Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
zdiStd_logicZDI-11-064
HistoryFeb 08, 2011 - 12:00 a.m.

Microsoft Windows WmiTraceMessageVa Local Kernel Vulnerability

2011-02-0800:00:00
std_logic
www.zerodayinitiative.com
37

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.001 Low

EPSS

Percentile

22.0%

JSON

This vulnerability allows local attackers to execute arbitrary code from the context of kernelspace on vulnerable installations of Microsoft Windows. The ability to make a system call is required in order to exploit this vulnerability. The specific flaw exists within the kernel’s support for Trace Events. Due to a bad type conversion, the kernel will use a truncated length for allocating data from userspace. When populating this buffer the kernel will use a differing length causing a buffer overflow. This will cause memory corruption and can lead to code execution under the context of the kernel.

Related

prion 1
seebug 3
packetstorm 1
cve 1
checkpoint_advisories 1
exploitpack 1
securityvulns 2
cvelist 1
exploitdb 1
openvas 2
nessus 1
prion
prion
Integer overflow
2011-02-09 01:00:00
seebug
seebug
MS Windows XP - WmiTraceMessageVa Integer Truncation Vulnerability PoC (MS11-011)
2014-07-01 00:00:00
MS11-011(CVE-2011-0045): MS Windows XP WmiTraceMessageVa Integer Truncation Vulnerability PoC
2011-03-02 00:00:00
Microsoft Windows Kernelζ•΄ζ•°ζˆͺζ–­ζœ¬εœ°ζƒι™ζε‡ζΌζ΄ž
2011-03-03 00:00:00
packetstorm
packetstorm
Microsoft Windows XP WmiTraceMessageVa Integer Truncation
2011-03-01 00:00:00
cve
cve
CVE-2011-0045
2011-02-09 01:00:00
checkpoint_advisories
checkpoint_advisories
Microsoft Windows Kernel Integer Truncation Privilege Escalation (MS11-011; CVE-2011-0045)
2011-03-10 00:00:00
exploitpack
exploitpack
Microsoft Windows XP - WmiTraceMessageVa Integer Truncation (PoC) (MS11-011)
2011-03-01 00:00:00
securityvulns
securityvulns
ZDI-11-064: Microsoft Windows WmiTraceMessageVa Local Kernel Vulnerability
2011-02-09 00:00:00
Microsoft Windows multiple security vulnerabilities
2011-02-14 00:00:00
cvelist
cvelist
CVE-2011-0045
2011-02-09 00:00:00
exploitdb
exploitdb
Microsoft Windows XP - WmiTraceMessageVa Integer Truncation (PoC) (MS11-011)
2011-03-01 00:00:00
openvas
openvas
Microsoft Windows Kernel Elevation of Privilege Vulnerability (2393802)
2011-02-09 00:00:00
Microsoft Windows Kernel Elevation of Privilege Vulnerability (2393802)
2011-02-09 00:00:00
nessus
nessus
MS11-011: Vulnerabilities in Windows Kernel Could Allow Elevation of Privilege (2393802)
2011-02-08 00:00:00

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.001 Low

EPSS

Percentile

22.0%

JSON
Related for ZDI-11-064
prion1seebug3packetstorm1cve1checkpoint_advisories1exploitpack1securityvulns2cvelist1exploitdb1openvas2nessus1