VRDA Feed by JPCERT/CC
  Vulnerability Response Decision Assistance Feed : Information for vulnerability impact analysis
[ about VRDA Feed | JPCERT/CC



 
Vulnerability Analysis Result (Revision No : 1) [ Download XML
VRDA-100125-002
Vulnerability in Windows Kernel Could Allow Elevation of Privilege
http://www.microsoft.com/japan/technet/security/advisory/979682.mspx

Microsoft is investigating new public reports of a vulnerability in the Windows kernel. We are not aware of attacks that try to use the reported vulnerability or of customer impact at this time.




About This Analysis Information
Analysis Information Provider:
 		JPCERT/CC
 		First Published:
 		2010-01-25
Source Information Category:
 		Advisory, Alert
 		Last Updated:
 		2010-01-25




Affected Product Tags
cpe:/o:microsoft:windows_2000     (Microsoft Windows 2000)
cpe:/o:microsoft:windows_server:2003     (Microsoft Windows Server 2003)
cpe:/o:microsoft:windows_server:2008     (Microsoft Windows Server 2008)
cpe:/o:microsoft:windows_vista     (Microsoft Windows Vista)
cpe:/o:microsoft:windows_xp     (Microsoft Windows XP)
lapt:/o:microsoft:windows_7     (Windows 7)
 


Vulnerability Analysis Results
[Information Source Reliability] [?]
Low [?]

Medium [?]
X High [?]
[Impact Level] [?]
Low [?]

Low-Medium [?]
Medium-High [?]
X High [?]
[Access Required] [?]
Physical [?]

X Local [?]
Non-routed [?]
Routed [?]
[Authentication] [?]
Privileged [?]

X Standard [?]
Limited [?]
None or Unnecessary [?]
[User Interaction Required] [?]
Complex [?]

Simple [?]
X None [?]
[Technical Difficulty] [?]
High [?]

Medium-High [?]
Low-Medium [?]
Low [?]
[Availability of Remediation] [?]
Official Patch [?]

X Official Workaround [?]
Unofficial Patch [?]
None [?]
[Incident Activity] [?]
None [?]

X Exploit or PoC [?]
Activity Observed [?]
Alternatives




References
Common Vulnerabilities and Exposures (CVE) CVE-2010-0232
The kernel in Microsoft Windows NT 3.1 through Windows 7, includingWindows 2000 SP4, Windows XP SP2 and SP3, Windows Server 2003 SP2,Windows Vista Gold, SP1, and SP2, and Windows Server 2008 Gold andSP2, when access to 16-bit applications is enabled on a 32-bit x86platform, does not properly validate certain BIOS calls, which allowslocal users to gain privileges by crafting a VDM_TIB data structure inthe Thread Environment Block (TEB), and then calling the NtVdmControlfunction to start the Windows Virtual DOS Machine (aka NTVDM)subsystem, leading to improperly handled exceptions involving the #GPtrap handler (aka nt!KiTrap0D).




Copyright © 2010 JPCERT/CC All Rights Reserved.