CVE - CVE-2008-3464

CVE-ID
CVE-2008-3464	Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Description
afd.sys in the Ancillary Function Driver (AFD) component in Microsoft Windows XP SP2 and SP3 and Windows Server 2003 SP1 and SP2 does not properly validate input sent from user mode to the kernel, which allows local users to gain privileges via a crafted application, as demonstrated using crafted pointers and lengths that bypass intended ProbeForRead and ProbeForWrite restrictions, aka "AFD Kernel Overwrite Vulnerability."
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
BID:31673 URL:http://www.securityfocus.com/bid/31673 BUGTRAQ:20081015 Exploit for MS08-066 - AFD.sys kernel memory overwrite. URL:http://www.securityfocus.com/archive/1/497375/100/0/threaded CERT:TA08-288A URL:http://www.us-cert.gov/cas/techalerts/TA08-288A.html EXPLOIT-DB:6757 URL:https://www.exploit-db.com/exploits/6757 HP:HPSBST02379 URL:http://marc.info/?l=bugtraq&m=122479227205998&w=2 HP:SSRT080143 URL:http://marc.info/?l=bugtraq&m=122479227205998&w=2 MISC:http://blogs.technet.com/swi/archive/2008/10/14/ms08-066-how-to-correctly-validate-and-capture-user-mode-data.aspx MS:MS08-066 URL:https://docs.microsoft.com/en-us/security-updates/securitybulletins/2008/ms08-066 OVAL:oval:org.mitre.oval:def:5825 URL:https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5825 SECTRACK:1021053 URL:http://www.securitytracker.com/id?1021053 SECUNIA:32261 URL:http://secunia.com/advisories/32261 VUPEN:ADV-2008-2817 URL:http://www.vupen.com/english/advisories/2008/2817 XF:win-afd-privilege-escalation(45578) URL:https://exchange.xforce.ibmcloud.com/vulnerabilities/45578 XF:win-ms08kb956803-update(45582) URL:https://exchange.xforce.ibmcloud.com/vulnerabilities/45582
Assigning CNA
Microsoft Corporation
Date Record Created
20080804	Disclaimer: The record creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20080804)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is a record on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: CVE Request Web Form (select "Other" from dropdown)