Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2009-1123
HistoryJun 10, 2009 - 6:30 p.m.

CVE-2009-1123

2009-06-1018:30:00
[email protected]
web.nvd.nist.gov

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

AI Score

6.2

Confidence

Low

EPSS

0.285

Percentile

96.9%

JSON

The kernel in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista Gold, SP1, and SP2, and Server 2008 SP2 does not properly validate changes to unspecified kernel objects, which allows local users to gain privileges via a crafted application, aka “Windows Kernel Desktop Vulnerability.”

Affected configurations

NVD
Node
microsoftwindows_2000Match-sp4
OR
microsoftwindows_server_2003Match-sp2
OR
microsoftwindows_server_2008Match-sp2
OR
microsoftwindows_vistaMatch-sp1
OR
microsoftwindows_vistaMatch-sp2
OR
microsoftwindows_xpMatch-sp2-
OR
microsoftwindows_xpMatch-sp2professional
OR
microsoftwindows_xpMatch-sp3

Related

cve 1
cisa_kev 1
seebug 1
cvelist 1
prion 1
attackerkb 1
securityvulns 2
nessus 1
openvas 2
cve
cve
CVE-2009-1123
2009-06-10 18:30:00
cisa_kev
cisa_kev
Microsoft Windows Improper Input Validation Vulnerability
2022-03-03 00:00:00
seebug
seebug
Microsoft Windows win32k.sys驱动本地权限提升漏洞(MS09-025)
2009-06-13 00:00:00
cvelist
cvelist
CVE-2009-1123
2009-06-10 18:00:00
prion
prion
Privilege escalation
2009-06-10 18:30:00
attackerkb
attackerkb
CVE-2009-1123
2009-06-10 00:00:00
securityvulns
securityvulns
Microsoft Security Bulletin MS09-025 - Important Vulnerabilities in Windows Kernel Could Allow Elevation of Privilege (968537)
2009-06-10 00:00:00
Microsoft Windows kernel multiple privilege escalation
2009-06-10 00:00:00
nessus
nessus
MS09-025: Vulnerabilities in Windows Kernel Could Allow Elevation of Privilege (968537)
2009-06-10 00:00:00
openvas
openvas
Vulnerabilities in Windows Kernel Could Allow Elevation of Privilege (968537)
2009-06-10 00:00:00
Vulnerabilities in Windows Kernel Could Allow Elevation of Privilege (968537)
2009-06-10 00:00:00

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

AI Score

6.2

Confidence

Low

EPSS

0.285

Percentile

96.9%

JSON
Related for NVD:CVE-2009-1123
cve1cisa_kev1seebug1cvelist1prion1attackerkb1securityvulns2nessus1openvas2