Computer Security

Microsoft Windows Virtual Address Descriptor manipulation privilege escalation
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



Microsoft Windows Virtual Address Descriptor manipulation privilege escalation
Published:15.10.2008
Source:MICROSOFT
SecurityVulns ID:9367
Type:local
Level:7/10
Description:Integer overflow leads to memory corruption.
Affected:MICROSOFT : Windows XP
 MICROSOFT : Windows 2003 Server
 MICROSOFT : Windows Vista
 MICROSOFT : Windows 2008 Server
CVE:CVE-2008-4036 (Integer overflow in Memory Manager in Microsoft Windows XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, and Server 2008 allows local users to gain privileges via a crafted application that triggers an erroneous decrement of a variable, related to validation of parameters for Virtual Address Descriptors (VADs) and a "memory allocation mapping error," aka "Virtual Address Descriptor Elevation of Privilege Vulnerability.")
Original documentdocumentMICROSOFT, Microsoft Security Bulletin MS08-064 – Important Vulnerability in Virtual Address Descriptor Manipulation Could Allow Elevation of Privilege (956841) (15.10.2008)
Files:Microsoft Security Bulletin MS08-064 – Important Vulnerability in Virtual Address Descriptor Manipulation Could Allow Elevation of Privilege (956841)
Discuss:Read or add your comments to this news (0 comments)
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod

 
 


Rating@Mail.ru
test server