Microsoft Windows 7/Server 2003/Server 2008/Vista/XP Win32k Application Race Condition

EintraganpassenHistoryDiffjsonxmlCTI

Es wurde eine problematische Schwachstelle in Microsoft Windows 7/Server 2003/Server 2008/Vista/XP (Operating System) entdeckt. Es betrifft eine unbekannte Funktion der Komponente Win32k Application Handler. Die Schwachstelle lässt sich durch das Einspielen des Patches KB2778344 beheben. Dieser kann von technet.microsoft.com bezogen werden. Das Erscheinen einer Gegenmassnahme geschah direkt nach der Veröffentlichung der Schwachstelle. Microsoft hat also sofort reagiert.

Feld19.08.2018 19:5104.05.2021 21:0604.05.2021 21:18
person_nameGynvael Coldwind/Mateusz JurczykGynvael Coldwind/Mateusz JurczykGynvael Coldwind/Mateusz Jurczyk
company_nameGoogle Security TeamGoogle Security TeamGoogle Security Team
disputed000
price_0day$25k-$100k$5k-$25k$5k-$25k
namePatchPatchPatch
date1360627200 (12.02.2013)1360627200 (12.02.2013)1360627200 (12.02.2013)
patch_nameKB2778344KB2778344KB2778344
patch_urlhttps://technet.microsoft.com/en-gb/security/bulletin/ms13-016https://technet.microsoft.com/en-gb/security/bulletin/ms13-016https://technet.microsoft.com/en-gb/security/bulletin/ms13-016
cveCVE-2013-1253CVE-2013-1253CVE-2013-1253
xforce816418164181641
heise180278618027861802786
nessus_id645776457764577
mischttp://blog.spiderlabs.com/2013/02/microsoft-patch-tuesday-february-2013-happy-chinese-new-year.htmlhttp://blog.spiderlabs.com/2013/02/microsoft-patch-tuesday-february-2013-happy-chinese-new-year.htmlhttp://blog.spiderlabs.com/2013/02/microsoft-patch-tuesday-february-2013-happy-chinese-new-year.html
seealso7661 7676 7637 7642 7646 7640 7634 7671 7677 7660 7662 7663 7664 7636 7639 7659 7645 7673 7665 7647 7648 7658 7654 7657 7656 7638 7643 7635 7651 76537661 7676 7637 7642 7646 7640 7634 7671 7677 7660 7662 7663 7664 7636 7639 7659 7645 7673 7665 7647 7648 7658 7654 7657 7656 7638 7643 7635 7651 76537661 7676 7637 7642 7646 7640 7634 7671 7677 7660 7662 7663 7664 7636 7639 7659 7645 7673 7665 7647 7648 7658 7654 7657 7656 7638 7643 7635 7651 7653
cvss2_vuldb_eNDNDND
cvss2_vuldb_rlOFOFOF
cvss2_vuldb_rcCCC
cvss3_vuldb_eXXX
cvss3_vuldb_rlOOO
cvss3_vuldb_rcCCC
vendorMicrosoftMicrosoftMicrosoft
nameWindowsWindowsWindows
version7/Server 2003/Server 2008/Vista/XP7/Server 2003/Server 2008/Vista/XP7/Server 2003/Server 2008/Vista/XP
componentWin32k Application HandlerWin32k Application HandlerWin32k Application Handler
risk111
cvss2_vuldb_basescore3.03.03.0
cvss2_vuldb_tempscore2.62.62.6
cvss2_vuldb_avLLL
cvss2_vuldb_acMMM
cvss2_vuldb_auSSS
cvss2_vuldb_ciPPP
cvss2_vuldb_iiPPP
cvss2_vuldb_aiNNN
cvss3_meta_basescore4.44.44.4
cvss3_meta_tempscore4.24.24.2
cvss3_vuldb_basescore4.44.44.4
cvss3_vuldb_tempscore4.24.24.2
cvss3_vuldb_avLLL
cvss3_vuldb_acLLL
cvss3_vuldb_prLLL
cvss3_vuldb_uiNNN
cvss3_vuldb_sUUU
cvss3_vuldb_cLLL
cvss3_vuldb_iLLL
cvss3_vuldb_aNNN
date1360627200 (12.02.2013)1360627200 (12.02.2013)1360627200 (12.02.2013)
locationWebsiteWebsiteWebsite
typeAdvisoryAdvisoryAdvisory
urlhttps://technet.microsoft.com/en-gb/security/bulletin/ms13-016https://technet.microsoft.com/en-gb/security/bulletin/ms13-016https://technet.microsoft.com/en-gb/security/bulletin/ms13-016
identifierMS13-016MS13-016MS13-016
