5 matches found
Microsoft Windows内核参数和指针验证权限提升漏洞(MS09-025)
BUGTRAQ ID: 35240,35238 CVECAN ID: CVE-2009-1125,CVE-2009-1124 Microsoft Windows是微软发布的非常流行的操作系统。 Windows内核没有正确地验证传递给系统调用的参数,以及从用户态传递的某些指针,导致权限提升漏洞。成功利用此漏洞的攻击者可以运行内核态中的任意代码。攻击者可随后安装程序;查看、更改或删除数据;或者创建拥有完全用户权限的新帐户。 Microsoft Windows XP SP3 Microsoft Windows XP SP2 Microsoft Windows Vista SP2 Microso...
CVE-2009-1124
This CVE entry covers multiple Windows kernel privilege-escalation flaws (CVE-2009-1123, -1124, -1125, -1126) related to improper validation of changes to kernel objects, user-mode pointers, system-call arguments, and certain desktop parameters. Exploitation is local and requires valid logon cred...
Vulnerabilities in Windows Kernel Could Allow Elevation of Privilege (968537)
This host is missing a critical security update according to Microsoft Bulletin MS09-025. OpenVAS Vulnerability Test $Id: secpodms09-025.nasl 5934 2017-04-11 12:28:28Z antu123 $ Vulnerabilities in Windows Kernel Could Allow Elevation of Privilege 968537 Authors: Antu Sanadi Updated By: Madhuri D ...
Vulnerabilities in Windows Kernel Could Allow Elevation of Privilege (968537)
This host is missing a critical security update according to Microsoft Bulletin MS09-025. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
MS09-025: Vulnerabilities in Windows Kernel Could Allow Elevation of Privilege (968537)
The remote host contains a version of the Windows kernel that is affected by multiple vulnerabilities : - A failure of the Windows kernel to properly validate changes in certain kernel objects allows a local user to run arbitrary code in kernel mode. CVE-2009-1123 - Insufficient validation of...