Microsoft Windows AFD驱动本地权限提升漏洞

漏洞信息详情

Microsoft Windows AFD驱动本地权限提升漏洞

CNNVD编号：CNNVD-200810-246
危害等级：高危-->
危害等级：高危
CVE编号： CVE-2008-3464
漏洞类型：权限许可和访问控制
发布时间： 2008-10-15
威胁类型：本地
更新时间： 2009-03-04
厂商： microsoft
漏洞来源： Fabien Le Mentec

漏洞简介

Microsoft Windows是美国微软（Microsoft）公司发布的一系列操作系统。

Windows错误地验证了从用户态传递到内核的输入，导致辅助功能驱动(afd.sys)中存在权限提升漏洞。成功利用此漏洞的本地攻击者可执行任意指令，并可完全控制受影响的系统。

漏洞公告

目前厂商已经发布了升级补丁以修复这个安全问题，补丁下载链接：

Microsoft Windows Server 2003 Datacenter x64 Edition

Microsoft Security Update for Windows Server 2003 x64 Edition (KB956803)

http://www.microsoft.com/downloads/details.aspx?familyid=ab4d94d3-458c -4946-ab7f-03a279629d25

Microsoft Windows XP Tablet PC Edition SP2

Microsoft Security Update for Windows XP (KB956803)

http://www.microsoft.com/downloads/details.aspx?familyid=b16d9dac-c430 -4dd8-a1e5-9a614801f1d9

Microsoft Windows Server 2003 Itanium SP2

Microsoft Security Update for Windows Server 2003 for Itanium-based Systems (KB956803)

http://www.microsoft.com/downloads/details.aspx?familyid=63234f85-6e5d -4ef6-b7cf-d1d2c78a5517

Microsoft Windows XP Media Center Edition SP3

Microsoft Security Update for Windows XP (KB956803)

http://www.microsoft.com/downloads/details.aspx?familyid=b16d9dac-c430 -4dd8-a1e5-9a614801f1d9

Microsoft Windows XP Media Center Edition SP2

Microsoft Security Update for Windows XP (KB956803)

http://www.microsoft.com/downloads/details.aspx?familyid=b16d9dac-c430 -4dd8-a1e5-9a614801f1d9

Microsoft Windows XP Professional x64 Edition

Microsoft Security Update for Windows XP x64 Edition (KB956803)

http://www.microsoft.com/downloads/details.aspx?familyid=5b607efc-c6fb -4079-8478-e4f3262386d3

Microsoft Windows Server 2003 Itanium SP1

Microsoft Security Update for Windows Server 2003 for Itanium-based Systems (KB956803)

http://www.microsoft.com/downloads/details.aspx?familyid=63234f85-6e5d -4ef6-b7cf-d1d2c78a5517

Microsoft Windows Server 2003 Web Edition SP1

Microsoft Security Update for Windows Server 2003 (KB956803)

http://www.microsoft.com/downloads/details.aspx?familyid=ee88ff2d-1b12 -4f4c-a081-9f27a6fba074

Microsoft Windows Server 2003 Web Edition SP2

Microsoft Security Update for Windows Server 2003 (KB956803)

http://www.microsoft.com/downloads/details.aspx?familyid=ee88ff2d-1b12 -4f4c-a081-9f27a6fba074

Microsoft Windows XP Home SP3

Microsoft Security Update for Windows XP (KB956803)

http://www.microsoft.com/downloads/details.aspx?familyid=b16d9dac-c430 -4dd8-a1e5-9a614801f1d9

Microsoft Windows Server 2003 Standard Edition SP1

Microsoft Security Update for Windows Server 2003 (KB956803)

http://www.microsoft.com/downloads/details.aspx?familyid=ee88ff2d-1b12 -4f4c-a081-9f27a6fba074

Microsoft Windows XP Professional x64 Edition SP2

Microsoft Security Update for Windows XP x64 Edition (KB956803)

http://www.microsoft.com/downloads/details.aspx?familyid=5b607efc-c6fb -4079-8478-e4f3262386d3

