Microsoft Windows 7/Server 2003/Server 2008/Vista/XP Win32k Application Race Condition

EintraganpassenHistoryDiffjsonxmlCTI

In Microsoft Windows 7/Server 2003/Server 2008/Vista/XP (Operating System) wurde eine Schwachstelle ausgemacht. Sie wurde als problematisch eingestuft. Dabei geht es um ein unbekannter Prozess der Komponente Win32k Application Handler. Die Schwachstelle lässt sich durch das Einspielen des Patches KB2778344 beheben. Dieser kann von technet.microsoft.com bezogen werden. Das Erscheinen einer Gegenmassnahme geschah direkt nach der Veröffentlichung der Schwachstelle. Microsoft hat offensichtlich sofort reagiert.

Feld04.05.2021 20:2804.05.2021 20:3604.05.2021 20:44
vendorMicrosoftMicrosoftMicrosoft
nameWindowsWindowsWindows
version7/Server 2003/Server 2008/Vista/XP7/Server 2003/Server 2008/Vista/XP7/Server 2003/Server 2008/Vista/XP
componentWin32k Application HandlerWin32k Application HandlerWin32k Application Handler
risk111
cvss2_vuldb_basescore3.03.03.0
cvss2_vuldb_tempscore2.62.62.6
cvss2_vuldb_avLLL
cvss2_vuldb_acMMM
cvss2_vuldb_auSSS
cvss2_vuldb_ciPPP
cvss2_vuldb_iiPPP
cvss2_vuldb_aiNNN
cvss3_meta_basescore4.44.44.4
cvss3_meta_tempscore4.24.24.2
cvss3_vuldb_basescore4.44.44.4
cvss3_vuldb_tempscore4.24.24.2
cvss3_vuldb_avLLL
cvss3_vuldb_acLLL
cvss3_vuldb_prLLL
cvss3_vuldb_uiNNN
cvss3_vuldb_sUUU
cvss3_vuldb_cLLL
cvss3_vuldb_iLLL
cvss3_vuldb_aNNN
date1360627200 (12.02.2013)1360627200 (12.02.2013)1360627200 (12.02.2013)
locationWebsiteWebsiteWebsite
typeAdvisoryAdvisoryAdvisory
urlhttps://technet.microsoft.com/en-gb/security/bulletin/ms13-016https://technet.microsoft.com/en-gb/security/bulletin/ms13-016https://technet.microsoft.com/en-gb/security/bulletin/ms13-016
identifierMS13-016MS13-016MS13-016
coordination111
person_nameGynvael Coldwind/Mateusz JurczykGynvael Coldwind/Mateusz JurczykGynvael Coldwind/Mateusz Jurczyk
company_nameGoogle Security TeamGoogle Security TeamGoogle Security Team
disputed000
price_0day$5k-$25k$5k-$25k$5k-$25k
namePatchPatchPatch
date1360627200 (12.02.2013)1360627200 (12.02.2013)1360627200 (12.02.2013)
patch_nameKB2778344KB2778344KB2778344
patch_urlhttps://technet.microsoft.com/en-gb/security/bulletin/ms13-016https://technet.microsoft.com/en-gb/security/bulletin/ms13-016https://technet.microsoft.com/en-gb/security/bulletin/ms13-016
cveCVE-2013-1251CVE-2013-1251CVE-2013-1251
xforce816398163981639
heise180278618027861802786
nessus_id645776457764577
mischttp://blog.spiderlabs.com/2013/02/microsoft-patch-tuesday-february-2013-happy-chinese-new-year.htmlhttp://blog.spiderlabs.com/2013/02/microsoft-patch-tuesday-february-2013-happy-chinese-new-year.htmlhttp://blog.spiderlabs.com/2013/02/microsoft-patch-tuesday-february-2013-happy-chinese-new-year.html
seealso7661 7676 7637 7642 7646 7640 7634 7671 7677 7660 7662 7663 7664 7636 7639 7659 7645 7673 7665 7647 7658 7654 7657 7656 7638 7643 7635 7651 7653 76497661 7676 7637 7642 7646 7640 7634 7671 7677 7660 7662 7663 7664 7636 7639 7659 7645 7673 7665 7647 7658 7654 7657 7656 7638 7643 7635 7651 7653 76497661 7676 7637 7642 7646 7640 7634 7671 7677 7660 7662 7663 7664 7636 7639 7659 7645 7673 7665 7647 7658 7654 7657 7656 7638 7643 7635 7651 7653 7649
cvss2_vuldb_eNDNDND
cvss2_vuldb_rlOFOFOF
cvss2_vuldb_rcCCC
cvss3_vuldb_eXXX
cvss3_vuldb_rlOOO
cvss3_vuldb_rcCCC
