CVE-2008-1436 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2008-1436
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2008-1436

Description: Microsoft Windows XP Professional SP2, Vista, and Server 2003 and 2008 does not properly assign activities to the (1) NetworkService and (2) LocalService accounts, which might allow context-dependent attackers to gain privileges by using one service process to capture a resource from a second service process that has a LocalSystem privilege-escalation ability, related to improper management of the SeImpersonatePrivilege user right, as originally reported for Internet Information Services (IIS), aka Token Kidnapping.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/41880 ST 1019904 SAID Secunia Advisory: SA29867 MS http://www.microsoft.com/technet/security/bulletin/ms09-012.mspx MISC http://www.argeniss.com/research/Churrasco.zip http://www.argeniss.com/research/TokenKidnapping.pdf http://nomoreroot.blogspot.com/2008/10/windows-2003-poc-exploit-for-token.html http://securitywatch.eweek.com/flaws/microsoft_belatedly_admits_to_windows_server_2008_token_kidnapping.html http://milw0rm.com/sploits/2008-Churrasco.zip http://isc.sans.org/diary.html?storyid=4306 MILW0RM http://www.milw0rm.com/exploits/6705 CONFIRM http://blogs.technet.com/msrc/archive/2008/04/17/msrc-blog-microsoft-security-advisory-951306.aspx http://www.microsoft.com/technet/security/advisory/951306.mspx CERT http://www.us-cert.gov/cas/techalerts/TA09-104A.html BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/491111/100/0/threaded http://www.securityfocus.com/archive/1/archive/1/497168/100/0/threaded BID 28833

Return to the previous page.