Microsoft Windows Kernel-Mode Driver Elevation of Privilege Vulnerabilities

Last Update Date: 12 Mar 2015 Release Date: 11 Mar 2015 3240 Views

RISK: Medium Risk

TYPE: Operating Systems - Windows OS

Microsoft Windows Kernel Memory Disclosure Vulnerability
An information disclosure vulnerability exists in the Windows kernel-mode driver that could allow the disclosure of kernel memory contents to an attacker. This vulnerability is caused when the Windows kernel-mode driver fails to initialize function buffers in a manner that removes the results of previous function calls.
Win32k Elevation of Privilege Vulnerability
An elevation of privilege vulnerability exists in the Windows kernel-mode driver that is caused when the kernel-mode driver fails to properly validate the calling thread's token.
Microsoft Windows Kernel Memory Disclosure Vulnerability
An information disclosure vulnerability exists in the Windows kernel-mode driver that could allow the disclosure of kernel memory contents to an attacker. This vulnerability is caused when the Windows kernel-mode driver leaks private address information during a function call.
Microsoft Windows Kernel Memory Disclosure Vulnerability
An information disclosure vulnerability exists in the Windows kernel-mode driver that could allow the disclosure of kernel memory contents to an attacker. This vulnerability is caused when the Windows kernel-mode driver dereferences a NULL pointer. The NULL page is not typically allocated or mapped, so if the kernel dereferences a NULL pointer the usual result is a blue-screen condition. However, a blue-screen condition can be avoided if the NULL page is mapped and, because the NULL page resides in the user-mode memory address space, the attacker can copy kernel information into the NULL page and read its contents. This attack vector is not viable when NULL page mapping is disabled, which is the default state in Windows 8 and later operating systems.