Microsoft Security Response Center Blog Alerts

Improper access control in Microsoft Office allows an authorized attacker to elevate privileges locally.

Uncontrolled resource consumption in Windows Standards-Based Storage Management Service allows an unauthorized attacker to deny service over a network.

Improper input validation in Windows DWM Core Library allows an authorized attacker to elevate privileges locally.

Untrusted pointer dereference in Windows Kernel allows an authorized attacker to elevate privileges locally.

Improper input validation in Azure Local allows an authorized attacker to elevate privileges locally.

Heap-based buffer overflow in Windows Media allows an authorized attacker to execute code locally.

Insertion of sensitive information into log file in Azure Local Cluster allows an authorized attacker to disclose information over an adjacent network.

Improper input validation in Dynamics Business Central allows an authorized attacker to disclose information locally.

Out-of-bounds read in Windows NTFS allows an unauthorized attacker to elevate privileges locally.

Use after free in Windows Win32K – GRFX allows an authorized attacker to elevate privileges locally.