Detections
Analytics

MS09-058: Vulnerabilities in Windows Kernel Could Allow Elevation of Privilege (971486)

high Nessus Plugin ID 42114

Language:

Synopsis

The Windows kernel is vulnerable to multiple buffer overflow attacks.

Description

The remote Windows host is running a version of the Windows kernel that is affected by multiple vulnerabilities :

 - An elevation of privilege vulnerability exists in the Windows kernel due to the incorrect truncation of a 64- bit value to a 32-bit value. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode. An attacker could then install programs, view / change / delete data, or create new accounts with full user rights.
 (CVE-2009-2515)

 - An elevation of privilege vulnerability exists in the Windows kernel due to the incorrect truncation of a 64- bit value to a 32-bit value. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode. An attacker could then install programs, view / change / delete data, or create new accounts with full user rights.
 (CVE-2009-2516)

 - A denial of service vulnerability exists in the Windows kernel because of the way the kernel handles certain exceptions. An attacker could exploit the vulnerability by running a specially crafted application causing the system to restart.
 (CVE-2009-2517)

Solution

Microsoft has released a set of patches for Windows 2000, XP, 2003, Vista and 2008.

See Also

https://docs.microsoft.com/en-us/security-updates/SecurityBulletins/2009/ms09-058

Plugin Details

Severity: High

ID: 42114

File Name: smb_nt_ms09-058.nasl

Version: 1.24

Type: local

Agent: windows

Published: 10/13/2009

Updated: 11/15/2018

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: High

Score: 7.4

CVSS v2

Risk Factor: High

Base Score: 7.6

Temporal Score: 6.3

Vector: CVSS2#AV:N/AC:H/Au:N/C:C/I:C/A:C

Vulnerability Information

CPE: cpe:/o:microsoft:windows

Required KB Items: SMB/MS_Bulletin_Checks/Possible

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 10/13/2009

Vulnerability Publication Date: 10/13/2009

Exploitable With

Core Impact

Reference Information

CVE: CVE-2009-2515, CVE-2009-2516, CVE-2009-2517

BID: 36623, 36624, 36625

CWE: 189, 264

MSFT: MS09-058

MSKB: 971486