Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
seebugRootSSV:12490
HistoryOct 19, 2009 - 12:00 a.m.

Microsoft Windows内核本地权限提升和拒绝服务漏洞(MS09-058)

2009-10-1900:00:00
Root
www.seebug.org
10

0.0004 Low

EPSS

Percentile

10.3%

JSON

BUGTRAQ ID: 36625,36623,36624
CVE(CAN) ID: CVE-2009-2517,CVE-2009-2516,CVE-2009-2515

Windows是微软发布的非常流行的操作系统。

由于错误地将64位至截断为32位值,以及未充分验证用户态传递的某些数据,导致Windows内核中存在权限提升漏洞。成功利用此漏洞的攻击者可以运行任意内核态代码。此外由于内核处理特定异常方式而导致Windows内核中存在拒绝服务漏洞。

Microsoft Windows XP SP3
Microsoft Windows XP SP2
Microsoft Windows Vista SP2
Microsoft Windows Vista SP1
Microsoft Windows Vista
Microsoft Windows Server 2008 SP2
Microsoft Windows Server 2008
Microsoft Windows Server 2003 SP2
Microsoft Windows 2000SP4
厂商补丁:

Microsoft

Microsoft已经为此发布了一个安全公告(MS09-058)以及相应补丁:
MS09-058:Vulnerabilities in Windows Kernel Could Allow Elevation of Privilege (971486)
链接:http://www.microsoft.com/technet/security/Bulletin/MS09-058.mspx?pf=true

NSFOCUS

NSFOCUS已经为此发布了一个安全公告(SA2009-03)以及相应补丁:
SA2009-03:Windows Kernel Malformed PE File Remote DoS Vulnerability
链接:http://www.nsfocus.net/index.php?act=advisory&do=view&adv_id=49

Related

openvas 2
nessus 1
securityvulns 3
cvelist 3
cve 3
checkpoint_advisories 1
prion 3
nvd 3
seebug 1
openvas
openvas
Microsoft Windows Kernel Privilege Escalation Vulnerability (971486)
2009-10-14 00:00:00
Microsoft Windows Kernel Privilege Escalation Vulnerability (971486)
2009-10-14 00:00:00
nessus
nessus
MS09-058: Vulnerabilities in Windows Kernel Could Allow Elevation of Privilege (971486)
2009-10-13 00:00:00
securityvulns
securityvulns
Microsoft Windows kernel multiple security vulnerabilities
2009-10-17 00:00:00
Microsoft Security Bulletin MS09-058 - Important Vulnerabilities in Windows Kernel Could Allow Elevation of Privilege (971486)
2009-10-13 00:00:00
NSFOCUS SA2009-03 : Windows Kernel Malformed PE File Remote DoS Vulnerability
2009-10-17 00:00:00
cvelist
cvelist
CVE-2009-2515
2009-10-14 10:00:00
CVE-2009-2516
2009-10-14 10:00:00
CVE-2009-2517
2009-10-14 10:00:00
cve
cve
CVE-2009-2516
2009-10-14 10:30:01
CVE-2009-2515
2009-10-14 10:30:01
CVE-2009-2517
2009-10-14 10:30:01
checkpoint_advisories
checkpoint_advisories
Microsoft Windows Kernel NULL Pointer Dereferencing (MS09-058; CVE-2009-2516)
2009-10-13 00:00:00
prion
prion
Integer overflow
2009-10-14 10:30:00
Null pointer dereference
2009-10-14 10:30:00
Input validation
2009-10-14 10:30:00
nvd
nvd
CVE-2009-2515
2009-10-14 10:30:01
CVE-2009-2517
2009-10-14 10:30:01
CVE-2009-2516
2009-10-14 10:30:01
seebug
seebug
Windows内核畸形PE文件远程拒绝服务漏洞
2009-10-20 00:00:00

0.0004 Low

EPSS

Percentile

10.3%

JSON
Related for SSV:12490
openvas2nessus1securityvulns3cvelist3cve3checkpoint_advisories1prion3nvd3seebug1