[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Full-disclosure] Re: [EEYEB-20050523] Windows Kernel APC Data-FreeLocal Privilege Escalation Vulnerability

To: full-disclosure@xxxxxxxxxxxxxxxxx
Subject: [Full-disclosure] Re: [EEYEB-20050523] Windows Kernel APC Data-FreeLocal Privilege Escalation Vulnerability
From: "Dave Korn" <davek_throwaway@xxxxxxxxxxx>
Date: Tue, 13 Dec 2005 20:00:57 -0000

Joshua Russel wrote in 
news:7a282fc30512131028g40d65517k2254283bfecec6db@xxxxxxxxxxxxxx
> It is a local vulnerability, then how does Retina claims to scan it
> remotely?

  Well, at a guess....

> On 12/13/05, Advisories <Advisories@xxxxxxxx> wrote:

>> Systems Affected:
>> Windows NT 4.0
>> Windows 2000

>> Beginning with Windows XP, KeFlushQueueApc contains a code fix that
>> resolves this vulnerability.

... it just looks to see if the O/S is XP/2K3 or NT/2K.

    cheers,
      DaveK
-- 
Can't think of a witty .sigline today.... 

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Follow-Ups:
- Re: [Full-disclosure] Re: [EEYEB-20050523] Windows Kernel APC Data-FreeLocal Privilege Escalation Vulnerability
  - From: Tom Ferris

References:
- [Full-disclosure] [EEYEB-20050523] Windows Kernel APC Data-Free Local Privilege Escalation Vulnerability
  - From: Advisories
- Re: [Full-disclosure] [EEYEB-20050523] Windows Kernel APC Data-Free Local Privilege Escalation Vulnerability
  - From: Joshua Russel

Prev by Date: Re: [Full-disclosure] Inside AV engines?
Next by Date: [Full-disclosure] Secunia Research: Microsoft Internet Explorer Keyboard Shortcut Processing Vulnerability
Previous by thread: Re: [Full-disclosure] [EEYEB-20050523] Windows Kernel APC Data-Free Local Privilege Escalation Vulnerability
Next by thread: Re: [Full-disclosure] Re: [EEYEB-20050523] Windows Kernel APC Data-FreeLocal Privilege Escalation Vulnerability
Index(es):
- Date
- Thread