Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

fulldisclosure logo Full Disclosure mailing list archives

Re: Multiple WinXP kernel vulns can give user mode programs kernel mode privileges
From: 3APA3A <3APA3A () SECURITY NNOV RU>
Date: Thu, 19 Feb 2004 14:09:09 +0300
Dear first last,

--Thursday, February 19, 2004, 1:15:20 AM, you wrote to full-disclosure () lists netsys com:

fl> There exist several vulnerabilities in one of Windows XP kernel's native API
fl> functions which allow any user with the SeDebugPrivilege privilege to
fl> execute arbitrary code in kernel mode, and read from and write to any memory
fl> address, including kernel memory.

SeDebugPrivilege  allows you to change execution flow for any process or
kill  any  process  (for  example security subsystem or any RPC server).
This  privilege  is  enough  to  compromise  system  in thousand ways by
design. By default only Administrators have this privilege.

-- 
~/ZARAZA
Электрические шоки очень полезны для формирования характера. (Лем)

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]