CVE-2005-3981

Опубликовано: 04 дек. 2005

Источник: nvd

CVSS2: 4.9

EPSS Низкий

Описание

NOTE: this issue has been disputed by third parties. Microsoft Windows XP, 2000, and 2003 allows local users to kill a writable process by using the CreateRemoteThread function with certain arguments on a process that has been opened using the OpenProcess function, possibly involving an invalid address for the start routine. NOTE: followup posts have disputed this issue, saying that if a user already has privileges to write to a process, then other functions could be called or the process could be terminated using PROCESS_TERMINATE

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:o:microsoft:windows_2000:*:*:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows_2000:*:sp1:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows_2000:*:sp2:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows_2000:*:sp3:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows_2000:*:sp4:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows_2003_server:enterprise:*:64-bit:*:*:*:*:*

cpe:2.3:o:microsoft:windows_2003_server:enterprise:sp1:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows_2003_server:r2:*:64-bit:*:*:*:*:*

cpe:2.3:o:microsoft:windows_2003_server:r2:sp1:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows_2003_server:standard:*:64-bit:*:*:*:*:*

cpe:2.3:o:microsoft:windows_2003_server:standard:sp1:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows_2003_server:web:*:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows_2003_server:web:sp1:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows_xp:*:*:home:*:*:*:*:*

cpe:2.3:o:microsoft:windows_xp:*:*:media_center:*:*:*:*:*

cpe:2.3:o:microsoft:windows_xp:*:gold:professional:*:*:*:*:*

cpe:2.3:o:microsoft:windows_xp:*:sp1:home:*:*:*:*:*

cpe:2.3:o:microsoft:windows_xp:*:sp1:media_center:*:*:*:*:*

cpe:2.3:o:microsoft:windows_xp:*:sp2:home:*:*:*:*:*

cpe:2.3:o:microsoft:windows_xp:*:sp2:media_center:*:*:*:*:*

cpe:2.3:o:microsoft:windows_xp:*:sp2:tablet_pc:*:*:*:*:*

EPSS

Процентиль: 71%

0.00683

Низкий

4.9 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-q98m-jc54-9j83

github

почти 4 года назад

** DISPUTED ** NOTE: this issue has been disputed by third parties. Microsoft Windows XP, 2000, and 2003 allows local users to kill a writable process by using the CreateRemoteThread function with certain arguments on a process that has been opened using the OpenProcess function, possibly involving an invalid address for the start routine. NOTE: followup posts have disputed this issue, saying that if a user already has privileges to write to a process, then other functions could be called or the process could be terminated using PROCESS_TERMINATE.