certfr_avis - certa-2008-avi-502

CERTA-2008-AVI-502

Vulnerability from certfr_avis

Plusieurs vulnérabilités affectent le noyau Microsoft Windows et permettent à une personne malveillante d'élever ses privilèges sur le système.

Description

Trois vulnérabilités affectent le noyau Microsoft Windows permettant une élévation de privilèges sur le système, ces dernières sont causées par :

un problème dans la validation de certaines propriétés de fenêtre transmises lors du processus de création de fenêtre ;
une possible double libération de mémoire ;
une validation incorrecte des entrées transmises au noyau depuis le mode utilisateur.

Solution

Se référer au bulletin de sécurité MS08-061 de Microsoft pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

Vendor	Product	Description
Microsoft	Windows	Microsoft Windows Server 2003 Édition x64 Service Pack 2 ;
Microsoft	Windows	Microsoft Windows Vista Service Pack 1 ;
Microsoft	Windows	Microsoft Windows XP Professionnel Édition x64 ;
Microsoft	Windows	Microsoft Windows Vista ;
Microsoft	Windows	Microsoft Windows Vista Édition x64 Service Pack 1 ;
Microsoft	Windows	Microsoft Windows Server 2008 pour systèmes x64 ;
Microsoft	Windows	Microsoft Windows Server 2003 avec SP1 pour les systèmes Itanium ;
Microsoft	Windows	Microsoft Windows Server 2003 avec SP2 pour les systèmes Itanium ;
Microsoft	Windows	Microsoft Windows Server 2003 Service Pack 1 ;
Microsoft	Windows	Microsoft Windows Server 2003 Édition x64 ;
Microsoft	Windows	Microsoft Windows XP Service Pack 2 ;
Microsoft	Windows	Microsoft Windows XP Professionnel Édition x64 Service Pack 2 ;
Microsoft	Windows	Microsoft Windows Server 2008 pour systèmes Itanium.
Microsoft	Windows	Microsoft Windows Server 2008 pour systèmes 32 bits ;
Microsoft	Windows	Microsoft Windows Server 2003 Service Pack 2 ;
Microsoft	Windows	Microsoft Windows Vista Édition x64 ;
Microsoft	Windows	Microsoft Windows XP Service Pack 3 ;
Microsoft	Windows	Microsoft Windows 2000 Service Pack 4 ;

References

Title

Publication Time

Tags

Bulletin de sécurité Microsoft MS08-061 du 14 octobre 2008

None

vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "Microsoft Windows Server 2003 \u00c9dition x64 Service Pack 2 ;",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Microsoft Windows Vista Service Pack 1 ;",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Microsoft Windows XP Professionnel \u00c9dition x64 ;",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Microsoft Windows Vista ;",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Microsoft Windows Vista \u00c9dition x64 Service Pack 1 ;",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Microsoft Windows Server 2008 pour syst\u00e8mes x64 ;",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Microsoft Windows Server 2003 avec SP1 pour les syst\u00e8mes Itanium ;",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Microsoft Windows Server 2003 avec SP2 pour les syst\u00e8mes Itanium ;",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Microsoft Windows Server 2003 Service Pack 1 ;",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Microsoft Windows Server 2003 \u00c9dition x64 ;",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Microsoft Windows XP Service Pack 2 ;",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Microsoft Windows XP Professionnel \u00c9dition x64 Service Pack 2 ;",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Microsoft Windows Server 2008 pour syst\u00e8mes Itanium.",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Microsoft Windows Server 2008 pour syst\u00e8mes 32 bits ;",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Microsoft Windows Server 2003 Service Pack 2 ;",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Microsoft Windows Vista \u00c9dition x64 ;",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Microsoft Windows XP Service Pack 3 ;",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Microsoft Windows 2000 Service Pack 4 ;",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Description\n\nTrois vuln\u00e9rabilit\u00e9s affectent le noyau Microsoft Windows permettant une\n\u00e9l\u00e9vation de privil\u00e8ges sur le syst\u00e8me, ces derni\u00e8res sont caus\u00e9es par :\n\n-   un probl\u00e8me dans la validation de certaines propri\u00e9t\u00e9s de fen\u00eatre\n    transmises lors du processus de cr\u00e9ation de fen\u00eatre ;\n-   une possible double lib\u00e9ration de m\u00e9moire ;\n-   une validation incorrecte des entr\u00e9es transmises au noyau depuis le\n    mode utilisateur.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 MS08-061 de Microsoft pour\nl\u0027obtention des correctifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2008-2250",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2250"
    },
    {
      "name": "CVE-2008-2251",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2251"
    },
    {
      "name": "CVE-2008-2252",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2252"
    }
  ],
  "initial_release_date": "2008-10-15T00:00:00",
  "last_revision_date": "2008-10-15T00:00:00",
  "links": [],
  "reference": "CERTA-2008-AVI-502",
  "revisions": [
    {
      "description": "version initiale.",
      "revision_date": "2008-10-15T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "\u00c9l\u00e9vation de privil\u00e8ges"
    }
  ],
  "summary": "Plusieurs vuln\u00e9rabilit\u00e9s affectent le noyau Microsoft Windows et\npermettent \u00e0 une personne malveillante d\u0027\u00e9lever ses privil\u00e8ges sur le\nsyst\u00e8me.\n",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans le noyau Microsoft Windows",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft MS08-061 du 14 octobre 2008",
      "url": "http://www.microsoft.com/technet/security/Bulletin/MS08-061.mspx"
    }
  ]
}

