorrect conversion between numeric types in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally.

 

CVE-2025-24056 Windows Telephony Service Remote Code Execution Vulnerability

Posted on Tuesday March 11, 2025

Heap-based buffer overflow in Windows Telephony Server allows an unauthorized attacker to execute code over a network.

 

Page:   1...555657585960616263...172

Celebrating 35+ Years

Managed Internet Connections

Contact Us

Support Ends for Windows 10 22H2, Windows Server 2012 R2, Exchange 2013, Office 2016