Infesting you with Virus News

Vulnerabilities

Microsoft Ancillary Function Driver remote vulnerability (PC1-2008-0773)

Overview

Vulnerability chart	Overview: A vulnerability was found in Ancillary Function Driver Kernel. Vulnerable: Windows Server 2003 Windows XP
Remote Access Yes, patch is available Patch is easy to implement

References to Advisories, Solutions, and Tools

Release date:	2008-10-15
Description:	AFD Kernel Overwrite Vulnerability - CVE-2008-3464 An elevation of privilege vulnerability occurs in the Ancillary Function Driver (afd.sys) because of Windows incorrectly validating input passed from user mode to the kernel. The vulnerability could let an attacker to run code with increased privileges. A local attacker who successfully exploited this vulnerability could execute arbitrary code and get full control of an affected system. The attacker could then install programs; view, modify, or remove data; or configure new accounts with full user privileges.
Impact:	This type of vulnerability would lead to administrator compromise.
Solution:	The security update discusses the vulnerability by properly validating input sent to the Windows Kernel from user mode through the AFD component. Users who have faced this type of vulnerability, are recommended by Microsoft to apply the update as soon as posiible.
Vulnerable:
References:	http://www.microsoft.com/technet/security/bulletin/ms08-066.mspx

Security Bulletin Summary

Products:	Windows XP Service Pack 2 Risk level Low Medium High Extreme Severe Warning: security vulnerability level = severe 130 vulnerabilities(-y) found between 20 December, 2001 and 20 May, 2013. Windows XP refers to a line of operating systems developed by Microsoft for... more 4916 files found: osk.exe, migwiz.exe, tlntadmn.exe, SYSPARSE.EXE, exctrlst.exe, tsprof.exe, xrxftplt.exe, nslookup.exe, oschoice.exe, dmdiag.exe, qprocess.exe, EXCH_regtrace.exe, cipher.exe, logman.exe, gprslt.exe... more Windows XP Service Pack 3 Windows XP Professional x64 Edition Windows XP Professional x64 Edition Service Pack 2 Windows Server 2003 Service Pack 1 Risk level Low Medium High Extreme Severe Warning: security vulnerability level = severe 51 vulnerabilities(-y) found between 10 July, 2003 and 14 July, 2009. Windows Server 2003 (known as Win2K3) points to a server operating system... more 512 files found: owsadm.exe, w3wp.exe, httpcfg.exe, wmseditor.exe, dsrm.exe, IEExec.exe, dcgpofix.exe, portqry.exe, msppcnfg.exe, cmdkey.exe, addusr.exe, tapicfg.exe, dsget.exe, dsadd.exe, pop3svc.exe... more Windows Server 2003 Service Pack 2 Windows Server 2003 x64 Edition Windows Server 2003 x64 Edition Service Pack 2 Windows Server 2003 with SP1 for Itanium-based Systems Windows Server 2003 with SP2 for Itanium-based Systems
Publisher:	Microsoft
Operating Systems:	Windows
Impact:	Administrator Compromise

Say something interesting!

Top 10 Malware Threats

1.	Security Monitor
2.	Win 7 Home Security
3.	AV Protection 2012
4.	Privacy Protection
5.	Duqu Trojan
6.	Windows Monitor
7.	Win 7 Home Security
8.	Privacy Protection
9.	Cloud AV 2012

Most searched files

1.	vprot.exe
2.	GameXNGO.exe
3.	setup.ovr
4.	RosebudMUI.msi
5.	fp_ax_cab_installer.exe
6.	phoenix.exe
7.	InfDefaultInstall.exe
8.	AcroPro.msi
9.	FlashUtil11c_ActiveX.exe
10.	WinBootstrapper.msi

Newest files

1.	FlashUtil32_11_2_202_228_ActiveX.exe
2.	sisnicxp.sys
3.	NTIDrvr.sys
4.	int15.sys
5.	anbmServ.exe
6.	E_FATIADA.EXE
7.	HP_IZE.exe
8.	viaagp1.sys
9.	SISAGPX.sys
10.	R8139n51.SYS

Home Tips Downloads Videos Files Virus list Vulnerabilities

Home > Vulnerabilities > pc1-2008-0773