CVE-2008-2251 (GCVE-0-2008-2251)

Vulnerability from cvelistv5

Published

2008-10-15 00:00

Modified

2024-08-07 08:58

Severity ?

CWE

Summary

Double free vulnerability in the kernel in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, and Server 2008 allows local users to gain privileges via a crafted application that makes system calls within multiple threads, aka "Windows Kernel Unhandled Exception Vulnerability." NOTE: according to Microsoft, this is not a duplicate of CVE-2008-4510.

References

URL

Tags

	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6010	vdb-entry, signature, x_refsource_OVAL
	https://exchange.xforce.ibmcloud.com/vulnerabilities/45542	vdb-entry, x_refsource_XF
	http://marc.info/?l=bugtraq&m=122479227205998&w=2	vendor-advisory, x_refsource_HP
	http://secunia.com/advisories/32247	third-party-advisory, x_refsource_SECUNIA
	https://docs.microsoft.com/en-us/security-updates/securitybulletins/2008/ms08-061	vendor-advisory, x_refsource_MS
	http://www.securityfocus.com/bid/31653	vdb-entry, x_refsource_BID
	https://exchange.xforce.ibmcloud.com/vulnerabilities/45544	vdb-entry, x_refsource_XF
	http://marc.info/?l=bugtraq&m=122479227205998&w=2	vendor-advisory, x_refsource_HP
	http://www.vupen.com/english/advisories/2008/2812	vdb-entry, x_refsource_VUPEN
	http://www.securitytracker.com/id?1021046	vdb-entry, x_refsource_SECTRACK
	http://www.us-cert.gov/cas/techalerts/TA08-288A.html	third-party-advisory, x_refsource_CERT

