7.2

CVE-2008-2252

The kernel in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, and Server 2008 does not properly validate parameters sent from user mode to the kernel, which allows local users to gain privileges via a crafted application, aka "Windows Kernel Memory Corruption Vulnerability."
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
MicrosoftWindows 2000 Version- Updatesp4
MicrosoftWindows Server 2003 Version- Updatesp1
MicrosoftWindows Server 2003 Version- Updatesp1 HwPlatformitanium
MicrosoftWindows Server 2003 Version- Updatesp1 HwPlatformx64
MicrosoftWindows Server 2003 Version- Updatesp2
MicrosoftWindows Server 2008 Version- Editionitanium
MicrosoftWindows Vista Version-
MicrosoftWindows Vista Version- HwPlatformx64
MicrosoftWindows Vista Version- Updatesp1
MicrosoftWindows Vista Version- Updatesp1 HwPlatformx64
MicrosoftWindows Xp Version- HwPlatformx64
MicrosoftWindows Xp Version- Updatesp2
MicrosoftWindows Xp Version- Updatesp2 HwPlatformx64
MicrosoftWindows Xp Version- Updatesp3
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 1.9% 0.77
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.2 3.9 10
AV:L/AC:L/Au:N/C:C/I:C/A:C
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://marc.info/?l=bugtraq&m=122479227205998&w=2
Third Party Advisory
Mailing List
http://www.us-cert.gov/cas/techalerts/TA08-288A.html
Third Party Advisory
US Government Resource
http://secunia.com/advisories/32247
Patch
Vendor Advisory
http://www.securitytracker.com/id?1021046
Third Party Advisory
VDB Entry
http://www.vupen.com/english/advisories/2008/2812
Broken Link
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2008/ms08-061
Patch
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/45544
VDB Entry
http://www.securityfocus.com/bid/31652
Patch
Third Party Advisory
VDB Entry
https://exchange.xforce.ibmcloud.com/vulnerabilities/45543
VDB Entry
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6045
Third Party Advisory