Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
7.2
CVSSv2

CVE-2014-1767

Published: 08/07/2014 Updated: 26/02/2019
CVSS v2 Base Score: 7.2 | Impact Score: 10 | Exploitability Score: 3.9
VMScore: 730
Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C
Subscribe to Microsoft

Vulnerability Summary

Double free vulnerability in the Ancillary Function Driver (AFD) in afd.sys in the kernel-mode drivers in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows local users to gain privileges via a crafted application, aka "Ancillary Function Driver Elevation of Privilege Vulnerability."

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

microsoft windows server 2012 r2

microsoft windows 8.1

microsoft windows 8

microsoft windows server 2008 r2

microsoft windows 7

microsoft windows rt -

microsoft windows server 2012 -

microsoft windows server 2003

microsoft windows rt 8.1 -

microsoft windows server 2008

microsoft windows vista

Exploits

Exploit DB: Microsoft AFD.SYS Dangling Pointer Privilege Escalation
Microsoft afdsys version 61760016385 suffers from a dangling pointer privilege escalation vulnerability This exploit demonstrates the vulnerability discussed in MS14-040 ...
Exploit DB: Microsoft Windows 7 (x64) - 'afd.sys' Dangling Pointer Privilege Escalation (MS14-040)
# Exploit Title: MS14-040 - AFDSYS Dangling Pointer # Date: 2016-03-03 # Exploit Author: Rick Larabee # Vendor Homepage: wwwmicrosoftcom # Version: Windows 7, 64 bit # Tested on: Win7 x64 # afdsys - 61760117514 # ntdlldll - 61760117514 # # CVE : CVE-2014-1767 # Category: Local Privilege Escalation # References: # ...
Exploit DB: Microsoft Windows 7 (x86) - 'afd.sys' Dangling Pointer Privilege Escalation (MS14-040)
# Exploit Title: MS14-040 - AFDSYS Dangling Pointer # Date: 2016-02-05 # Exploit Author: Rick Larabee # Vendor Homepage: wwwmicrosoftcom # Version: Windows 7, 32 bit # Tested on: Win7 x32 # afdsys - 61760016385 # ntdlldll - 61760016385 # # CVE : CVE-2014-1767 # Category: Local Privilege Escalation # References: # http ...

References

CWE-415http://www.zerodayinitiative.com/advisories/ZDI-14-220/http://secunia.com/advisories/59778http://www.securityfocus.com/bid/68394https://www.exploit-db.com/exploits/39525/https://www.exploit-db.com/exploits/39446/https://docs.microsoft.com/en-us/security-updates/securitybulletins/2014/ms14-040https://nvd.nist.govhttps://packetstormsecurity.com/files/135795/Microsoft-AFD.SYS-Dangling-Pointer-Privilege-Escalation.htmlhttps://www.exploit-db.com/exploits/39525/
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3581reflected XSSCVE-2024-26925CVE-2024-27956LFICVE-2024-3607CVE-2024-3107CVE-2024-3295SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook