CVE-2020-0666: An elevation of privilege vulnerability exists in the way that the Windows Search Indexer handles objects in memory, aka 'Windows Search Indexer Elevation of…

CVE-2020-0735 [HIGH] CWE-269 GHSA-r6f5-w32f-xrmh: An elevation of privilege vulnerability exists in the way that the Windows Search Indexer handles objects in memory, aka 'Windows Search Indexer Eleva An elevation of privilege vulnerability exists in the way that the Windows Search Indexer handles objects in memory, aka 'Windows Search Indexer Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0666, CVE-2020-0667, CVE-2020-0752.

CVE-2020-0667 [HIGH] CWE-269 GHSA-gmx5-h6f8-cq7c: An elevation of privilege vulnerability exists in the way that the Windows Search Indexer handles objects in memory, aka 'Windows Search Indexer Eleva An elevation of privilege vulnerability exists in the way that the Windows Search Indexer handles objects in memory, aka 'Windows Search Indexer Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0666, CVE-2020-0735, CVE-2020-0752.

CVE-2020-0752 [HIGH] CWE-269 GHSA-m462-grgg-59g3: An elevation of privilege vulnerability exists in the way that the Windows Search Indexer handles objects in memory, aka 'Windows Search Indexer Eleva An elevation of privilege vulnerability exists in the way that the Windows Search Indexer handles objects in memory, aka 'Windows Search Indexer Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0666, CVE-2020-0667, CVE-2020-0735.

CVE-2020-0666 [HIGH] CWE-269 GHSA-87mf-ppcq-p9hx: An elevation of privilege vulnerability exists in the way that the Windows Search Indexer handles objects in memory, aka 'Windows Search Indexer Eleva An elevation of privilege vulnerability exists in the way that the Windows Search Indexer handles objects in memory, aka 'Windows Search Indexer Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0667, CVE-2020-0735, CVE-2020-0752.

CVE-2020-0666 [HIGH] Windows Search Indexer Elevation of Privilege Vulnerability Windows Search Indexer Elevation of Privilege Vulnerability Description: An elevation of privilege vulnerability exists in the way that the Windows Search Indexer handles objects in memory. An attacker who successfully exploited the vulnerability could execute code with elevated permissions. To exploit the vulnerability, a locally authenticated attacker could run a specially crafted application. The security update addresses the vulnerability by ensuring the Windows Search Indexer properly handles objects in memory. Microsoft Windows: Microsoft Windows Microsoft: Microsoft Impact: Elevation of Privilege Exploit Status: Publicly Disclosed:No;Exploited:No;Latest Software Release:Exploitation Less Likely;Older Software Release:Exploitation Less Likely;DOS:N/A Reference: https://catalog.

CVE-2020-7063 [MEDIUM] CWE-284 php: Files added to tar with Phar::buildFromIterator have all-access permissions php: Files added to tar with Phar::buildFromIterator have all-access permissions In PHP versions 7.2.x below 7.2.28, 7.3.x below 7.3.15 and 7.4.x below 7.4.3, when creating PHAR archive using PharData::buildFromIterator() function, the files are added with default permissions (0666, or all access) even if the original files on the filesystem were with more restrictive permissions. This may result in files having more lax permissions than intended when such archive is extracted. Package: php (Red Hat Enterprise Linux 5) - Out of support scope Package: php53 (Red Hat Enterprise Linux 5) - Out of support scope Package: php (Red Hat Enterprise Linux 6) - Out of support scope Package: php (Red Hat Enterprise Linux 7) - Will not fix Package: php:7.2/php (Red Hat Enterprise Linux 8) - Will

[HIGH] Microsoft Patch Tuesday — Feb. 2020: Vulnerability disclosures and Snort coverage By Jon Munshaw. Microsoft released its monthly security update today, disclosing vulnerabilities across many of its products and releasing corresponding updates. This month's Patch Tuesday covers 98 vulnerabilities, 12 of which are considered critical and 84 that are considered important. There are also two bugs that were not assigned a severity. This month's patches include updates to the Windows kernel, the Windows scripting engine and Remote Desktop Procol, among other software and features. Microsoft also provided a critical advisory covering updates to Adobe Flash Player. Talos released a new set of SNORTⓇ rules today that provide coverage for some of these vulnerabilities, which you can see here. ### Critical vulnerabilities Microsoft disclosed 12 critical vulnerabilities this mo

[HIGH] Microsoft Patch Tuesday — Feb. 2020: Vulnerability disclosures and Snort coverage ## Microsoft Patch Tuesday — Feb. 2020: Vulnerability disclosures and Snort coverage By Jon Munshaw. Microsoft released its monthly security update today, disclosing vulnerabilities across many of its products and releasing corresponding updates. This month's Patch Tuesday covers 98 vulnerabilities, 12 of which are considered critical and 84 that are considered important. There are also two bugs that were not assigned a severity. This month's patches include updates to the Windows kernel, the Windows scripting engine and Remote Desktop Procol, among other software and features. Microsoft also provided a critical advisory covering updates to Adobe Flash Player. Talos released a new set of SNORTⓇ rules today that provide coverage for some of these vulnerabilities, which you can see here

CVE-2020-15708 [CRITICAL] CVE-2020-15708 libvirt: incorrect permissions on the UNIX domain socket allows local attacker to escalate privileges CVE-2020-15708 libvirt: incorrect permissions on the UNIX domain socket allows local attacker to escalate privileges A vulnerability was found in libvirt, where an incorrect permissions on the UNIX domain socket. A local attacker could use this issue to access libvirt and escalate privileges. References: https://bugs.mageia.org/27038 Discussion: Created libvirt tracking bugs for this issue: Affects: fedora-all [bug 1866271] Created mingw-libvirt tracking bugs for this issue: Affects: fedora-all [bug 1866272] --- This is an Ubuntu specific flaw because they change the libvirt defaults in their distro to disable use of polkit for authentication, without also changing the socket permissisons. The normal upstream behaviour is that the socket is mode 0666, and when an unprivileged us

CVE-2020-7063 [MEDIUM] CVE-2020-7063 php: Files added to tar with Phar::buildFromIterator have all-access permissions CVE-2020-7063 php: Files added to tar with Phar::buildFromIterator have all-access permissions In PHP versions 7.2.x below 7.2.28, 7.3.x below 7.3.15 and 7.4.x below 7.4.3, when creating PHAR archive using PharData::buildFromIterator() function, the files are added with default permissions (0666, or all access) even if the original files on the filesystem were with more restrictive permissions. This may result in files having more lax permissions than intended when such archive is extracted. Reference: https://bugs.php.net/bug.php?id=79082 Discussion: Created php tracking bugs for this issue: Affects: fedora-all [bug 1808537] --- Upstream commit for this issue: http://git.php.net/?p=php-src.git;a=commit;h=e5c95234d87fcb8f6b7569a96a89d1e1544749a6 --- This issue has been addressed i