Impacted products

	Vendor	Product	Version
	n/a	n/a	Version: n/a

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-07T08:58:01.071Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "oval:org.mitre.oval:def:6010",
            "tags": [
              "vdb-entry",
              "signature",
              "x_refsource_OVAL",
              "x_transferred"
            ],
            "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6010"
          },
          {
            "name": "win-kernel-system-calls-privilege-escalation(45542)",
            "tags": [
              "vdb-entry",
              "x_refsource_XF",
              "x_transferred"
            ],
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/45542"
          },
          {
            "name": "SSRT080143",
            "tags": [
              "vendor-advisory",
              "x_refsource_HP",
              "x_transferred"
            ],
            "url": "http://marc.info/?l=bugtraq\u0026m=122479227205998\u0026w=2"
          },
          {
            "name": "32247",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/32247"
          },
          {
            "name": "MS08-061",
            "tags": [
              "vendor-advisory",
              "x_refsource_MS",
              "x_transferred"
            ],
            "url": "https://docs.microsoft.com/en-us/security-updates/securitybulletins/2008/ms08-061"
          },
          {
            "name": "31653",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/31653"
          },
          {
            "name": "win-ms08kb954211-update(45544)",
            "tags": [
              "vdb-entry",
              "x_refsource_XF",
              "x_transferred"
            ],
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/45544"
          },
          {
            "name": "HPSBST02379",
            "tags": [
              "vendor-advisory",
              "x_refsource_HP",
              "x_transferred"
            ],
            "url": "http://marc.info/?l=bugtraq\u0026m=122479227205998\u0026w=2"
          },
          {
            "name": "ADV-2008-2812",
            "tags": [
              "vdb-entry",
              "x_refsource_VUPEN",
              "x_transferred"
            ],
            "url": "http://www.vupen.com/english/advisories/2008/2812"
          },
          {
            "name": "1021046",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://www.securitytracker.com/id?1021046"
          },
          {
            "name": "TA08-288A",
            "tags": [
              "third-party-advisory",
              "x_refsource_CERT",
              "x_transferred"
            ],
            "url": "http://www.us-cert.gov/cas/techalerts/TA08-288A.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2008-10-14T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "Double free vulnerability in the kernel in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, and Server 2008 allows local users to gain privileges via a crafted application that makes system calls within multiple threads, aka \"Windows Kernel Unhandled Exception Vulnerability.\" NOTE: according to Microsoft, this is not a duplicate of CVE-2008-4510."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2018-10-12T19:57:01",
        "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "shortName": "microsoft"
      },
      "references": [
        {
          "name": "oval:org.mitre.oval:def:6010",
          "tags": [
            "vdb-entry",
            "signature",
            "x_refsource_OVAL"
          ],
          "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6010"
        },
        {
          "name": "win-kernel-system-calls-privilege-escalation(45542)",
          "tags": [
            "vdb-entry",
            "x_refsource_XF"
          ],
          "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/45542"
        },
        {
          "name": "SSRT080143",
          "tags": [
            "vendor-advisory",
            "x_refsource_HP"
          ],
          "url": "http://marc.info/?l=bugtraq\u0026m=122479227205998\u0026w=2"
        },
        {
          "name": "32247",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/32247"
        },
        {
          "name": "MS08-061",
          "tags": [
            "vendor-advisory",
            "x_refsource_MS"
          ],
          "url": "https://docs.microsoft.com/en-us/security-updates/securitybulletins/2008/ms08-061"
        },
        {
          "name": "31653",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/31653"
        },
        {
          "name": "win-ms08kb954211-update(45544)",
          "tags": [
            "vdb-entry",
            "x_refsource_XF"
          ],
          "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/45544"
        },
        {
          "name": "HPSBST02379",
          "tags": [
            "vendor-advisory",
            "x_refsource_HP"
          ],
          "url": "http://marc.info/?l=bugtraq\u0026m=122479227205998\u0026w=2"
        },
        {
          "name": "ADV-2008-2812",
          "tags": [
            "vdb-entry",
            "x_refsource_VUPEN"
          ],
          "url": "http://www.vupen.com/english/advisories/2008/2812"
        },
        {
          "name": "1021046",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://www.securitytracker.com/id?1021046"
        },
        {
          "name": "TA08-288A",
          "tags": [
            "third-party-advisory",
            "x_refsource_CERT"
          ],
          "url": "http://www.us-cert.gov/cas/techalerts/TA08-288A.html"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "secure@microsoft.com",
          "ID": "CVE-2008-2251",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Double free vulnerability in the kernel in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, and Server 2008 allows local users to gain privileges via a crafted application that makes system calls within multiple threads, aka \"Windows Kernel Unhandled Exception Vulnerability.\" NOTE: according to Microsoft, this is not a duplicate of CVE-2008-4510."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "oval:org.mitre.oval:def:6010",
              "refsource": "OVAL",
              "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6010"
            },
            {
              "name": "win-kernel-system-calls-privilege-escalation(45542)",
              "refsource": "XF",
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/45542"
            },
            {
              "name": "SSRT080143",
              "refsource": "HP",
              "url": "http://marc.info/?l=bugtraq\u0026m=122479227205998\u0026w=2"
            },
            {
              "name": "32247",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/32247"
            },
            {
              "name": "MS08-061",
              "refsource": "MS",
              "url": "https://docs.microsoft.com/en-us/security-updates/securitybulletins/2008/ms08-061"
            },
            {
              "name": "31653",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/31653"
            },
            {
              "name": "win-ms08kb954211-update(45544)",
              "refsource": "XF",
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/45544"
            },
            {
              "name": "HPSBST02379",
              "refsource": "HP",
              "url": "http://marc.info/?l=bugtraq\u0026m=122479227205998\u0026w=2"
            },
            {
              "name": "ADV-2008-2812",
              "refsource": "VUPEN",
              "url": "http://www.vupen.com/english/advisories/2008/2812"
            },
            {
              "name": "1021046",
              "refsource": "SECTRACK",
              "url": "http://www.securitytracker.com/id?1021046"
            },
            {
              "name": "TA08-288A",
              "refsource": "CERT",
              "url": "http://www.us-cert.gov/cas/techalerts/TA08-288A.html"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
    "assignerShortName": "microsoft",
    "cveId": "CVE-2008-2251",
    "datePublished": "2008-10-15T00:00:00",
    "dateReserved": "2008-05-16T00:00:00",
    "dateUpdated": "2024-08-07T08:58:01.071Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2008-2250 (GCVE-0-2008-2250)

