HOME > VULNERABILITY NOTES


   VULNERABILITY NOTE

 

CERT-In Vulnerability Note CIVN-2008-165
Microsoft Windows Virtual Address Descriptor Privilege Escalation Vulnerability

Original Issue Date:October 16, 2008

Severity Rating: Medium

Systems Affected

  • Windows XP Service Pack 2
  • Windows XP Service Pack 3
  • Windows XP Professional x64 Edition
  • Windows XP Professional x64 Edition Service Pack 2
  • Windows Server 2003 Service Pack 1
  • Windows Server 2003 Service Pack 2
  • Windows Server 2003 x64 Edition
  • Windows Server 2003 x64 Edition Service Pack 2
  • Windows Server 2003 with SP1 for Itanium-based Systems
  • Windows Server 2003 with SP2 for Itanium-based Systems
  • Windows Vista
  • Windows Vista Service Pack 1
  • Windows Vista x64 Edition
  • Windows Vista x64 Edition Service Pack 1
  • Windows Server 2008 for 32-bit Systems
  • Windows Server 2008 for x64-based Systems
  • Windows Server 2008 for Itanium-based Systems

Overview

A vulnerability has been reported in Microsoft Windows, which can be exploited by malicious local users to gain escalated privileges.

Description

 Virtual Address Descriptor (VAD) is a form of virtual memory to applications that allows each application to have its own private address space. This vulnerability is caused due to an integer overflow error when processing VAD parameters. The Memory Manager does not properly allocate memory when processing Virtual Address Descriptors (VADs).

An authenticated attacker could run a specially crafted program which could cause an integer overflow, thus corrupting memory in such a way that to execute arbitrary commands on the target system with System privileges.

Solution

Apply appropriate patches as mentioned in Microsoft Security Bulletin MS08-064

Vendor Information

Microsoft
http://www.microsoft.com/technet/security/Bulletin/
MS08-064.mspx

References

 Microsoft
http://www.microsoft.com/technet/security/Bulletin/
MS08-064.mspx

Secunia
http://secunia.com/advisories/32251/

SecurityTracker
http://securitytracker.com/alerts/2008/Oct/1021051.html

CVE Name
CVE-2008-4036

Disclaimer

The information provided herein is on "as is" basis, without warranty of any kind.

Contact Information


Phone: +91-11-24368572

Postal address

Indian Computer Emergency Response Team (CERT-In)
Ministry of Communications and Information Technology
Electronics Niketan
6, C.G.O. Complex
New Delhi-110 003