Microsoft Windows XP Professional SP3

Microsoft Security Update for Windows XP (KB956803)

http://www.microsoft.com/downloads/details.aspx?familyid=b16d9dac-c430 -4dd8-a1e5-9a614801f1d9

Microsoft Windows XP Professional SP2

Microsoft Security Update for Windows XP (KB956803)

http://www.microsoft.com/downloads/details.aspx?familyid=b16d9dac-c430 -4dd8-a1e5-9a614801f1d9

Microsoft Windows Server 2003 x64 SP2

Microsoft Security Update for Windows Server 2003 x64 Edition (KB956803)

http://www.microsoft.com/downloads/details.aspx?familyid=ab4d94d3-458c -4946-ab7f-03a279629d25

Microsoft Windows Server 2003 Standard x64 Edition

Microsoft Security Update for Windows Server 2003 x64 Edition (KB956803)

http://www.microsoft.com/downloads/details.aspx?familyid=ab4d94d3-458c -4946-ab7f-03a279629d25

Microsoft Windows Server 2003 Datacenter x64 Edition SP2

Microsoft Security Update for Windows Server 2003 x64 Edition (KB956803)

http://www.microsoft.com/downloads/details.aspx?familyid=ab4d94d3-458c -4946-ab7f-03a279629d25

Microsoft Windows Server 2003 Enterprise x64 Edition SP2

Microsoft Security Update for Windows Server 2003 x64 Edition (KB956803)

http://www.microsoft.com/downloads/details.aspx?familyid=ab4d94d3-458c -4946-ab7f-03a279629d25

Microsoft Windows Server 2003 Enterprise x64 Edition

Microsoft Security Update for Windows Server 2003 x64 Edition (KB956803)

http://www.microsoft.com/downloads/details.aspx?familyid=ab4d94d3-458c -4946-ab7f-03a279629d25

Microsoft Windows XP Tablet PC Edition SP3

Microsoft Security Update for Windows XP (KB95

参考网址

来源: US-CERT

名称: TA08-288A

链接:http://www.us-cert.gov/cas/techalerts/TA08-288A.html

来源: BID

名称: 31673

链接:http://www.securityfocus.com/bid/31673

来源: MS

名称: MS08-066

链接:http://www.microsoft.com/technet/security/Bulletin/MS08-066.mspx

来源: SECUNIA

名称: 32261

链接:http://secunia.com/advisories/32261

来源: XF

名称: win-ms08kb956803-update(45582)

链接:http://xforce.iss.net/xforce/xfdb/45582

来源: XF

名称: win-afd-privilege-escalation(45578)

链接:http://xforce.iss.net/xforce/xfdb/45578

来源: SECTRACK

名称: 1021053

链接:http://www.securitytracker.com/id?1021053

来源: BUGTRAQ

名称: 20081015 Exploit for MS08-066 - AFD.sys kernel memory overwrite.

链接:http://www.securityfocus.com/archive/1/archive/1/497375/100/0/threaded

来源: MILW0RM

名称: 6757

链接:http://www.milw0rm.com/exploits/6757

来源: VUPEN

名称: ADV-2008-2817

链接:http://www.frsirt.com/english/advisories/2008/2817

来源: OVAL

名称: oval:org.mitre.oval:def:5825

链接:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:5825

来源: HP

名称: HPSBST02379

链接:http://marc.info/?l=bugtraq&m=122479227205998&w=2

来源: HP

名称: HPSBST02379

链接:http://marc.info/?l=bugtraq&m=122479227205998&w=2

来源: MISC

链接:http://blogs.technet.com/swi/archive/2008/10/14/ms08-066-how-to-correctly-validate-and-capture-user-mode-data.aspx

受影响实体

Microsoft Windows_2003_server:Sp2:Itanium
Microsoft Windows_2003_server:X64
Microsoft Windows_2003_server:Sp2:X64
Microsoft Windows_2003_server:Sp1:Itanium
Microsoft Windows_xp:Sp3

补丁

暂无

正文

Microsoft Windows AFD驱动本地权限提升漏洞

漏洞信息详情