MS10-015: Vulnerabilities in Windows Kernel Could Allow Elevation of Privilege (977165)

Medium Nessus Plugin ID 44425

Synopsis

The Windows kernel is affected by two vulnerabilities allowing a
local attacker to execute code with SYSTEM privileges.

Description

The remote Windows host is running a version of the Windows kernel
that is affected by two vulnerabilities :

- An elevation of privilege vulnerability exists in the
kernel due to the way it handles certain exceptions. An
attacker who successfully exploited this vulnerability
could run arbitrary code in kernel mode. An attacker
could then install programs, view / change / delete
data, or create new accounts with full user rights.
(CVE-2010-0232)

- An elevation of privilege vulnerability exists in the
Windows kernel due to a double free condition. An
attacker who successfully exploited this vulnerability
could run arbitrary code in kernel mode. An attacker
could then install programs, view / change / delete
data, or create new accounts with full user rights.
(CVE-2010-0233)

Solution

Microsoft has released a set of patches for Windows 2000, XP, 2003,
Vista, 2008 and 7.

See Also

https://docs.microsoft.com/en-us/security-updates/SecurityBulletins/2010/ms10-015

Plugin Details

Severity: Medium

ID: 44425

File Name: smb_nt_ms10-015.nasl

Version: 1.30

Type: local

Agent: windows

Published: 2010/02/09

Modified: 2018/11/15

Dependencies: 13855, 57033

Risk Information

Risk Factor: Medium

CVSS v2.0

Base Score: 6.2

Temporal Score: 5.4

Vector: CVSS2#AV:L/AC:H/Au:N/C:C/I:C/A:C

Temporal Vector: CVSS2#E:H/RL:OF/RC:C

Vulnerability Information

CPE: cpe:/o:microsoft:windows

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 2010/02/09

Vulnerability Publication Date: 2010/01/19

Exploitable With

CANVAS (CANVAS)

Core Impact

Metasploit (Windows SYSTEM Escalation via KiTrap0D)

Reference Information

CVE: CVE-2010-0233, CVE-2010-0232

BID: 37864, 38044

MSFT: MS10-015

MSKB: 977165

CWE: 20