Vulnerability from cvelistv5

Published

2008-10-15 00:00

Modified

2024-08-07 08:58

Severity ?

CWE

Summary

The kernel in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, and Server 2008 does not properly validate window properties sent from a parent window to a child window during creation of a new window, which allows local users to gain privileges via a crafted application, aka "Windows Kernel Window Creation Vulnerability."

References

URL

Tags

	http://marc.info/?l=bugtraq&m=122479227205998&w=2	vendor-advisory, x_refsource_HP
	http://secunia.com/advisories/32247	third-party-advisory, x_refsource_SECUNIA
	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5902	vdb-entry, signature, x_refsource_OVAL
	https://docs.microsoft.com/en-us/security-updates/securitybulletins/2008/ms08-061	vendor-advisory, x_refsource_MS
	https://exchange.xforce.ibmcloud.com/vulnerabilities/45541	vdb-entry, x_refsource_XF
	https://exchange.xforce.ibmcloud.com/vulnerabilities/45544	vdb-entry, x_refsource_XF
	http://marc.info/?l=bugtraq&m=122479227205998&w=2	vendor-advisory, x_refsource_HP
	http://www.vupen.com/english/advisories/2008/2812	vdb-entry, x_refsource_VUPEN
	http://www.securityfocus.com/bid/31651	vdb-entry, x_refsource_BID
	http://www.securitytracker.com/id?1021046	vdb-entry, x_refsource_SECTRACK
	http://www.us-cert.gov/cas/techalerts/TA08-288A.html	third-party-advisory, x_refsource_CERT

Impacted products

	Vendor	Product	Version
	n/a	n/a	Version: n/a

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-07T08:58:00.853Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "SSRT080143",
            "tags": [
              "vendor-advisory",
              "x_refsource_HP",
              "x_transferred"
            ],
            "url": "http://marc.info/?l=bugtraq\u0026m=122479227205998\u0026w=2"
          },
          {
            "name": "32247",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/32247"
          },
          {
            "name": "oval:org.mitre.oval:def:5902",
            "tags": [
              "vdb-entry",
              "signature",
              "x_refsource_OVAL",
              "x_transferred"
            ],
            "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5902"
          },
          {
            "name": "MS08-061",
            "tags": [
              "vendor-advisory",
              "x_refsource_MS",
              "x_transferred"
            ],
            "url": "https://docs.microsoft.com/en-us/security-updates/securitybulletins/2008/ms08-061"
          },
          {
            "name": "win-kernel-window-privilege-escalation(45541)",
            "tags": [
              "vdb-entry",
              "x_refsource_XF",
              "x_transferred"
            ],
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/45541"
          },
          {
            "name": "win-ms08kb954211-update(45544)",
            "tags": [
              "vdb-entry",
              "x_refsource_XF",
              "x_transferred"
            ],
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/45544"
          },
          {
            "name": "HPSBST02379",
            "tags": [
              "vendor-advisory",
              "x_refsource_HP",
              "x_transferred"
            ],
            "url": "http://marc.info/?l=bugtraq\u0026m=122479227205998\u0026w=2"
          },
          {
            "name": "ADV-2008-2812",
            "tags": [
              "vdb-entry",
              "x_refsource_VUPEN",
              "x_transferred"
            ],
            "url": "http://www.vupen.com/english/advisories/2008/2812"
          },
          {
            "name": "31651",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/31651"
          },
          {
            "name": "1021046",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://www.securitytracker.com/id?1021046"
          },
          {
            "name": "TA08-288A",
            "tags": [
              "third-party-advisory",
              "x_refsource_CERT",
              "x_transferred"
            ],
            "url": "http://www.us-cert.gov/cas/techalerts/TA08-288A.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2008-10-14T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "The kernel in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, and Server 2008 does not properly validate window properties sent from a parent window to a child window during creation of a new window, which allows local users to gain privileges via a crafted application, aka \"Windows Kernel Window Creation Vulnerability.\""
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2018-10-12T19:57:01",
        "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "shortName": "microsoft"
      },
      "references": [
        {
          "name": "SSRT080143",
          "tags": [
            "vendor-advisory",
            "x_refsource_HP"
          ],
          "url": "http://marc.info/?l=bugtraq\u0026m=122479227205998\u0026w=2"
        },
        {
          "name": "32247",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/32247"
        },
        {
          "name": "oval:org.mitre.oval:def:5902",
          "tags": [
            "vdb-entry",
            "signature",
            "x_refsource_OVAL"
          ],
          "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5902"
        },
        {
          "name": "MS08-061",
          "tags": [
            "vendor-advisory",
            "x_refsource_MS"
          ],
          "url": "https://docs.microsoft.com/en-us/security-updates/securitybulletins/2008/ms08-061"
        },
        {
          "name": "win-kernel-window-privilege-escalation(45541)",
          "tags": [
            "vdb-entry",
            "x_refsource_XF"
          ],
          "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/45541"
        },
        {
          "name": "win-ms08kb954211-update(45544)",
          "tags": [
            "vdb-entry",
            "x_refsource_XF"
          ],
          "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/45544"
        },
        {
          "name": "HPSBST02379",
          "tags": [
            "vendor-advisory",
            "x_refsource_HP"
          ],
          "url": "http://marc.info/?l=bugtraq\u0026m=122479227205998\u0026w=2"
        },
        {
          "name": "ADV-2008-2812",
          "tags": [
            "vdb-entry",
            "x_refsource_VUPEN"
          ],
          "url": "http://www.vupen.com/english/advisories/2008/2812"
        },
        {
          "name": "31651",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/31651"
        },
        {
          "name": "1021046",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://www.securitytracker.com/id?1021046"
        },
        {
          "name": "TA08-288A",
          "tags": [
            "third-party-advisory",
            "x_refsource_CERT"
          ],
          "url": "http://www.us-cert.gov/cas/techalerts/TA08-288A.html"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "secure@microsoft.com",
          "ID": "CVE-2008-2250",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "The kernel in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, and Server 2008 does not properly validate window properties sent from a parent window to a child window during creation of a new window, which allows local users to gain privileges via a crafted application, aka \"Windows Kernel Window Creation Vulnerability.\""
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "SSRT080143",
              "refsource": "HP",
              "url": "http://marc.info/?l=bugtraq\u0026m=122479227205998\u0026w=2"
            },
            {
              "name": "32247",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/32247"
            },
            {
              "name": "oval:org.mitre.oval:def:5902",
              "refsource": "OVAL",
              "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5902"
            },
            {
              "name": "MS08-061",
              "refsource": "MS",
              "url": "https://docs.microsoft.com/en-us/security-updates/securitybulletins/2008/ms08-061"
            },
            {
              "name": "win-kernel-window-privilege-escalation(45541)",
              "refsource": "XF",
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/45541"
            },
            {
              "name": "win-ms08kb954211-update(45544)",
              "refsource": "XF",
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/45544"
            },
            {
              "name": "HPSBST02379",
              "refsource": "HP",
              "url": "http://marc.info/?l=bugtraq\u0026m=122479227205998\u0026w=2"
            },
            {
              "name": "ADV-2008-2812",
              "refsource": "VUPEN",
              "url": "http://www.vupen.com/english/advisories/2008/2812"
            },
            {
              "name": "31651",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/31651"
            },
            {
              "name": "1021046",
              "refsource": "SECTRACK",
              "url": "http://www.securitytracker.com/id?1021046"
            },
            {
              "name": "TA08-288A",
              "refsource": "CERT",
              "url": "http://www.us-cert.gov/cas/techalerts/TA08-288A.html"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
    "assignerShortName": "microsoft",
    "cveId": "CVE-2008-2250",
    "datePublished": "2008-10-15T00:00:00",
    "dateReserved": "2008-05-16T00:00:00",
    "dateUpdated": "2024-08-07T08:58:00.853Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2008-2252 (GCVE-0-2008-2252)

Vulnerability from cvelistv5

Published

2008-10-15 00:00

Modified

2024-08-07 08:58

Severity ?

