Denial of Service : Microsoft Windows Kernel 'win32k.sys' Multiple DOS Vulnerabilities

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.801333

Categoría: Denial of Service

Título: Microsoft Windows Kernel 'win32k.sys' Multiple DOS Vulnerabilities

Resumen: Windows XP/2000/2003 is prone to multiple Denial Of Service; vulnerabilities.

Descripción: Summary:
Windows XP/2000/2003 is prone to multiple Denial Of Service
vulnerabilities.

Vulnerability Insight:
The flaws are due to:

- error in the 'SfnLOGONNOTIFY()' function in 'win32k.sys' when handling
window messages. This can be exploited to cause a kernel crash by sending
a specially crafted '4Ch' message to the 'DDEMLEvent' window.

- error in the 'SfnINSTRING()' function in 'win32k.sys' when handling
window messages. This can be exploited to cause a kernel crash by
sending a specially crafted '18Dh' message to the 'DDEMLEvent' window.

Vulnerability Impact:
Successful exploitation will allow attackers to cause Denial of
service.

Affected Software/OS:
- Microsoft Windows XP SP3 and prior

- Microsoft Windows 2000 SP4 and prior

- Microsoft Windows Server 2003 SP2 and prior

Solution:
No known solution was made available for at least one year since the disclosure
of this vulnerability. Likely none will be provided anymore. General solution options are to upgrade to a newer
release, disable respective features, remove the product or replace the product by another one.

CVSS Score:
4.9

CVSS Vector:
AV:L/AC:L/Au:N/C:N/I:N/A:C

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2010-1734
BugTraq ID: 39631
http://www.securityfocus.com/bid/39631
Bugtraq: 20100422 Windows 2000/XP/2003 win32k.sys SfnINSTRING local kernel Denial of Service Vulnerability (Google Search)
http://www.securityfocus.com/archive/1/510886/100/0/threaded
http://vigilance.fr/vulnerability/Windows-denials-of-service-of-win32k-sys-9607
http://secunia.com/advisories/39456
Common Vulnerability Exposure (CVE) ID: CVE-2010-1735
BugTraq ID: 39630
http://www.securityfocus.com/bid/39630
Bugtraq: 20100422 Windows 2000/XP/2003 win32k.sys SfnLOGONNOTIFY local kernel Denial of Service Vulnerability (Google Search)
http://www.securityfocus.com/archive/1/510884/100/0/threaded

Copyright Copyright (C) 2010 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.801333
Categoría:	Denial of Service
Título:	Microsoft Windows Kernel 'win32k.sys' Multiple DOS Vulnerabilities
Resumen:	Windows XP/2000/2003 is prone to multiple Denial Of Service; vulnerabilities.
Descripción:	Summary: Windows XP/2000/2003 is prone to multiple Denial Of Service vulnerabilities. Vulnerability Insight: The flaws are due to: - error in the 'SfnLOGONNOTIFY()' function in 'win32k.sys' when handling window messages. This can be exploited to cause a kernel crash by sending a specially crafted '4Ch' message to the 'DDEMLEvent' window. - error in the 'SfnINSTRING()' function in 'win32k.sys' when handling window messages. This can be exploited to cause a kernel crash by sending a specially crafted '18Dh' message to the 'DDEMLEvent' window. Vulnerability Impact: Successful exploitation will allow attackers to cause Denial of service. Affected Software/OS: - Microsoft Windows XP SP3 and prior - Microsoft Windows 2000 SP4 and prior - Microsoft Windows Server 2003 SP2 and prior Solution: No known solution was made available for at least one year since the disclosure of this vulnerability. Likely none will be provided anymore. General solution options are to upgrade to a newer release, disable respective features, remove the product or replace the product by another one. CVSS Score: 4.9 CVSS Vector: AV:L/AC:L/Au:N/C:N/I:N/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2010-1734 BugTraq ID: 39631 http://www.securityfocus.com/bid/39631 Bugtraq: 20100422 Windows 2000/XP/2003 win32k.sys SfnINSTRING local kernel Denial of Service Vulnerability (Google Search) http://www.securityfocus.com/archive/1/510886/100/0/threaded http://vigilance.fr/vulnerability/Windows-denials-of-service-of-win32k-sys-9607 http://secunia.com/advisories/39456 Common Vulnerability Exposure (CVE) ID: CVE-2010-1735 BugTraq ID: 39630 http://www.securityfocus.com/bid/39630 Bugtraq: 20100422 Windows 2000/XP/2003 win32k.sys SfnLOGONNOTIFY local kernel Denial of Service Vulnerability (Google Search) http://www.securityfocus.com/archive/1/510884/100/0/threaded
Copyright	Copyright (C) 2010 Greenbone AG