Published: 10/04/2007 Updated: 16/10/2018

CVSS v2 Base Score: 7.2 | Impact Score: 10 | Exploitability Score: 3.9

VMScore: 641

Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C

The Virtual DOS Machine (VDM) in the Windows Kernel in Microsoft Windows NT 4.0; 2000 SP4; XP SP2; Server 2003, 2003 SP1, and 2003 SP2; and Windows Vista before June 2006; uses insecure permissions (PAGE_READWRITE) for a physical memory view, which allows local users to gain privileges by modifying the "zero page" during a race condition before the view is unmapped.

Vulnerable Product	Search on Vulmon	Subscribe to Product
microsoft windows 2000
microsoft windows 2003 server gold
microsoft windows 2003 server sp1
microsoft windows 2003 server sp2
microsoft windows xp

VMware suffers from a backdoor ROM overwrite privilege escalation vulnerability ...

CWE-264 http://research.eeye.com/html/advisories/published/AD20070410a.html http://www.kb.cert.org/vuls/id/337953 http://www.securityfocus.com/bid/23367 http://securitytracker.com/id?1017898 http://secunia.com/advisories/24834 http://www.osvdb.org/34011 http://www.us-cert.gov/cas/techalerts/TA07-100A.html http://www.vupen.com/english/advisories/2007/1326 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1639 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-022 http://www.securityfocus.com/archive/1/466331/100/200/threaded http://www.securityfocus.com/archive/1/465232/100/0/threaded https://nvd.nist.gov https://packetstormsecurity.com/files/111404/VMware-High-Bandwidth-Backdoor-ROM-Overwrite-Privilege-Elevation.html https://www.kb.cert.org/vuls/id/337953

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2007-1206

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect