CVE-2008-3464 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2008-3464
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2008-3464

Description: afd.sys in the Ancillary Function Driver (AFD) component in Microsoft Windows XP SP2 and SP3 and Windows Server 2003 SP1 and SP2 does not properly validate input sent from user mode to the kernel, which allows local users to gain privileges via a crafted application, as demonstrated using crafted pointers and lengths that bypass intended ProbeForRead and ProbeForWrite restrictions, aka "AFD Kernel Overwrite Vulnerability."

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/45578 http://xforce.iss.net/xforce/xfdb/45582 ST 1021053 SAID Secunia Advisory: SA32261 OVAL http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:5825 MS http://www.microsoft.com/technet/security/Bulletin/MS08-066.mspx MISC http://blogs.technet.com/swi/archive/2008/10/14/ms08-066-how-to-correctly-validate-and-capture-user-mode-data.aspx MILW0RM http://www.milw0rm.com/exploits/6757 HP http://marc.info/?l=bugtraq&m=122479227205998&w=2 CERT http://www.us-cert.gov/cas/techalerts/TA08-288A.html BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/497375/100/0/threaded BID 31673

Return to the previous page.