CWE

Summary

The kernel in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, and Server 2008 does not properly validate parameters sent from user mode to the kernel, which allows local users to gain privileges via a crafted application, aka "Windows Kernel Memory Corruption Vulnerability."

References

URL

Tags

	http://marc.info/?l=bugtraq&m=122479227205998&w=2	vendor-advisory, x_refsource_HP
	http://secunia.com/advisories/32247	third-party-advisory, x_refsource_SECUNIA
	https://exchange.xforce.ibmcloud.com/vulnerabilities/45543	vdb-entry, x_refsource_XF
	https://docs.microsoft.com/en-us/security-updates/securitybulletins/2008/ms08-061	vendor-advisory, x_refsource_MS
	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6045	vdb-entry, signature, x_refsource_OVAL
	https://exchange.xforce.ibmcloud.com/vulnerabilities/45544	vdb-entry, x_refsource_XF
	http://marc.info/?l=bugtraq&m=122479227205998&w=2	vendor-advisory, x_refsource_HP
	http://www.vupen.com/english/advisories/2008/2812	vdb-entry, x_refsource_VUPEN
	http://www.securitytracker.com/id?1021046	vdb-entry, x_refsource_SECTRACK
	http://www.us-cert.gov/cas/techalerts/TA08-288A.html	third-party-advisory, x_refsource_CERT
	http://www.securityfocus.com/bid/31652	vdb-entry, x_refsource_BID

