Microsoft Windows多个内核权限提升漏洞（MS08-061）

BUGTRAQ ID: 31651,31652,31653 CVECAN ID: CVE-2008-2250,CVE-2008-2252,CVE-2008-2251 Microsoft Windows是微软发布的非常流行的操作系统。 Windows内核未正确验证新窗口创建过程中所传递的窗口属性，未正确验证某些用户态输出，或可能处于双重释放的状态。成功利用此漏洞的攻击者可以运行任意内核态代码。攻击者可随后安装程序；查看、更改或删除数据；或者创建拥有完全用户权限的新帐户。 以下是双重释放漏洞的代码段：// Attacker controls lParam void...

Windows Kernel Elevation of Privilege Vulnerability (954211)

This host is missing a critical security update according to Microsoft Bulletin MS08-061. OpenVAS Vulnerability Test $Id: secpodms08-061900051.nasl 5934 2017-04-11 12:28:28Z antu123 $ Description: Windows Kernel Elevation of Privilege Vulnerability 954211 Authors: Chandan S Copyright: Copyright C...

Windows Kernel Elevation of Privilege Vulnerability (954211)

This host is missing a critical security update according to Microsoft Bulletin MS08-061. SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

MS08-061: Microsoft Windows Kernel Multiple Privilege Elevation (954211)

The remote host contains a version of the Windows kernel that is vulnerable to a security flaw that could allow a local user to elevate his privileges or to crash it therefore causing a denial of service. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid34406;...