4 matches found
Microsoft Windows内核句柄本地权限提升漏洞(MS09-006)
BUGTRAQ ID: 34027 CVECAN ID: CVE-2009-0082 Microsoft Windows是微软发布的非常流行的操作系统。 在执行某些操作时,Windows内核没有正确地验证句柄。拥有有效登录凭据的本地攻击者可以利用这个漏洞执行任意内核态代码,然后可以安装程序;查看、更改或删除数据;或创建拥有完全用户权限的新帐号。 Microsoft Windows XP SP3 Microsoft Windows XP SP2 Microsoft Windows XP Professional x64 Edition Microsoft Windows Vista SP1...
MS09-006: Vulnerabilities in Windows Kernel Could Allow Remote Code Execution (958690)
The remote host contains a version of the Windows kernel that is affected by vulnerabilities : - A remote code execution vulnerability exists due to improper validation of input passed from user mode through the kernel component of GDI. Successful exploitation requires that a user on the affected...
CVE-2009-0082
The kernel in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, and Server 2008 does not properly validate handles, which allows local users to gain privileges via a crafted application that triggers unspecified "actions," aka "Windows Kernel Handle Validati...
CVE-2009-0082
CVE-2009-0082 is a Windows kernel local privilege-escalation vulnerability caused by improper validation of handles when performing certain actions. Affected systems include Windows 2000 SP4, XP SP2/SP3, Server 2003 SP1/SP2, Vista (Gold/SP1), and Server 2008. An attacker with valid logon credenti...