Описание
The thread termination routine in the kernel for Windows NT 4.0 and 2000 (NTOSKRNL.EXE) allows local users to modify kernel memory and execution flow via steps in which a terminating thread causes Asynchronous Procedure Call (APC) entries to free the wrong data, aka the "Windows Kernel Vulnerability."
The thread termination routine in the kernel for Windows NT 4.0 and 2000 (NTOSKRNL.EXE) allows local users to modify kernel memory and execution flow via steps in which a terminating thread causes Asynchronous Procedure Call (APC) entries to free the wrong data, aka the "Windows Kernel Vulnerability."
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2005-2827
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2005/ms05-055
- https://exchange.xforce.ibmcloud.com/vulnerabilities/23447
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1583
- http://secunia.com/advisories/15821
- http://secunia.com/advisories/18064
- http://secunia.com/advisories/18311
- http://securityreason.com/securityalert/252
- http://securitytracker.com/id?1015347
- http://support.avaya.com/elmodocs2/security/ASA-2005-234.pdf
- http://www.eeye.com/html/research/advisories/AD20051213.html
- http://www.osvdb.org/18823
- http://www.securityfocus.com/archive/1/419377/100/0/threaded
- http://www.securityfocus.com/bid/15826
- http://www.vupen.com/english/advisories/2005/2868
- http://www.vupen.com/english/advisories/2005/2909
- http://www130.nortelnetworks.com/cgi-bin/eserv/cs/main.jsp?cscat=BLTNDETAIL&DocumentOID=375420
EPSS
CVE ID
Связанные уязвимости
The thread termination routine in the kernel for Windows NT 4.0 and 2000 (NTOSKRNL.EXE) allows local users to modify kernel memory and execution flow via steps in which a terminating thread causes Asynchronous Procedure Call (APC) entries to free the wrong data, aka the "Windows Kernel Vulnerability."
EPSS