Anfälligkeitssuche        Suche in 187964 CVE Beschreibungen
und 85075 Test Beschreibungen,
Zugriff auf 10,000+ Quellverweise.
Tests   CVE   Alle  

Test Kennung:1.3.6.1.4.1.25623.1.0.800442
Kategorie:Windows
Titel:Microsoft Windows GP Trap Handler Privilege Escalation Vulnerability
Zusammenfassung:The host is installed with Microsoft Windows operating system and; is prone to Privilege Escalation Vulnerability.;; This NVT has been replaced by OID:1.3.6.1.4.1.25623.1.0.900740.
Beschreibung:Summary:
The host is installed with Microsoft Windows operating system and
is prone to Privilege Escalation Vulnerability.

This NVT has been replaced by OID:1.3.6.1.4.1.25623.1.0.900740.

Vulnerability Insight:
This issue is due to the kernel not properly handling certain
exceptions when setting up a VDM (Virtual DOS Machine) context, which
allows users to gain kernel privileges by setting up a crafted 'DM_TIB'
in their 'TEB' and reach the 'Ki386BiosCallReturnAddress()' function via
the '#GP trap handler (nt!KiTrap0D)'.

Vulnerability Impact:
Successful exploitation will allow remote attackers to bypass
certain security restrictions or can gain escalated privileges via specially crafted attack.

Affected Software/OS:
- Microsoft Windows XP Service Pack 3 and prior

- Microsoft Windows 2000 Service Pack 4 and prior

- Microsoft Windows Server 2003 Service Pack 2 and prior

Solution:
No known solution was made available for at least one year since the disclosure
of this vulnerability. Likely none will be provided anymore. General solution options are to upgrade to a newer
release, disable respective features, remove the product or replace the product by another one.

CVSS Score:
7.2

CVSS Vector:
AV:L/AC:L/Au:N/C:C/I:C/A:C

Querverweis: Common Vulnerability Exposure (CVE) ID: CVE-2010-0232
BugTraq ID: 37864
http://www.securityfocus.com/bid/37864
Bugtraq: 20100119 Microsoft Windows NT #GP Trap Handler Allows Users to Switch Kernel Stack (Google Search)
http://www.securityfocus.com/archive/1/509106/100/0/threaded
Cert/CC Advisory: TA10-040A
http://www.us-cert.gov/cas/techalerts/TA10-040A.html
http://seclists.org/fulldisclosure/2010/Jan/341
http://lock.cmpxchg8b.com/c0af0967d904cef2ad4db766a00bc6af/KiTrap0D.zip
http://lists.immunitysec.com/pipermail/dailydave/2010-January/006000.html
Microsoft Security Bulletin: MS10-015
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-015
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8344
http://securitytracker.com/id?1023471
http://secunia.com/advisories/38265
http://www.vupen.com/english/advisories/2010/0179
XForce ISS Database: ms-win-gptrap-privilege-escalation(55742)
https://exchange.xforce.ibmcloud.com/vulnerabilities/55742
CopyrightCopyright (C) 2010 Greenbone Networks GmbH

Dies ist nur einer von 85075 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.

Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.




© 1998-2020 E-Soft Inc. Alle Rechte vorbehalten.