Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The kernel in Microsoft Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 does not properly validate an unspecified address, which allows local users to bypass the KASLR protection mechanism, and consequently discover the cng.sys base address, via a crafted application, aka "Windows Kernel Security Feature Bypass Vulnerability."
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Microsoft Windows内核安全功能绕过漏洞
Vulnerability Description
Microsoft Windows是美国微软(Microsoft)公司发布的一系列操作系统。kernel是其中的内核。 当Microsoft Windows内核无法正确验证内存地址时,存在安全功能绕过漏洞,此漏洞允许攻击者检索信息并可能导致内核地址空间布局随机化(KASLR)绕过。成功利用此漏洞的攻击者可以通过遭受破坏的过程检索cng.sys的基址。以下版本受到影响:Microsoft Windows 8,Windows 8.1,Windows Server 2012 Gold和R2,Windows RT
CVSS Information
N/A
Vulnerability Type
N/A