MS10-015: Vulnerabilities in Windows Kernel Could Allow Elevation of Privilege (977165)

Medium Nessus Plugin ID 44425

Synopsis

The Windows kernel is affected by two vulnerabilities allowing a
local attacker to execute code with SYSTEM privileges.

Description

The remote Windows host is running a version of the Windows kernel
that is affected by two vulnerabilities :

 - An elevation of privilege vulnerability exists in the
 kernel due to the way it handles certain exceptions. An
 attacker who successfully exploited this vulnerability
 could run arbitrary code in kernel mode. An attacker
 could then install programs, view / change / delete
 data, or create new accounts with full user rights.
 (CVE-2010-0232)

 - An elevation of privilege vulnerability exists in the
 Windows kernel due to a double free condition. An
 attacker who successfully exploited this vulnerability
 could run arbitrary code in kernel mode. An attacker
 could then install programs, view / change / delete
 data, or create new accounts with full user rights.
 (CVE-2010-0233)

Solution

Microsoft has released a set of patches for Windows 2000, XP, 2003,
Vista, 2008 and 7.

See Also

https://docs.microsoft.com/en-us/security-updates/SecurityBulletins/2010/ms10-015

Plugin Details

Severity: Medium

ID: 44425

File Name: smb_nt_ms10-015.nasl

Version: 1.30

Type: local

Agent: windows

Published: 2010/02/09

Modified: 2018/11/15

Dependencies: 13855, 57033

Risk Information

Risk Factor: Medium

CVSS v2.0

Base Score: 6.2

Temporal Score: 5.4

Vector: CVSS2#AV:L/AC:H/Au:N/C:C/I:C/A:C

Temporal Vector: CVSS2#E:H/RL:OF/RC:C

Vulnerability Information

CPE: cpe:/o:microsoft:windows

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 2010/02/09

Vulnerability Publication Date: 2010/01/19

Exploitable With

CANVAS (CANVAS)

Core Impact

Metasploit (Windows SYSTEM Escalation via KiTrap0D)

Reference Information

CVE: CVE-2010-0233, CVE-2010-0232

BID: 37864, 38044

MSFT: MS10-015

MSKB: 977165

CWE: 20