NGSEC StackDefender 2.0 ZwAllocateVirtualMemory/ZwProtectVirtualMemory BaseAddress denial of service
| CVSS Meta Temp Score | Current Exploit Price (≈) | CTI Interest Score |
|---|---|---|
| 4.6 | $0-$5k | 0.00 |
Summary
A vulnerability classified as problematic has been found in NGSEC StackDefender 2.0. This issue affects the function ZwAllocateVirtualMemory/ZwProtectVirtualMemory. This manipulation of the argument BaseAddress causes denial of service.
This vulnerability is tracked as CVE-2004-0766. No exploit exists.
Details
A vulnerability was found in NGSEC StackDefender 2.0. It has been declared as problematic. Affected by this vulnerability is the function ZwAllocateVirtualMemory/ZwProtectVirtualMemory. The manipulation of the argument BaseAddress with an unknown input leads to a denial of service vulnerability. The CWE definition for the vulnerability is CWE-404. The product does not release or incorrectly releases a resource before it is made available for re-use. As an impact it is known to affect availability. The summary by CVE is:
NGSEC StackDefender 2.0 allows attackers to cause a denial of service (system crash) via an invalid address for the BaseAddress parameter to the hooks for the (1) ZwAllocateVirtualMemory or (2) ZwProtectVirtualMemory functions.
The weakness was disclosed 08/18/2004 by iDefense with iDEFENSE (Website). It is possible to read the advisory at xforce.iss.net. This vulnerability is known as CVE-2004-0766 since 08/02/2004. The exploitation appears to be easy. The attack can be launched remotely. The exploitation doesn't need any form of authentication. Technical details of the vulnerability are known, but there is no available exploit.
The vulnerability is also documented in the databases at X-Force (16892) and SecurityFocus (BID 10851†). The entry VDB-22148 is pretty similar. Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.
Product
Vendor
Name
Version
CPE 2.3
CPE 2.2
CVSSv4
VulDB Vector: 🔍VulDB Reliability: 🔍
CVSSv3
VulDB Meta Base Score: 5.3VulDB Meta Temp Score: 4.6
VulDB Base Score: 5.3
VulDB Temp Score: 4.6
VulDB Vector: 🔍
VulDB Reliability: 🔍
CVSSv2
| AV | AC | Au | C | I | A |
|---|---|---|---|---|---|
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
|---|---|---|---|---|---|
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
VulDB Base Score: 🔍
VulDB Temp Score: 🔍
VulDB Reliability: 🔍
NVD Base Score: 🔍
Exploiting
Class: Denial of serviceCWE: CWE-404
CAPEC: 🔍
ATT&CK: 🔍
Physical: No
Local: No
Remote: Yes
Availability: 🔍
Status: Unproven
EPSS Score: 🔍
EPSS Percentile: 🔍
Price Prediction: 🔍
Current Price Estimation: 🔍
| 0-Day | Unlock | Unlock | Unlock | Unlock |
|---|---|---|---|---|
| Today | Unlock | Unlock | Unlock | Unlock |
Threat Intelligence
Interest: 🔍Active Actors: 🔍
Active APT Groups: 🔍
Countermeasures
Recommended: no mitigation knownStatus: 🔍
0-Day Time: 🔍
Timeline
08/02/2004 🔍08/04/2004 🔍
08/18/2004 🔍
08/18/2004 🔍
04/14/2015 🔍
06/19/2018 🔍
Sources
Advisory: xforce.iss.netResearcher: iDefense
Organization: iDEFENSE
Status: Confirmed
CVE: CVE-2004-0766 (🔍)
GCVE (CVE): GCVE-0-2004-0766
GCVE (VulDB): GCVE-100-22147
X-Force: 16892 - StackDefender BaseAddress denial of service
SecurityFocus: 10851 - StackDefender BaseAddress Invalid Pointer Dereference Denial Of Service Vulnerability
See also: 🔍
Entry
Created: 04/14/2015 13:18Updated: 06/19/2018 20:57
Changes: 04/14/2015 13:18 (47), 06/19/2018 20:57 (10)
Complete: 🔍
Cache ID: 216::103
Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.
No comments yet. Languages: en.
Please log in to comment.