Lucene search

K

MitreCVELIST:CVE-2014-4971

HistoryJul 26, 2014 - 3:00 p.m.

CVE-2014-4971

2014-07-2615:00:00

mitre

www.cve.org

6.2 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

34.5%

Microsoft Windows XP SP3 does not validate addresses in certain IRP handler routines, which allows local users to write data to arbitrary memory locations, and consequently gain privileges, via a crafted address in an IOCTL call, related to (1) the MQAC.sys driver in the MQ Access Control subsystem and (2) the BthPan.sys driver in the Bluetooth Personal Area Networking subsystem.

References

blogs.technet.com/b/srd/archive/2014/10/14/accessing-risk-for-the-october-2014-security-updates.aspx

packetstormsecurity.com/files/127535/Microsoft-XP-SP3-BthPan.sys-Arbitrary-Write-Privilege-Escalation.html

packetstormsecurity.com/files/127536/Microsoft-XP-SP3-MQAC.sys-Arbitrary-Write-Privilege-Escalation.html

packetstormsecurity.com/files/128674/Microsoft-Bluetooth-Personal-Area-Networking-BthPan.sys-Privilege-Escalation.html

seclists.org/fulldisclosure/2014/Jul/96

seclists.org/fulldisclosure/2014/Jul/97

secunia.com/advisories/60974

www.exploit-db.com/exploits/34112

www.exploit-db.com/exploits/34131

www.exploit-db.com/exploits/34982

www.osvdb.org/109387

www.securityfocus.com/archive/1/532843/100/0/threaded

www.securityfocus.com/archive/1/532844/100/0/threaded

www.securityfocus.com/bid/68764

www.securitytracker.com/id/1031025

docs.microsoft.com/en-us/security-updates/securitybulletins/2014/ms14-062

www.korelogic.com/Resources/Advisories/KL-001-2014-002.txt

www.korelogic.com/Resources/Advisories/KL-001-2014-003.txt

6.2 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

34.5%

Related for CVELIST:CVE-2014-4971

securityvulns4 packetstorm4 korelogic2 seebug2 nvd1 exploitpack2 zdt4 openvas1 cve1 canvas1 prion1 nessus1 exploitdb2 kaspersky1