WARNING! Fake news / Disputed / BOGUS

Microsoft Windows XP (win32k.sys) Local Privilege Escalation Exploit

2009-08-04 / 2009-08-05
Credit: NT Internals
Risk: Medium
Local: Yes
Remote: No
CWE: CWE-264


CVSS Base Score: 4.6/10
Impact Subscore: 6.4/10
Exploitability Subscore: 3.9/10
Exploit range: Local
Attack complexity: Low
Authentication: No required
Confidentiality impact: Partial
Integrity impact: Partial
Availability impact: Partial

//////////////////////////////////////////////////////////////////////////////////// // +----------------------------------------------------------------------------+ // // | | // // | Microsoft Corporation - http://www.microsoft.com/ | // // | | // // | Affected Software: | // // | Windows XP Service Pack 2 | // // | Windows XP Service Pack 3 | // // | | // // | Affected Driver: | // // | Multi-User Win32 Driver - win32k.sys <= 5.1.2600.5796 | // // | | // // | Local Privilege Escalation Exploit | // // | For Educational Purposes Only ! | // // | | // // +----------------------------------------------------------------------------+ // // | | // // | NT Internals - http://www.ntinternals.org/ | // // | alex ntinternals org | // // | 30 July 2009 | // // | | // // | References: | // // | Exploiting Common Flaws in Drivers | // // | Ruben Santamarta - http://www.reversemode.com/ | // // | | // // +----------------------------------------------------------------------------+ // //////////////////////////////////////////////////////////////////////////////////// Exploit: http://www.ntinternals.org/win32k/NtUserConsoleControl_Exp.zip Description: http://www.ntinternals.org/index.html#09_07_30

References:

http://www.ntinternals.org/index.html#09_07_30
http://www.ntinternals.org/win32k/NtUserConsoleControl_Exp.zip
(exploit)
http://www.ntinternals.org/index.html#09_07_30
(description)
http://www.milw0rm.com/exploits/9301
http://securitytracker.com/id?1022630
http://hi.baidu.com/azy0922/blog/item/f950cbc2890729130ef47783.html
http://blogs.technet.com/srd/archive/2009/06/11/latest-baidu-public-posting-requires-adminisrator-to-elevate.aspx


Vote for this issue:
50%
50%


 

Thanks for you vote!


 

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.


(*) - required fields.  
{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1
{{ x.comment }}

Copyright 2024, cxsecurity.com

 

Back to Top