Windows内核畸形PE文件远程拒绝服务漏洞

CVE ID：CVE-2009-2516 Windows 是微软发布的流行操作系统。利用构造特殊PE格式的EXE文件，当文件在软盘、可移动设备或者网络共享上都可导致Windows系统蓝屏甚至权限提升。 Windows内核在对访问PE文件时会进行解析处理，由于遍历链表时没有正确判断指针是否为空，一个特殊构造的PE文件可触犯内核的非法内存地址访问，从而造成系统蓝屏或重启。本地登录用户也可能利用此漏洞提升权限。 当PE文件存放在软盘、U盘或者网络共享服务器上时，使用Explorer浏览相关目录时即可触发漏洞。 Microsoft Windows XP Microsoft Windows 200...

Microsoft Windows内核本地权限提升和拒绝服务漏洞（MS09-058）

BUGTRAQ ID: 36625,36623,36624 CVECAN ID: CVE-2009-2517,CVE-2009-2516,CVE-2009-2515 Windows是微软发布的非常流行的操作系统。 由于错误地将64位至截断为32位值，以及未充分验证用户态传递的某些数据，导致Windows内核中存在权限提升漏洞。成功利用此漏洞的攻击者可以运行任意内核态代码。此外由于内核处理特定异常方式而导致Windows内核中存在拒绝服务漏洞。 Microsoft Windows XP SP3 Microsoft Windows XP SP2 Microsoft Windows Vista...

Microsoft Windows Kernel Privilege Escalation Vulnerability (971486)

This host is missing a critical security update according to Microsoft Bulletin MS09-058. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

Microsoft Windows Kernel NULL Pointer Dereferencing (MS09-058; CVE-2009-2516)

The Windows kernel is the core of the operating system. It provides system level services, allocates processor time to processes, and manages error handling. An elevation of privilege vulnerability has been discovered in the Windows kernel. The vulnerability is due to an error in the Windows kern...

MS09-058: Vulnerabilities in Windows Kernel Could Allow Elevation of Privilege (971486)

The remote Windows host is running a version of the Windows kernel that is affected by multiple vulnerabilities : - An elevation of privilege vulnerability exists in the Windows kernel due to the incorrect truncation of a 64- bit value to a 32-bit value. An attacker who successfully exploited thi...