CVE-2005-2827

Severity

72%

Complexity

39%

Confidentiality

165%

The thread termination routine in the kernel for Windows NT 4.0 and 2000 (NTOSKRNL.EXE) allows local users to modify kernel memory and execution flow via steps in which a terminating thread causes Asynchronous Procedure Call (APC) entries to free the wrong data, aka the "Windows Kernel Vulnerability."

The thread termination routine in the kernel for Windows NT 4.0 and 2000 (NTOSKRNL.EXE) allows local users to modify kernel memory and execution flow via steps in which a terminating thread causes Asynchronous Procedure Call (APC) entries to free the wrong data, aka the "Windows Kernel Vulnerability."

CVSS 2.0 Base Score 7.2. CVSS Attack Vector: local. CVSS Attack Complexity: low. CVSS Vector: (AV:L/AC:L/Au:N/C:C/I:C/A:C).

Overview

Type

Microsoft

First reported 19 years ago

2005-12-14 01:03:00

Last updated 5 years ago

2019-04-30 14:27:00

Affected Software

Microsoft Windows 2000

Microsoft windows 2000_sp1

Microsoft windows 2000_sp2

Microsoft windows 2000_sp3

Microsoft Windows 2000 Service Pack 4

Microsoft Windows NT 4.0

4.0

References

15821

Patch, Vendor Advisory

18064

18311

252

1015347

http://support.avaya.com/elmodocs2/security/ASA-2005-234.pdf

EEYEB-20051213

18823

20051213 [EEYEB-20050523] Windows Kernel APC Data-Free Local Privilege Escalation Vulnerability

15826

Patch

ADV-2005-2868

ADV-2005-2909

http://www130.nortelnetworks.com/cgi-bin/eserv/cs/main.jsp?cscat=BLTNDETAIL&DocumentOID=375420

MS05-055

win-apc-gain-privileges(23447)

oval:org.mitre.oval:def:1583

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.