Published: 14/12/2005 Updated: 30/04/2019

CVSS v2 Base Score: 7.2 | Impact Score: 10 | Exploitability Score: 3.9

VMScore: 725

Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C

The thread termination routine in the kernel for Windows NT 4.0 and 2000 (NTOSKRNL.EXE) allows local users to modify kernel memory and execution flow via steps in which a terminating thread causes Asynchronous Procedure Call (APC) entries to free the wrong data, aka the "Windows Kernel Vulnerability."

Vulnerable Product	Search on Vulmon	Subscribe to Product
microsoft windows 2000
microsoft windows nt 4.0

/* helperc commented out below ms05-055c /str0ke */ /* MS05-055 Windows Kernel APC Data-Free Local Privilege Escalation Vulnerability Exploit Created by SoBeIt 12252005 Main file of exploit Tested on: Windows 2000 PRO SP4 Chinese Windows 2000 PRO SP4 Rollup 1 Chinese Windows 2000 PRO SP4 English Windows 2000 PRO SP4 Rollup 1 ...

NVD-CWE-Other http://www.securityfocus.com/bid/15826 http://www.osvdb.org/18823 http://secunia.com/advisories/15821 http://www.eeye.com/html/research/advisories/AD20051213.html http://securitytracker.com/id?1015347 http://support.avaya.com/elmodocs2/security/ASA-2005-234.pdf http://secunia.com/advisories/18064 http://secunia.com/advisories/18311 http://www130.nortelnetworks.com/cgi-bin/eserv/cs/main.jsp?cscat=BLTNDETAIL&DocumentOID=375420 http://securityreason.com/securityalert/252 http://www.vupen.com/english/advisories/2005/2909 http://www.vupen.com/english/advisories/2005/2868 https://exchange.xforce.ibmcloud.com/vulnerabilities/23447 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1583 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2005/ms05-055 http://www.securityfocus.com/archive/1/419377/100/0/threaded https://nvd.nist.gov https://www.exploit-db.com/exploits/1407/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2005-2827

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect