The NtUserConsoleControl function in win32k.sys in Microsoft Windows XP SP2 and SP3, and Server 2003 before SP1, allows local administrators to bypass unspecified "security software" and gain privileges via a crafted call that triggers an overwrite of an arbitrary memory location. NOTE: the vendor disputes the significance of this report, stating that 'the Administrator to SYSTEM "escalation" is not a security boundary we defend.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2009-08-03T14:00:00
Updated: 2017-09-18T12:57:01
Reserved: 2009-08-03T00:00:00
Link: CVE-2009-2653
JSON object: View
NVD Information
Status : Modified
Published: 2009-08-03T14:30:00.687
Modified: 2024-05-17T00:43:44.557
Link: CVE-2009-2653
JSON object: View
Redhat Information
No data.
CWE