Lucene search
MicrosoftCVELIST:CVE-2009-1922HistoryAug 12, 2009 - 5:00 p.m.
CVE-2009-1922
2009-08-1217:00:00
microsoft
www.cve.org
7
The Message Queuing (aka MSMQ) service for Microsoft Windows 2000 SP4, XP SP2, Server 2003 SP2, and Vista Gold does not properly validate unspecified IOCTL request data from user mode before passing this data to kernel mode, which allows local users to gain privileges via a crafted request, aka “MSMQ Null Pointer Vulnerability.”
References
en.securitylab.ru/lab/PT-2008-09
osvdb.org/56901
secunia.com/advisories/36214
www.securityfocus.com/archive/1/505691/100/0/threaded
www.securitytracker.com/id?1022714
www.us-cert.gov/cas/techalerts/TA09-223A.html
docs.microsoft.com/en-us/security-updates/securitybulletins/2009/ms09-040
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6109
Related
prion
prion
Null pointer dereference
2009-08-12 17:30:00
openvas
openvas
securityvulns
securityvulns
Microsoft Security Bulletin MS09-040 - Important Vulnerability in Message Queuing Could Allow Elevation of Privilege (971032)
2009-08-11 00:00:00
[PT-2008-09] Microsoft Windows MSMQ Privilege Escalation Vulnerability
2009-08-12 00:00:00
Microsoft Windows MSMQ (message queuing) privilege escalation
2009-08-12 00:00:00
nessus
nessus
cve
cve
CVE-2009-1922
2009-08-12 17:30:00
seebug
seebug
Microsoft Windows消息队列服务本地权限提升漏洞(MS09-040)
2009-08-12 00:00:00
ptsecurity
ptsecurity
PT-2008-09: Microsoft Windows MSMQ Privilege Escalation Vulnerability
2009-08-12 00:00:00
nvd
nvd
CVE-2009-1922
2009-08-12 17:30:00