Lucene search

[email protected]NVD:CVE-2014-4971

HistoryJul 26, 2014 - 3:55 p.m.

CVE-2014-4971

2014-07-2615:55:04

CWE-20

[email protected]

web.nvd.nist.gov

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

AI Score

6.3

Confidence

High

EPSS

0.001

Percentile

34.5%

JSON

Microsoft Windows XP SP3 does not validate addresses in certain IRP handler routines, which allows local users to write data to arbitrary memory locations, and consequently gain privileges, via a crafted address in an IOCTL call, related to (1) the MQAC.sys driver in the MQ Access Control subsystem and (2) the BthPan.sys driver in the Bluetooth Personal Area Networking subsystem.

Affected configurations

Nvd

Node

microsoftwindows_xpsp3

VendorProductVersionCPE
microsoftwindows_xp*cpe:2.3:o:microsoft:windows_xp:*:sp3:*:*:*:*:*:*

Vendor	Product	Version	CPE
microsoft	windows_xp	*	cpe:2.3:o:microsoft:windows_xp::sp3::::::*

References

blogs.technet.com/b/srd/archive/2014/10/14/accessing-risk-for-the-october-2014-security-updates.aspx

packetstormsecurity.com/files/127535/Microsoft-XP-SP3-BthPan.sys-Arbitrary-Write-Privilege-Escalation.html

packetstormsecurity.com/files/127536/Microsoft-XP-SP3-MQAC.sys-Arbitrary-Write-Privilege-Escalation.html

packetstormsecurity.com/files/128674/Microsoft-Bluetooth-Personal-Area-Networking-BthPan.sys-Privilege-Escalation.html

seclists.org/fulldisclosure/2014/Jul/96

seclists.org/fulldisclosure/2014/Jul/97

secunia.com/advisories/60974

www.exploit-db.com/exploits/34112

www.exploit-db.com/exploits/34131

www.exploit-db.com/exploits/34982

www.osvdb.org/109387

www.securityfocus.com/archive/1/532843/100/0/threaded

www.securityfocus.com/archive/1/532844/100/0/threaded

www.securityfocus.com/bid/68764

www.securitytracker.com/id/1031025

docs.microsoft.com/en-us/security-updates/securitybulletins/2014/ms14-062

www.korelogic.com/Resources/Advisories/KL-001-2014-002.txt

www.korelogic.com/Resources/Advisories/KL-001-2014-003.txt

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

AI Score

6.3

Confidence

High

EPSS

0.001

Percentile

34.5%

JSON

Related for NVD:CVE-2014-4971

securityvulns4 seebug3 metasploit2 korelogic2 packetstorm4 canvas1 zdt4 exploitpack2 cvelist1 openvas1 exploitdb4 cve1 prion1 nessus1 kaspersky1