2 matches found
Microsoft Windows TCP/IP实现IppSortDestinationAddresses()函数整数溢出漏洞(MS10-058)
BUGTRAQ ID: 42254 CVE ID: CVE-2010-1893 Microsoft Windows是微软发布的非常流行的操作系统。 Windows系统中TCP/IP实现的IppSortDestinationAddresses函数在处理SOCKETADDRESSLIST 结构时存在整数溢出漏洞,本地用户可以通过调用WSAIoctl和使用SIOADDRESSLISTSORT IOCTL破坏内核内存,以系统级权限执行任意代码。 在IppSortDestinationAddresses函数的开始处存在以下伪代码: DestinationAddresses =...
CVE-2010-1893
CVE-2010-1893 corresponds to an Integer Overflow in the Windows TCP/IP stack that affects Windows Vista SP1, Windows Server 2008 (Gold/R2), and Windows 7. The vulnerability arises when user-mode data is copied to kernel memory, leading to a pool/heap overflow in the IppSortDestinationAddresses/Ip...