ID CVE-2013-1293
Summary The NTFS kernel-mode driver in Microsoft Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 allows local users to gain privileges or cause a denial of service (NULL pointer dereference and system crash) via a crafted application that leverages improper handling of objects in memory, aka "NTFS NULL Pointer Dereference Vulnerability."
References
Vulnerable Configurations
  • cpe:2.3:o:microsoft:windows_7:-:x64
    cpe:2.3:o:microsoft:windows_7:-:x64
  • cpe:2.3:o:microsoft:windows_7:-:x86
    cpe:2.3:o:microsoft:windows_7:-:x86
  • Microsoft Windows 7 64-bit Service Pack 1 (initial release)
    cpe:2.3:o:microsoft:windows_7:-:sp1:x64
  • Microsoft Windows 7 x86 Service Pack 1
    cpe:2.3:o:microsoft:windows_7:-:sp1:x86
  • Windows Server 2008 R2 for Itanium-based Systems
    cpe:2.3:o:microsoft:windows_server_2008:-:r2:itanium
  • Windows Server 2008 R2 for x64-based Systems
    cpe:2.3:o:microsoft:windows_server_2008:-:r2:x64
  • Microsoft Windows Server 2008 Service Pack 2 for Itanium-Based Systems
    cpe:2.3:o:microsoft:windows_server_2008:-:sp2:itanium
  • Microsoft Windows Server 2008 Service Pack 2 x64 (64-bit)
    cpe:2.3:o:microsoft:windows_server_2008:-:sp2:x64
  • Windows Server 2008 Service Pack 2 x86
    cpe:2.3:o:microsoft:windows_server_2008:-:sp2:x86
  • Microsoft Windows Server 2008 r2 Service Pack 1 Itanium
    cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:itanium
  • Microsoft Windows Server 2008 R2 Service Pack 1 x64 (64-bit)
    cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:x64
  • Microsoft Windows Vista Service Pack 2
    cpe:2.3:o:microsoft:windows_vista:-:sp2
  • Microsoft Windows Vista Service Pack 2 x64 (64-bit)
    cpe:2.3:o:microsoft:windows_vista:-:sp2:x64
CVSS
Base: 6.9 (as of 10-04-2013 - 11:49)
Impact:
Exploitability:
Access
VectorComplexityAuthentication
LOCAL MEDIUM NONE
Impact
ConfidentialityIntegrityAvailability
COMPLETE COMPLETE COMPLETE
msbulletin via4
bulletin_id MS13-036
bulletin_url
date 2013-04-09T00:00:00
impact Elevation of Privilege
knowledgebase_id 2829996
knowledgebase_url
severity Important
title Vulnerabilities in Kernel-Mode Driver Could Allow Elevation Of Privilege
nessus via4
NASL family Windows : Microsoft Bulletins
NASL id SMB_NT_MS13-036.NASL
description The Windows kernel on the remote host has the following vulnerabilities : - Multiple race condition vulnerabilities exist. (CVE-2013-1283, CVE-2013-1292) - A font parsing vulnerability exists. (CVE-2013-1291) - An NTFS NULL pointer dereference vulnerability exists. (CVE-2013-1293) A local attacker could exploit any of these vulnerabilities to elevate privileges.
last seen 2019-02-21
modified 2018-11-15
plugin id 65883
published 2013-04-10
reporter Tenable
source https://www.tenable.com/plugins/index.php?view=single&id=65883
title MS13-036: Vulnerabilities in Windows Kernel-Mode Driver Could Allow Elevation of Privilege (2829996)
oval via4
accepted 2014-03-03T04:00:54.902-05:00
class vulnerability
contributors
  • name SecPod Team
    organization SecPod Technologies
  • name Sharath S
    organization SecPod Technologies
  • name Bhavya K
    organization SecPod Technologies
  • name Maria Mikhno
    organization ALTX-SOFT
definition_extensions
  • comment Microsoft Windows Vista (32-bit) Service Pack 2 is installed
    oval oval:org.mitre.oval:def:6124
  • comment Microsoft Windows Vista x64 Edition Service Pack 2 is installed
    oval oval:org.mitre.oval:def:5594
  • comment Microsoft Windows Server 2008 (32-bit) Service Pack 2 is installed
    oval oval:org.mitre.oval:def:5653
  • comment Microsoft Windows Server 2008 Itanium-Based Edition Service Pack 2 is installed
    oval oval:org.mitre.oval:def:6150
  • comment Microsoft Windows Server 2008 x64 Edition Service Pack 2 is installed
    oval oval:org.mitre.oval:def:6216
  • comment Microsoft Windows 7 is installed
    oval oval:org.mitre.oval:def:12541
  • comment Microsoft Windows Server 2008 R2 is installed
    oval oval:org.mitre.oval:def:12754
  • comment Microsoft Windows 7 (32-bit) Service Pack 1 is installed
    oval oval:org.mitre.oval:def:12292
  • comment Microsoft Windows 7 x64 Service Pack 1 is installed
    oval oval:org.mitre.oval:def:12627
  • comment Microsoft Windows Server 2008 R2 x64 Service Pack 1 is installed
    oval oval:org.mitre.oval:def:12567
  • comment Microsoft Windows Server 2008 R2 Itanium-Based Edition Service Pack 1 is installed
    oval oval:org.mitre.oval:def:12583
description The NTFS kernel-mode driver in Microsoft Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 allows local users to gain privileges or cause a denial of service (NULL pointer dereference and system crash) via a crafted application that leverages improper handling of objects in memory, aka "NTFS NULL Pointer Dereference Vulnerability."
family windows
id oval:org.mitre.oval:def:16485
status accepted
submitted 2013-04-10T11:39:28
title Microsoft Windows Kernel-Mode Driver privilege elevation vulnerability (CVE-2013-1293) - MS13-036
version 74
refmap via4
ms MS13-036
Last major update 02-11-2013 - 23:30
Published 09-04-2013 - 18:55
Last modified 12-10-2018 - 18:04
Back to Top