Windows Kernel Handle/Pointer Validation Bugs Let Local Users Gain System Privileges
|
|
SecurityTracker Alert ID: 1021827 |
|
SecurityTracker URL: http://securitytracker.com/id/1021827
|
|
CVE Reference:
CVE-2009-0082, CVE-2009-0083
(Links to External Site)
|
Date: Mar 10 2009
|
Impact:
Execution of arbitrary code via local system, Root access via local system
|
Fix Available: Yes Vendor Confirmed: Yes
|
Version(s): 2000 SP4, XP SP3, 2003 SP2, Vista SP1, 2008; and prior service packs
|
Description:
Two vulnerabilities were reported in the Windows Kernel. A local user can obtain elevated privileges on the target system.
A local user can execute arbitrary commands on the target system with kernel-level privileges.
The kernel does not properly validate handles [CVE-2009-0082].
The kernel does not properly validate pointers [CVE-2009-0083].
Thomas Garnier of SkyRecon reported one of these vulnerabilities.
|
Impact:
A local user can execute arbitrary code with kernel-level privileges on the target system.
|
Solution:
The vendor has issued the following fixes:
Microsoft Windows 2000 Service Pack 4:
http://www.microsoft.com/downloads/details.aspx?familyid=98bb7d40-89a0-470a-8eb7-06f15072a635
Windows XP Service Pack 2 and Windows XP Service Pack 3:
http://www.microsoft.com/downloads/details.aspx?familyid=e09641ba-6cbe-4095-82b5-703d3a7dc33b
Windows XP Professional x64 Edition and Windows XP Professional x64 Edition Service Pack 2:
http://www.microsoft.com/downloads/details.aspx?familyid=d0d704c6-48c2-4907-b6c3-2455d7cf21c8
Windows Server 2003 Service Pack 1 and Windows Server 2003 Service Pack 2:
http://www.microsoft.com/downloads/details.aspx?familyid=f5cfb8da-e7cc-4183-8631-507c2a406500
Windows Server 2003 x64 Edition and Windows Server 2003 x64 Edition Service Pack 2:
http://www.microsoft.com/downloads/details.aspx?familyid=ecf75c70-8489-41ad-9759-3a07e13957be
Windows Server 2003 with SP1 for Itanium-based Systems and Windows Server 2003 with SP2 for Itanium-based Systems:
http://www.microsoft.com/downloads/details.aspx?familyid=04be3d7e-7dda-4dca-887a-e7a8156ede1c
Windows Vista and Windows Vista Service Pack 1:
http://www.microsoft.com/downloads/details.aspx?familyid=4b1aaaba-f355-4265-83c0-50b901856ced
Windows Vista x64 Edition and Windows Vista x64 Edition Service Pack 1:
http://www.microsoft.com/downloads/details.aspx?familyid=0fcac480-d6db-4a94-8c7d-b7319282cf56
Windows Server 2008 for 32-bit Systems:
http://www.microsoft.com/downloads/details.aspx?familyid=38851df2-4fb5-4d28-9d15-181c260cf8cf
Windows Server 2008 for x64-based Systems:
http://www.microsoft.com/downloads/details.aspx?familyid=ec15acc4-3e0f-4414-9383-61c122ff1382
Windows Server 2008 for Itanium-based Systems:
http://www.microsoft.com/downloads/details.aspx?familyid=eead6f93-10fd-4492-8137-481d9876a5fe
A restart is required.
The Microsoft advisory is available at:
http://www.microsoft.com/technet/security/bulletin/ms09-006.mspx
|
Vendor URL: www.microsoft.com/technet/security/bulletin/ms09-006.mspx (Links to External Site)
|
Cause:
Input validation error
|
Underlying OS:
Windows (2000), Windows (2003), Windows (2008), Windows (Vista), Windows (XP)
|
|
Message History:
None.
|
Source Message Contents
|
Date: Tue, 10 Mar 2009 12:11:27 -0500
Subject: http://www.microsoft.com/technet/security/bulletin/ms09-006.mspx
|
Microsoft Security Bulletin MS09-006 – Critical: Vulnerabilities in Windows Kernel Could Allow Remote Code Execution (958690)
CVE-2009-0082
CVE-2009-0083
|
|