coordination111
cve_assigned135794880013579488001357948800
cve_nvd_published136071360013607136001360713600
cve_nvd_summaryRace condition in win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 allows local users to gain privileges, and consequently read the contents of arbitrary kernel memory locations, via a crafted application, a different vulnerability than other CVEs listed in MS13-016.Race condition in win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 allows local users to gain privileges, and consequently read the contents of arbitrary kernel memory locations, via a crafted application, a different vulnerability than other CVEs listed in MS13-016.Race condition in win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 allows local users to gain privileges, and consequently read the contents of arbitrary kernel memory locations, via a crafted application, a different vulnerability than other CVEs listed in MS13-016.
oval_idoval:org.mitre.oval:def:16122oval:org.mitre.oval:def:16122oval:org.mitre.oval:def:16122
securityfocus577955779557795
vulnerabilitycenter383953839538395
vulnerabilitycenter_title[MS13-016] Microsoft Windows Kernel-Mode Driver Local Memory Read Vulnerability (CVE-2013-1253)[MS13-016] Microsoft Windows Kernel-Mode Driver Local Memory Read Vulnerability (CVE-2013-1253)[MS13-016] Microsoft Windows Kernel-Mode Driver Local Memory Read Vulnerability (CVE-2013-1253)
vulnerabilitycenter_severityMediumMediumMedium
vulnerabilitycenter_creationdate136071360013607136001360713600
vulnerabilitycenter_lastupdatedate143389440014338944001433894400
vulnerabilitycenter_reportingdate136062720013606272001360627200
nessus_nameMS13-016: Vulnerabilities in Windows Kernel-Mode Driver Could Allow Elevation of Privilege (2778344)MS13-016: Vulnerabilities in Windows Kernel-Mode Driver Could Allow Elevation of Privilege (2778344)MS13-016: Vulnerabilities in Windows Kernel-Mode Driver Could Allow Elevation of Privilege (2778344)
nessus_filenamesmb_nt_ms13-016.naslsmb_nt_ms13-016.naslsmb_nt_ms13-016.nasl
nessus_familyWindows : Microsoft BulletinsWindows : Microsoft BulletinsWindows : Microsoft Bulletins
openvas_id902943902943902943
openvas_filenamesecpod_ms13-016.naslsecpod_ms13-016.naslsecpod_ms13-016.nasl
openvas_titleMicrosoft Windows Kernel-Mode Drivers Privilege Elevation Vulnerabilities (2778344)Microsoft Windows Kernel-Mode Drivers Privilege Elevation Vulnerabilities (2778344)Microsoft Windows Kernel-Mode Drivers Privilege Elevation Vulnerabilities (2778344)
openvas_familyWindows : Microsoft BulletinsWindows : Microsoft BulletinsWindows : Microsoft Bulletins
qualys_id908679086790867
qualys_titleMicrosoft Windows Kernel-Mode Driver Elevation of Privilege Vulnerability (MS13-016)Microsoft Windows Kernel-Mode Driver Elevation of Privilege Vulnerability (MS13-016)Microsoft Windows Kernel-Mode Driver Elevation of Privilege Vulnerability (MS13-016)
typeOperating SystemOperating SystemOperating System
cwe362 (Race Condition)362 (Race Condition)362 (Race Condition)
cvss2_nvd_avLL
cvss2_nvd_acLL
cvss2_nvd_auNN
cvss2_nvd_ciCC
cvss2_nvd_iiNN
cvss2_nvd_aiNN
cvss2_nvd_basescore4.94.9
nessus_riskMedium

Do you need the next level of professionalism?

Upgrade your account now!