Windows Kernel Virtual Address Descriptor Integer Overflow Lets Local Users Gain Elevated Privileges
|
|
SecurityTracker Alert ID: 1021051
|
|
SecurityTracker URL: http://securitytracker.com/id?1021051
|
|
CVE Reference: CVE-2008-4036
(Links to External Site)
|
Date: Oct 14 2008
|
Impact: Execution of arbitrary code via local system, Root access via local system
|
Fix Available: Yes
Vendor Confirmed: Yes
|
Advisory: Microsoft Security Bulletin
|
Version(s): 2003 SP2, XP SP3, Vista SP1, 2008; and prior service packs
|
Description: A vulnerability was reported in the Windows Kernel memory manager. A local user can obtain elevated privileges on the target system.
The Memory Manager does not properly allocate memory when processing Virtual Address Descriptors (VADs). A local user can trigger an integer overflow to execute arbitrary commands on the target system with System privileges.
|
Impact: A local user can obtain System privileges on the target system.
|
Solution: The vendor has issued the following fixes:
Windows XP Service Pack 2:
http://www.microsoft.com/downloads/details.aspx?familyid=25997b73-a640-49c1-b19e-768a18bbe22c
Windows XP Service Pack 3:
http://www.microsoft.com/downloads/details.aspx?familyid=25997b73-a640-49c1-b19e-768a18bbe22c
Windows
XP Professional x64 Edition and Windows XP Professional x64 Edition Service Pack 2:
http://www.microsoft.com/downloads/details.aspx?familyid=50fae854-0bde-46f8-9444-b9
e0d9bfecad
Windows Server 2003 Service Pack 1 and Windows Server 2003 Service Pack 2:
http://www.microsoft.com/downloads/details.aspx?familyid=e8ef3d5f-dd8e-4945-92
cd-9d3e30b16667
Windows Server 2003 x64 Edition and Windows Server 2003 x64 Edition Service Pack 2:
http://www.microsoft.com/downloads/details.aspx?familyid=c2e754f
9-086a-494c-bc19-5feed7df8b65
Windows Server 2003 with SP1 for Itanium-based Systems and Windows Server 2003 with SP2 for Itanium-based
Systems:
http://www.microsoft.com/downloads/details.aspx?familyid=5a3832ec-3f8f-42c1-a603-b1330d527547
Windows Vista:
http://www.microsoft.com/downloads/details.
aspx?familyid=b4212db5-093e-497d-b999-2e3780f9f7c2
Windows Vista Service Pack 1:
http://www.microsoft.com/downloads/details.aspx?familyid=b4212db5-093e-497d-b999-2e
3780f9f7c2
Windows Vista x64 Edition:
http://www.microsoft.com/downloads/details.aspx?familyid=c20808cb-c30a-4b53-91e5-810eb6b4b2e3
Windows
Vista x64 Edition Service Pack 1:
http://www.microsoft.com/downloads/details.aspx?familyid=c20808cb-c30a-4b53-91e5-810eb6b4b2e3
Windows
Server 2008 for 32-bit Systems:
http://www.microsoft.com/downloads/details.aspx?familyid=ec9eeb82-0497-4c55-94bb-9a47cb3521b4
Windows
Server 2008 for x64-based Systems:
http://www.microsoft.com/downloads/details.aspx?familyid=0bc178b8-f8ae-4f41-8f88-fb6a75be1bca
Windows
Server 2008 for Itanium-based Systems:
http://www.microsoft.com/downloads/details.aspx?familyid=0af72663-4945-4916-8c55-090ba4d82793
A
restart is required.
The Microsoft advisory is available at:
http://www.microsoft.com/technet/security/bulletin/ms08-064.mspx
|
Vendor URL: www.microsoft.com/technet/security/bulletin/ms08-064.mspx (Links to External Site)
|
Cause: Boundary error
|
Underlying OS: Windows (2003), Windows (2008), Windows (Vista), Windows (XP)
|
|
Message History:
None.
|
Source Message Contents
|
Date: Tue, 14 Oct 2008 16:45:03 -0400
Subject: http://www.microsoft.com/technet/security/bulletin/ms08-064.mspx
|
Microsoft Security Bulletin MS08-064 – Important: Vulnerability in Virtual Address Descriptor Manipul
ation Could Allow Elevation of Privilege (956841)
CVE-2008-4036
|
|
