Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The Virtual DOS Machine (VDM) in the Windows Kernel in Microsoft Windows NT 4.0; 2000 SP4; XP SP2; Server 2003, 2003 SP1, and 2003 SP2; and Windows Vista before June 2006; uses insecure permissions (PAGE_READWRITE) for a physical memory view, which allows local users to gain privileges by modifying the "zero page" during a race condition before the view is unmapped.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Windows VDM 0页面竞争条件本地权限提升漏洞
Vulnerability Description
Microsoft Windows是美国微软(Microsoft)公司发布的一系列操作系统。 Windows内核在实现虚拟DOS机(VDM)时存在竞争条件错误,允许恶意的程序修改物理内存的最初4KB页面(被称为0页面)。 在初始化VDM过程中,NtVdmControl(3)所调用的NT!VdmpInitialize将0页面的内容拷贝到虚拟地址0,这样VDM就可以拥有系统的原始中断向量表(IVT)和BIOS数据区的副本。为了实现这个操作,VdmpInitialize使用SECTION_ALL_ACCESS打
CVSS Information
N/A
Vulnerability Type
N/A