Privilege Escalation via Integer Overflow in Windows Memory Manager
An integer overflow vulnerability exists in the Memory Manager of Microsoft Windows XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, and Server 2008. This issue lets local users increase their privileges. It involves a crafted application that causes a wrong decrement of a variable. This is related to how the system checks parameters for Virtual Address Descriptors (VADs) and a "memory allocation mapping error." This problem is called the "Virtual Address Descriptor Elevation of Privilege Vulnerability."
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
microsoft windows server 2003 |
||
microsoft windows server 2008 |
||
microsoft windows vista |
||
microsoft windows vista sp1 |
||
microsoft windows xp |