Microsoft DebugView Kernel Module Dbgv.SYS Local Privilege Escalation Vulnerability
BID:26359
Info
Microsoft DebugView Kernel Module Dbgv.SYS Local Privilege Escalation Vulnerability
| Bugtraq ID: | 26359 |
| Class: | Design Error |
| CVE: |
CVE-2007-4223 |
| Remote: | No |
| Local: | Yes |
| Published: | Nov 06 2007 12:00AM |
| Updated: | Nov 07 2007 05:35PM |
| Credit: | Stephen Fewer of Harmony Security is credited with discovering this issue. |
| Vulnerable: |
Microsoft DebugView 4.64 |
| Not Vulnerable: |
Microsoft DebugView 4.72 |
Discussion
Microsoft DebugView Kernel Module Dbgv.SYS Local Privilege Escalation Vulnerability
Microsoft DebugView is prone to a local privilege-escalation vulnerability because it allows user-supplied data to be copied into memory addresses reserved for the kernel.
An attacker could exploit this issue to execute arbitrary machine code with SYSTEM-level privileges. A successful exploit could result in the complete compromise of the affected computer. Failed attempts could cause denial-of-service conditions.
Microsoft DebugView 4.64 is vulnerable; other versions may also be affected.
Microsoft DebugView is prone to a local privilege-escalation vulnerability because it allows user-supplied data to be copied into memory addresses reserved for the kernel.
An attacker could exploit this issue to execute arbitrary machine code with SYSTEM-level privileges. A successful exploit could result in the complete compromise of the affected computer. Failed attempts could cause denial-of-service conditions.
Microsoft DebugView 4.64 is vulnerable; other versions may also be affected.
Exploit / POC
Microsoft DebugView Kernel Module Dbgv.SYS Local Privilege Escalation Vulnerability
Currently we are not aware of any working exploits for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Currently we are not aware of any working exploits for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution / Fix
Microsoft DebugView Kernel Module Dbgv.SYS Local Privilege Escalation Vulnerability
Solution:
Microsoft has released DebugView 4.72 to address this issue. Please see the references for more information.
Microsoft DebugView 4.64
Solution:
Microsoft has released DebugView 4.72 to address this issue. Please see the references for more information.
Microsoft DebugView 4.64
-
Microsoft DebugView.zip
http://download.sysinternals.com/Files/DebugView.zip
References
Microsoft DebugView Kernel Module Dbgv.SYS Local Privilege Escalation Vulnerability
References:
References:
- DebugView for Windows v4.72 (Microsoft TechNet)
- iDefense Security Advisory 11.06.07: Microsoft DebugView Privilege Escalat (iDefense Labs
) - iDefense Security Advisory 11.06.07 Microsoft DebugView Privilege Escalation Vul (iDefense Labs)