CVE-2007-1209

Sažetak

Use-after-free vulnerability in the Client/Server Run-time Subsystem (CSRSS) in Microsoft Windows Vista does not properly handle connection resources when starting and stopping processes, which allows local users to gain privileges by opening and closing multiple ApiPort connections, which leaves a "dangling pointer" to a process data structure.

Reference

http://research.eeye.com/html/advisories/published/AD20070410b.html
http://secunia.com/advisories/24823
http://securityreason.com/securityalert/2531
http://www.kb.cert.org/vuls/id/219848
http://www.osvdb.org/34008
http://www.securityfocus.com/archive/1/465233/100/0/threaded
http://www.securityfocus.com/archive/1/466331/100/200/threaded
http://www.securityfocus.com/bid/23338
http://www.securitytracker.com/id?1017897
http://www.us-cert.gov/cas/techalerts/TA07-100A.html
http://www.vupen.com/english/advisories/2007/1325
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-021
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1524

CVSS

Base:	7.2
Impact:	10.0
Exploitability:	3.9

Pristup

Vektor	Složenost	Autentikacija
LOCAL	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
COMPLETE	COMPLETE	COMPLETE

CVSS vektor

AV:L/AC:L/Au:N/C:C/I:C/A:C

Zadnje važnije ažuriranje

16-10-2018 - 16:37

Objavljeno

10-04-2007 - 21:19