Impacted products

	Vendor	Product	Version
	n/a	n/a	Version: n/a

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-07T08:58:01.671Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "SSRT080143",
            "tags": [
              "vendor-advisory",
              "x_refsource_HP",
              "x_transferred"
            ],
            "url": "http://marc.info/?l=bugtraq\u0026m=122479227205998\u0026w=2"
          },
          {
            "name": "32247",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/32247"
          },
          {
            "name": "win-kernel-input-privilege-escalation(45543)",
            "tags": [
              "vdb-entry",
              "x_refsource_XF",
              "x_transferred"
            ],
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/45543"
          },
          {
            "name": "MS08-061",
            "tags": [
              "vendor-advisory",
              "x_refsource_MS",
              "x_transferred"
            ],
            "url": "https://docs.microsoft.com/en-us/security-updates/securitybulletins/2008/ms08-061"
          },
          {
            "name": "oval:org.mitre.oval:def:6045",
            "tags": [
              "vdb-entry",
              "signature",
              "x_refsource_OVAL",
              "x_transferred"
            ],
            "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6045"
          },
          {
            "name": "win-ms08kb954211-update(45544)",
            "tags": [
              "vdb-entry",
              "x_refsource_XF",
              "x_transferred"
            ],
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/45544"
          },
          {
            "name": "HPSBST02379",
            "tags": [
              "vendor-advisory",
              "x_refsource_HP",
              "x_transferred"
            ],
            "url": "http://marc.info/?l=bugtraq\u0026m=122479227205998\u0026w=2"
          },
          {
            "name": "ADV-2008-2812",
            "tags": [
              "vdb-entry",
              "x_refsource_VUPEN",
              "x_transferred"
            ],
            "url": "http://www.vupen.com/english/advisories/2008/2812"
          },
          {
            "name": "1021046",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://www.securitytracker.com/id?1021046"
          },
          {
            "name": "TA08-288A",
            "tags": [
              "third-party-advisory",
              "x_refsource_CERT",
              "x_transferred"
            ],
            "url": "http://www.us-cert.gov/cas/techalerts/TA08-288A.html"
          },
          {
            "name": "31652",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/31652"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2008-10-14T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "The kernel in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, and Server 2008 does not properly validate parameters sent from user mode to the kernel, which allows local users to gain privileges via a crafted application, aka \"Windows Kernel Memory Corruption Vulnerability.\""
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2018-10-12T19:57:01",
        "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "shortName": "microsoft"
      },
      "references": [
        {
          "name": "SSRT080143",
          "tags": [
            "vendor-advisory",
            "x_refsource_HP"
          ],
          "url": "http://marc.info/?l=bugtraq\u0026m=122479227205998\u0026w=2"
        },
        {
          "name": "32247",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/32247"
        },
        {
          "name": "win-kernel-input-privilege-escalation(45543)",
          "tags": [
            "vdb-entry",
            "x_refsource_XF"
          ],
          "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/45543"
        },
        {
          "name": "MS08-061",
          "tags": [
            "vendor-advisory",
            "x_refsource_MS"
          ],
          "url": "https://docs.microsoft.com/en-us/security-updates/securitybulletins/2008/ms08-061"
        },
        {
          "name": "oval:org.mitre.oval:def:6045",
          "tags": [
            "vdb-entry",
            "signature",
            "x_refsource_OVAL"
          ],
          "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6045"
        },
        {
          "name": "win-ms08kb954211-update(45544)",
          "tags": [
            "vdb-entry",
            "x_refsource_XF"
          ],
          "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/45544"
        },
        {
          "name": "HPSBST02379",
          "tags": [
            "vendor-advisory",
            "x_refsource_HP"
          ],
          "url": "http://marc.info/?l=bugtraq\u0026m=122479227205998\u0026w=2"
        },
        {
          "name": "ADV-2008-2812",
          "tags": [
            "vdb-entry",
            "x_refsource_VUPEN"
          ],
          "url": "http://www.vupen.com/english/advisories/2008/2812"
        },
        {
          "name": "1021046",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://www.securitytracker.com/id?1021046"
        },
        {
          "name": "TA08-288A",
          "tags": [
            "third-party-advisory",
            "x_refsource_CERT"
          ],
          "url": "http://www.us-cert.gov/cas/techalerts/TA08-288A.html"
        },
        {
          "name": "31652",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/31652"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "secure@microsoft.com",
          "ID": "CVE-2008-2252",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "The kernel in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, and Server 2008 does not properly validate parameters sent from user mode to the kernel, which allows local users to gain privileges via a crafted application, aka \"Windows Kernel Memory Corruption Vulnerability.\""
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "SSRT080143",
              "refsource": "HP",
              "url": "http://marc.info/?l=bugtraq\u0026m=122479227205998\u0026w=2"
            },
            {
              "name": "32247",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/32247"
            },
            {
              "name": "win-kernel-input-privilege-escalation(45543)",
              "refsource": "XF",
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/45543"
            },
            {
              "name": "MS08-061",
              "refsource": "MS",
              "url": "https://docs.microsoft.com/en-us/security-updates/securitybulletins/2008/ms08-061"
            },
            {
              "name": "oval:org.mitre.oval:def:6045",
              "refsource": "OVAL",
              "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6045"
            },
            {
              "name": "win-ms08kb954211-update(45544)",
              "refsource": "XF",
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/45544"
            },
            {
              "name": "HPSBST02379",
              "refsource": "HP",
              "url": "http://marc.info/?l=bugtraq\u0026m=122479227205998\u0026w=2"
            },
            {
              "name": "ADV-2008-2812",
              "refsource": "VUPEN",
              "url": "http://www.vupen.com/english/advisories/2008/2812"
            },
            {
              "name": "1021046",
              "refsource": "SECTRACK",
              "url": "http://www.securitytracker.com/id?1021046"
            },
            {
              "name": "TA08-288A",
              "refsource": "CERT",
              "url": "http://www.us-cert.gov/cas/techalerts/TA08-288A.html"
            },
            {
              "name": "31652",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/31652"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
    "assignerShortName": "microsoft",
    "cveId": "CVE-2008-2252",
    "datePublished": "2008-10-15T00:00:00",
    "dateReserved": "2008-05-16T00:00:00",
    "dateUpdated": "2024-08-07T08:58:01.671Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Tags

Taxonomy of the tags.

All sightings related to this event Export sightings related to this event

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

CERTA-2008-AVI-502

Vulnerability from certfr_avis

Description

Solution

CVE-2008-2251 (GCVE-0-2008-2251)

Vulnerability from cvelistv5

CVE-2008-2250 (GCVE-0-2008-2250)

Vulnerability from cvelistv5

CVE-2008-2252 (GCVE-0-2008-2252)

Vulnerability from cvelistv5

Tags

Sightings

Nomenclature