CVE-2005-2827

high

Description

The thread termination routine in the kernel for Windows NT 4.0 and 2000 (NTOSKRNL.EXE) allows local users to modify kernel memory and execution flow via steps in which a terminating thread causes Asynchronous Procedure Call (APC) entries to free the wrong data, aka the "Windows Kernel Vulnerability."

References

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1583

https://exchange.xforce.ibmcloud.com/vulnerabilities/23447

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2005/ms05-055

http://www130.nortelnetworks.com/cgi-bin/eserv/cs/main.jsp?cscat=BLTNDETAIL&DocumentOID=375420

http://www.vupen.com/english/advisories/2005/2909

http://www.vupen.com/english/advisories/2005/2868

http://www.securityfocus.com/bid/15826

http://www.securityfocus.com/archive/1/419377/100/0/threaded

http://www.osvdb.org/18823

http://www.eeye.com/html/research/advisories/AD20051213.html

http://support.avaya.com/elmodocs2/security/ASA-2005-234.pdf

http://securitytracker.com/id?1015347

http://securityreason.com/securityalert/252

http://secunia.com/advisories/18311

http://secunia.com/advisories/18064

http://secunia.com/advisories/15821

Details

Source: Mitre, NVD

Published: 2005-12-14

Updated: 2025-04-03

Risk Information

CVSS v2

Base Score: 7.2

Vector: CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C

Severity: High

CVSS v3

Base Score: 7.8

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Severity: High

EPSS

EPSS: 0.01475