typeOperating SystemOperating SystemOperating System
cwe362 (Race Condition)362 (Race Condition)362 (Race Condition)
cve_assigned135794880013579488001357948800
cve_nvd_published136071360013607136001360713600
cve_nvd_summaryRace condition in win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 allows local users to gain privileges, and consequently read the contents of arbitrary kernel memory locations, via a crafted application, a different vulnerability than other CVEs listed in MS13-016.Race condition in win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 allows local users to gain privileges, and consequently read the contents of arbitrary kernel memory locations, via a crafted application, a different vulnerability than other CVEs listed in MS13-016.Race condition in win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 allows local users to gain privileges, and consequently read the contents of arbitrary kernel memory locations, via a crafted application, a different vulnerability than other CVEs listed in MS13-016.
oval_idoval:org.mitre.oval:def:16408oval:org.mitre.oval:def:16408oval:org.mitre.oval:def:16408
securityfocus577935779357793
vulnerabilitycenter383933839338393
vulnerabilitycenter_title[MS13-016] Microsoft Windows Kernel-Mode Driver Local Memory Read Vulnerability (CVE-2013-1251)[MS13-016] Microsoft Windows Kernel-Mode Driver Local Memory Read Vulnerability (CVE-2013-1251)[MS13-016] Microsoft Windows Kernel-Mode Driver Local Memory Read Vulnerability (CVE-2013-1251)
vulnerabilitycenter_severityMediumMediumMedium
vulnerabilitycenter_creationdate136071360013607136001360713600
vulnerabilitycenter_lastupdatedate143389440014338944001433894400
vulnerabilitycenter_reportingdate136062720013606272001360627200
nessus_nameMS13-016: Vulnerabilities in Windows Kernel-Mode Driver Could Allow Elevation of Privilege (2778344)MS13-016: Vulnerabilities in Windows Kernel-Mode Driver Could Allow Elevation of Privilege (2778344)MS13-016: Vulnerabilities in Windows Kernel-Mode Driver Could Allow Elevation of Privilege (2778344)
nessus_filenamesmb_nt_ms13-016.naslsmb_nt_ms13-016.naslsmb_nt_ms13-016.nasl
nessus_familyWindows : Microsoft BulletinsWindows : Microsoft BulletinsWindows : Microsoft Bulletins
openvas_id902943902943902943
openvas_filenamesecpod_ms13-016.naslsecpod_ms13-016.naslsecpod_ms13-016.nasl
openvas_titleMicrosoft Windows Kernel-Mode Drivers Privilege Elevation Vulnerabilities (2778344)Microsoft Windows Kernel-Mode Drivers Privilege Elevation Vulnerabilities (2778344)Microsoft Windows Kernel-Mode Drivers Privilege Elevation Vulnerabilities (2778344)
openvas_familyWindows : Microsoft BulletinsWindows : Microsoft BulletinsWindows : Microsoft Bulletins
qualys_id908679086790867
qualys_titleMicrosoft Windows Kernel-Mode Driver Elevation of Privilege Vulnerability (MS13-016)Microsoft Windows Kernel-Mode Driver Elevation of Privilege Vulnerability (MS13-016)Microsoft Windows Kernel-Mode Driver Elevation of Privilege Vulnerability (MS13-016)
cvss2_nvd_avLLL
cvss2_nvd_acLLL
cvss2_nvd_auNNN
cvss2_nvd_ciCCC
cvss2_nvd_iiNNN
cvss2_nvd_aiNNN
cvss2_nvd_basescore4.94.94.9
securityfocus_date1360623600 (12.02.2013)1360623600 (12.02.2013)
securityfocus_classRace Condition ErrorRace Condition Error
nessus_riskMedium

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!