Vulnerability Description
The NtUserConsoleControl function in win32k.sys in Microsoft Windows XP SP2 and SP3, and Server 2003 before SP1, allows local administrators to bypass unspecified "security software" and gain privileges via a crafted call that triggers an overwrite of an arbitrary memory location. NOTE: the vendor disputes the significance of this report, stating that 'the Administrator to SYSTEM "escalation" is not a security boundary we defend.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Microsoft | Windows Server 2003 | All versions |
| Microsoft | Windows Xp | - |
Related Weaknesses (CWE)
References
- http://blogs.technet.com/srd/archive/2009/06/11/latest-baidu-public-posting-requ
- http://hi.baidu.com/azy0922/blog/item/f950cbc2890729130ef47783.htmlExploit
- http://osvdb.org/56780
- http://securitytracker.com/id?1022630
- http://www.exploit-db.com/exploits/9301
- http://www.ntinternals.org/index.html#09_07_30Exploit
- http://blogs.technet.com/srd/archive/2009/06/11/latest-baidu-public-posting-requ
- http://hi.baidu.com/azy0922/blog/item/f950cbc2890729130ef47783.htmlExploit
- http://osvdb.org/56780
- http://securitytracker.com/id?1022630
- http://www.exploit-db.com/exploits/9301
- http://www.ntinternals.org/index.html#09_07_30Exploit
FAQ
What is CVE-2009-2653?
CVE-2009-2653 is a vulnerability with a CVSS score of 4.6 (MEDIUM). The NtUserConsoleControl function in win32k.sys in Microsoft Windows XP SP2 and SP3, and Server 2003 before SP1, allows local administrators to bypass unspecified "security software" and gain privileg...
How severe is CVE-2009-2653?
CVE-2009-2653 has been rated MEDIUM with a CVSS base score of 4.6/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2009-2653?
Check the references section above for vendor advisories and patch information. Affected products include: Microsoft Windows Server 2003, Microsoft Windows Xp.