VulDB: Microsoft Windows XP/Vista/7/Server 2003/2008 win32k.sys buffer overflow
General
scipID: 5652
Affected: Microsoft Windows XP/Vista/7/Server 2003/2008
Published: 07/10/2012 (Lufeng Li)
Risk: 
critical
Entry: 91.2% complete
Created: 07/12/2012
Updated: 09/03/2012
Summary
A vulnerability classified as critical has been found in Microsoft Windows XP/Vista/7/Server 2003/2008. Affected is an unknown function of the file win32k.sys. The manipulation with an unknown input leads to a buffer overflow vulnerability. This is going to have an impact on confidentiality, integrity, and availability.
The weakness was disclosed 07/10/2012 by Lufeng Li with Secunia Research as MS12-047 as bulletin (Microsoft Technet). The advisory is shared for download at technet.microsoft.com. The public release has been coordinated in cooperation with the vendor. This vulnerability is traded as CVE-2012-1893 since 03/22/2012. The exploitability is known to be difficult. It is possible to launch the attack remotely. The exploitation doesn’t require any form of authentication. Technical details and a private exploit are known.
Applying the patch MS12-047 is able to eliminate this problem. The bugfix is ready for download at technet.microsoft.com. A possible mitigation has been published immediately after the disclosure of the vulnerability. The vulnerability is also documented in the vulnerability database at OSVDB (83658).CVSS
Base Score: 7.6 (CVSS2#AV:N/AC:H/Au:N/C:C/I:C/A:C) [?]
| Access Vector | Access Complexity | Authentication | Confidentiality | Integrity | Availability |
|---|---|---|---|---|---|
| Local | High | Multiple | None | None | None |
| Adjacent | Medium | Single | Partial | Partial | Partial |
| Network | Low | None | Complete | Complete | Complete |
Exploiting
Class: Buffer overflow
Local: No
Remote: Yes
Availability: Yes
Access: Private
Countermeasures
Recommended: Patch
Reaction Time: 0 days since reported
0-Day Time: 0 days since found
Exposure Time: 0 days since known
Patch: MS12-047
Timeline
03/22/2012 | CVE assigned
07/10/2012 | Advisory disclosed
07/10/2012 | Countermeasure disclosed
07/10/2012 | OSVDB entry created
07/12/2012 | VulDB entry created
09/03/2012 | VulDB entry updated
Sources
Advisory: MS12-047
Researcher: Lufeng Li
Company: Secunia Research
Coordinated: Yes
OSVDB: 83658
CVE: CVE-2012-1893 (mitre.org) (nist.org) (cvedetails.com)
- Latest Entries
- Apple QuickTime DREF Atom Handler buffer overflow [CVE-2013-1017]
- Apple QuickTime H.264 Handler buffer overflow [CVE-2013-1018]
- Apple QuickTime MP3 File Handler buffer overflow [CVE-2013-0989]
- Apple QuickTime Sorenson Codec Handler buffer overflow [CVE-2013-1019]
- Apple QuickTime JPEG Handler buffer overflow [CVE-2013-1020]
- Statistics
- Archive
