Windows CSRSS子系统SrvWriteConsoleOutputString权限提升漏洞(CVE-2011-1870)(MS11-056)

BUGTRAQ ID: 48605 CVE ID: CVE-2011-1870 Microsoft Windows是微软发布的非常流行的操作系统。 Microsoft Windows CSRSS子系统SrvWriteConsoleOutputString实现上存在漏洞，本地攻击者可利用此漏洞在内核模式中执行任意代码。 此漏洞源于CSRSS子系统中的SrvWriteConsoleOutputString存在整数溢出漏洞，可造成内存破坏。 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows Server 2008...

CVE-2011-1870

CVE-2011-1870 is an integer overflow vulnerability in the Windows CSRSS component of the Win32 subsystem. The flaw occurs in SrvWriteConsoleOutputString, allowing a local attacker to cause memory corruption and potentially elevate privileges to kernel mode on affected systems (Windows XP SP2/SP3 ...

Microsoft Windows CSRSS winsrv Integer Overflow Code Execution (MS11-056; CVE-2011-1870)

An elevation of privilege vulnerability has been reported in Windows CSRSS. Attackers can exploit this vulnerability to run arbitrary code in kernel mode. Successful exploitation of this vulnerability may result in complete control of an attacker over an affected system...

MS11-056: Vulnerabilities in Windows Client/Server Run-time Subsystem Could Allow Elevation of Privilege (2507938)

The remote host allows elevation of privileges in its Windows Client/Server run-time subsystem CSRSS. An attacker could exploit these vulnerabilities to run arbitrary code in kernel mode. The attacker must have valid login credentials and be able to log on locally in order to exploit these...