Computer Security
[EN] securityvulns.ru no-pyccku


Microsoft Windows Virtual DOS machine privilege escalation
Published:11.04.2007
Source:
SecurityVulns ID:7562
Type:local
Threat Level:
5/10
Description:Race conditions allow to overwrite VDM memory zero page.
Affected:MICROSOFT : Windows 2000 Server
 MICROSOFT : Windows 2000 Professional
 MICROSOFT : Windows XP
 MICROSOFT : Windows 2003 Server
CVE:CVE-2007-1973 (Race condition in the Virtual DOS Machine (VDM) in the Windows Kernel in Microsoft Windows NT 4.0 allows local users to modify memory and gain privileges via the temporary \Device\PhysicalMemory section handle, a related issue to CVE-2007-1206.)
 CVE-2007-1206 (The Virtual DOS Machine (VDM) in the Windows Kernel in Microsoft Windows NT 4.0; 2000 SP4; XP SP2; Server 2003, 2003 SP1, and 2003 SP2; and Windows Vista before June 2006; uses insecure permissions (PAGE_READWRITE) for a physical memory view, which allows local users to gain privileges by modifying the "zero page" during a race condition before the view is unmapped.)
Original documentdocumentEEYE, EEYE: Windows VDM Zero Page Race Condition Privilege Escalation (11.04.2007)
 documentMICROSOFT, Microsoft Security Bulletin MS07-022 Vulnerability in Windows Kernel Could Allow Elevation of Privilege (931784) (11.04.2007)
Files:Microsoft Security Bulletin MS07-022 Vulnerability in Windows Kernel Could Allow Elevation of Privilege (931784)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod