CVE-2009-2653

NONECVSS 0.0

0.0

The NtUserConsoleControl function in win32k.sys in Microsoft Windows XP SP2 and SP3, and Server 2003 before SP1, allows local administrators to bypass unspecified "security software" and gain privileges via a crafted call that triggers an overwrite of an arbitrary memory location. NOTE: the vendor disputes the significance of this report, stating that 'the Administrator to SYSTEM "escalation" is not a security boundary we defend.

🔗 References (12)

cve@mitrehttp://blogs.technet.com/srd/archive/2009/06/11/latest-baidu-public-posting-requires-adminisrator-to-elevate.aspx
cve@mitrehttp://hi.baidu.com/azy0922/blog/item/f950cbc2890729130ef47783.html
cve@mitrehttp://osvdb.org/56780
cve@mitrehttp://securitytracker.com/id?1022630
cve@mitrehttp://www.exploit-db.com/exploits/9301
cve@mitrehttp://www.ntinternals.org/index.html#09_07_30
af854a3a-2127-422b-91ae-364da2661108http://blogs.technet.com/srd/archive/2009/06/11/latest-baidu-public-posting-requires-adminisrator-to-elevate.aspx
af854a3a-2127-422b-91ae-364da2661108http://hi.baidu.com/azy0922/blog/item/f950cbc2890729130ef47783.html
af854a3a-2127-422b-91ae-364da2661108http://osvdb.org/56780
af854a3a-2127-422b-91ae-364da2661108http://securitytracker.com/id?1022630
af854a3a-2127-422b-91ae-364da2661108http://www.exploit-db.com/exploits/9301
af854a3a-2127-422b-91ae-364da2661108http://www.ntinternals.org/index.html#09_07_30

Is Your Infrastructure Affected by CVE-2009-2653?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2009-2653

📅 Published

🔄 Last Modified

🔗 References (12)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2009-2653?