Microsoft : Security Vulnerabilities, CVEs, Published In October 2011 CVSS score >= 5
CVE-2011-2005
Known exploited
Public exploit
afd.sys in the Ancillary Function Driver in Microsoft Windows XP SP2 and SP3 and Server 2003 SP2 does not properly validate user-mode input passed to kernel mode, which allows local users to gain privileges via a crafted application, aka "Ancillary Function Driver Elevation of Privilege Vulnerability."
Max CVSS
7.2
EPSS Score
0.08%
Published
2011-10-12
Updated
2019-02-26
CISA KEV Added
2022-03-28
CVE-2011-1996
Public exploit
Microsoft Internet Explorer 6 through 8 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing a deleted object, aka "Option Element Remote Code Execution Vulnerability."
Max CVSS
9.3
EPSS Score
94.46%
Published
2011-10-12
Updated
2022-02-28
2 vulnerabilities found