Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Published: 2005-12-04
Updated: 2024-04-11
Summary
NOTE: this issue has been disputed by third parties. Microsoft Windows XP, 2000, and 2003 allows local users to kill a writable process by using the CreateRemoteThread function with certain arguments on a process that has been opened using the OpenProcess function, possibly involving an invalid address for the start routine. NOTE: followup posts have disputed this issue, saying that if a user already has privileges to write to a process, then other functions could be called or the process could be terminated using PROCESS_TERMINATE
Vulnerable Configurations
Exploit-Db
description | Microsoft Windows 2000/2003/XP CreateRemoteThread Local Denial of Service Vulnerability. CVE-2005-3981. Dos exploit for windows platform |
id | EDB-ID:26690 |
last seen | 2016-02-03 |
modified | 2005-12-01 |
published | 2005-12-01 |
reporter | Nima Salehi |
source | https://www.exploit-db.com/download/26690/ |
title | Microsoft Windows 2000/2003/XP - CreateRemoteThread Local Denial of Service Vulnerability |