Vulnerabilities > CVE-2012-2527 - Resource Management Errors vulnerability in Microsoft products
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
Use-after-free vulnerability in win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 allows local users to gain privileges via a crafted application, aka "Win32k Use After Free Vulnerability."
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| OS | 13 |
Common Weakness Enumeration (CWE)
Msbulletin
| bulletin_id | MS12-055 |
| bulletin_url | |
| date | 2012-08-14T00:00:00 |
| impact | Elevation of Privilege |
| knowledgebase_id | 2731847 |
| knowledgebase_url | |
| severity | Important |
| title | Vulnerabilities in Windows Kernel-Mode Drivers Could Allow Elevation of Privilege |
Nessus
| NASL family | Windows : Microsoft Bulletins |
| NASL id | SMB_NT_MS12-055.NASL |
| description | The remote Windows host is affected by a privilege escalation vulnerability in the kernel-mode drivers due to a use-after-free error. |
| last seen | 2020-06-01 |
| modified | 2020-06-02 |
| plugin id | 61530 |
| published | 2012-08-15 |
| reporter | This script is Copyright (C) 2012-2018 Tenable Network Security, Inc. |
| source | https://www.tenable.com/plugins/nessus/61530 |
| title | MS12-055: Vulnerability in Windows Kernel-Mode Drivers Could Allow Elevation of Privilege (2731847) |
Oval
| accepted | 2013-05-06T04:01:39.988-04:00 | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| class | vulnerability | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| contributors |
| ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| definition_extensions |
| ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| description | Use-after-free vulnerability in win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 allows local users to gain privileges via a crafted application, aka "Win32k Use After Free Vulnerability." | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| family | windows | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| id | oval:org.mitre.oval:def:15706 | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| status | accepted | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| submitted | 2012-08-20T07:07:49 | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| title | Win32k Use After Free Vulnerability - MS12-055 | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| version | 74 |
Seebug
| bulletinFamily | exploit |
| description | Bugtraq ID:54873 CVE ID:CVE-2012-2527 Microsoft Windows是一款流行的操作系统。 Microsoft Windows中的内核模式驱动中的win32k.sys访问内存中对象时存在一个释放后使用漏洞,允许攻击者构建恶意应用,在系统上执行,可以内核上下文执行任意代码。 0 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows Server 2008 Microsoft Windows Server 2003 Microsoft Windows 7 厂商解决方案 用户可参考如下供应商提供的安全公告获得补丁信息: http://technet.microsoft.com/en-us/security/bulletin/MS12-055 |
| id | SSV:60331 |
| last seen | 2017-11-19 |
| modified | 2012-08-18 |
| published | 2012-08-18 |
| reporter | Root |
| title | Microsoft Windows 本地权限提升漏洞(CVE-2012-2527) |
References
- http://www.us-cert.gov/cas/techalerts/TA12-227A.html
- http://www.us-cert.gov/cas/techalerts/TA12-227A.html
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2012/ms12-055
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2012/ms12-055
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15706
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15706