SecurityTracker.com
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 


Category:   OS (Microsoft)  >   Windows Kernel Vendors:   Microsoft
Windows Kernel Lets Local Users Gain Elevated Privileges
SecurityTracker Alert ID:  1025046
SecurityTracker URL:  http://securitytracker.com/id/1025046
CVE Reference:   CVE-2010-4398, CVE-2011-0045   (Links to External Site)
Date:  Feb 9 2011
Impact:   User access via local system
Fix Available:  Yes  Vendor Confirmed:  Yes  
Version(s): XP SP3, 2003 SP2, Vista SP2, 2008 SP2, 7, 2008 R2; and prior service packs
Description:   Two vulnerabilities were reported in the Windows Kernel. A local user can obtain elevated privileges on the target system.

A local user can exploit a driver-kernel interaction error [CVE-2010-4398] or integer truncation error [CVE-2011-0045] to execute arbitrary commands on the target system with elevated privileges.

Zhengwenbin of 360safe, std_logic (via TippingPoint's Zero Day Initiative), Guo Bojun, Wei Zhang, and Marco Giuliani of Prevx reported these vulnerabilities.

Impact:   A local user can obtain elevated privileges on the target system.
Solution:   The vendor has issued the following fixes:

Windows XP Service Pack 3:

http://www.microsoft.com/downloads/details.aspx?familyid=A511D33A-9AE0-46EE-A225-9D97390DE7D1

Windows XP Professional x64 Edition Service Pack 2:

http://www.microsoft.com/downloads/details.aspx?familyid=E7273A85-CE96-464B-8C4F-2710701213E3

Windows Server 2003 Service Pack 2:

http://www.microsoft.com/downloads/details.aspx?familyid=6BF2EEEC-8225-477F-A606-263D3EE434D6

Windows Server 2003 x64 Edition Service Pack 2:

http://www.microsoft.com/downloads/details.aspx?familyid=EC544894-EE98-4A2B-AC4D-33B0C3754213

Windows Server 2003 with SP2 for Itanium-based Systems:

http://www.microsoft.com/downloads/details.aspx?familyid=FCD48499-1BB4-4304-B9CC-27D9D92E11CD

Windows Vista Service Pack 1 and Windows Vista Service Pack 2:

http://www.microsoft.com/downloads/details.aspx?familyid=66978514-BB7F-42CC-9360-2FD1C686F4E6

Windows Vista x64 Edition Service Pack 1 and Windows Vista x64 Edition Service Pack 2:

http://www.microsoft.com/downloads/details.aspx?familyid=8FDB8C37-1B22-457B-BDC0-21F6A5061DD3

Windows Server 2008 for 32-bit Systems and Windows Server 2008 for 32-bit Systems Service Pack 2:

http://www.microsoft.com/downloads/details.aspx?familyid=4B37418A-E044-415E-B566-4507F157934A

Windows Server 2008 for x64-based Systems and Windows Server 2008 for x64-based Systems Service Pack 2:

http://www.microsoft.com/downloads/details.aspx?familyid=163D3ACA-3703-452E-B1CB-73932E2BCF8C

Windows Server 2008 for Itanium-based Systems and Windows Server 2008 for Itanium-based Systems Service Pack 2:

http://www.microsoft.com/downloads/details.aspx?familyid=55B07BC0-DFF5-4CD7-87C9-C08E5A49197D

Windows 7 for 32-bit Systems:

http://www.microsoft.com/downloads/details.aspx?familyid=E1224C90-B0BC-4E4B-999A-EFAE327213B4

Windows 7 for x64-based Systems:

http://www.microsoft.com/downloads/details.aspx?familyid=DDCF352E-742C-485E-9ED5-19CDBA673562

Windows Server 2008 R2 for x64-based Systems:

http://www.microsoft.com/downloads/details.aspx?familyid=70F5056A-72AD-46FF-A43F-EE151639B9A7

Windows Server 2008 R2 for Itanium-based Systems:

http://www.microsoft.com/downloads/details.aspx?familyid=1646B3A5-714F-4EA5-B109-566FA9B933B6

A restart is required.

The Microsoft advisory is available at:

http://www.microsoft.com/technet/security/bulletin/ms11-011.mspx

Vendor URL:  www.microsoft.com/technet/security/bulletin/ms11-011.mspx (Links to External Site)
Cause:   Not specified

Message History:   None.


 Source Message Contents



[Original Message Not Available for Viewing]


Go to the Top of This SecurityTracker Archive Page





Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2019, SecurityGlobal.net LLC