Users login

Create an account »

JOIN XATRIX

Users login

Home » Hacking News » MS Windows 2000 Debug Registers Vulnerability

MS Windows 2000 Debug Registers Vulnerability

by platon on June 6th, 2001 A vulnerability exists in the handling of debug registers in Windows 2000...



It is possible for unprivileged processes to create breakpoints for arbitrary processes. This can be used to 'kill' arbitrary processes without administrative privileges.

Since it is possible for an unprivileged process to terminate arbitrary processes, depending on the programs involved, this vulnerability could be used to leverage other attacks. Including a denial of service or elevating privileges by 'impersonating' a trusted named pipe.

Georgi Guninski has provided the following exploit:

http://www.guninski.com/pipe3.cpp

Microsoft has reported that Windows 2000 SP2 is not affected by this vulnerability.


Microsoft Windows 2000 SP1:

Microsoft service pack W2KSP2

Download

Microsoft Windows 2000 :

Microsoft service pack W2KSP2

Download


Newsletter signup

Signup to our monthly newsletter and stay in touch with IT news!

Free E-books

We've got ebooks! But they're not online. :( Please give us a few days to bring downloads back.

Contact

Have something to say or just wanna drop us a line? Please keep this in mind: to spam, we reply with spam.

Contact us »