|
Brought to you by:
Suppliers of:
|
|
|
| |
| Multiple vulnerabilities have been discovered in the Windows Kernel. The vulnerabilities are: a buffer overflow in the font processing component, a buffer overflow in the object management component and a privilege escalation vulnerability via CSRSS. |
| |
Credit:
The original article can be found at: http://www.microsoft.com/technet/security/Bulletin/MS05-018.mspx
|
| |
Vulnerable Systems:
* Microsoft Windows 2000 Service Pack 3 and Microsoft Windows 2000 Service Pack 4 Download the update
* Microsoft Windows XP Service Pack 1 and Microsoft Windows XP Service Pack 2 Download the update
* Microsoft Windows XP 64-Bit Edition Service Pack 1 (Itanium) Download the update
* Microsoft Windows XP 64-Bit Edition Version 2003 (Itanium) Download the update
* Microsoft Windows Server 2003 Download the update
* Microsoft Windows Server 2003 for Itanium-based Systems Download the update
* Microsoft Windows 98, Microsoft Windows 98 Second Edition (SE), and Microsoft Windows Millennium Edition (ME)
Immune Systems:
* Microsoft Windows Server 2003 Service Pack 1
* Microsoft Windows Server 2003 with SP1 for Itanium-based Systems
* Microsoft Windows Server 2003 x64 Edition
* Microsoft Windows XP Professional x64 Edition
Font Vulnerability:
Buffer overflow in the font processing component of Microsoft Windows allows local users to gain privileges via a specially-designed application.
Mitigating Factors for Font Vulnerability:
* An attacker must have valid logon credentials and be able to log on locally to exploit this vulnerability. The vulnerability could not be exploited remotely or by anonymous users.
* Attempts to exploit this vulnerability on systems that are running Windows XP Service Pack 2 would most likely result in a denial of service condition.
Status of Windows 98, Windows 98 Second Edition and Windows Millennium Edition:
Although Windows 98, Windows 98 Second Edition, and Windows Millennium Edition contain the affected component, the vulnerability is not critical.
Windows Kernel Vulnerability:
The kernel of Microsoft Windows allows local users to gain privileges via certain access requests.
This vulnerability could allow a logged on user to take complete control of the system.
Mitigating Factors for Windows Kernel Vulnerability:
* An attacker must have valid logon credentials and be able to log on locally to exploit this vulnerability. The vulnerability could not be exploited remotely or by anonymous users.
Status of Windows 98, Windows 98 Second Edition and Windows Millennium Edition:
This systems are not effected by this vulnerability.
Object Management Vulnerability:
Buffer overflow in Microsoft Windows allows local users to cause a denial of service via a malformed request, also known as "Object Management Vulnerability".
An attacker who exploited this vulnerability could cause the affected system to stop responding and automatically restart.
Mitigating Factors for Object Management Vulnerability:
* An attacker must have valid logon credentials and be able to log on locally to exploit this vulnerability. The vulnerability could not be exploited remotely or by anonymous users.
* An attacker can cause the local system to stop responding. However, this vulnerability does not allow an attacker to execute code.
Status of Windows 98, Windows 98 Second Edition and Windows Millennium Edition:
Although Windows 98, Windows 98 Second Edition, and Windows Millennium Edition contain the affected component, the vulnerability is not critical.
CSRSS Vulnerability:
CSRSS is the user-mode part of the Win32 subsystem. Win32.sys is the kernel-mode portion of the Win32 subsystem. The Win32 subsystem must be running at all times. CSRSS is responsible for console windows, for creating threads, for deleting threads, and for some parts of the 16-bit virtual MS-DOS environment. CSRSS services only those requests that other processes make on the same local computer.
The Client Server Runtime System (CSRSS) process of Microsoft Windows allows local users to gain privileges via a specially-designed application.
Mitigating Factors for CSRSS Vulnerability:
* An attacker must have valid logon credentials and be able to log on locally to exploit this vulnerability. The vulnerability could not be exploited remotely or by anonymous users.
* An attacker who successfully exploited this vulnerability could take complete control of an affected system, including installing programs; viewing, changing, or deleting data; or creating new accounts that have full privileges.
Status of Windows 98, Windows 98 Second Edition and Windows Millennium Edition:
This systems are not effected by this vulnerability.
CVE Information:
CAN-2005-0060
CAN-2005-0061
CAN-2005-0550
CAN-2005-0551
|
|
|
|
|
