CVE-2011-0045 - OpenCVE

The Trace Events functionality in the kernel in Microsoft Windows XP SP3 does not properly perform type conversion, which causes integer truncation and insufficient memory allocation and triggers a buffer overflow, which allows local users to gain privileges via a crafted application, related to WmiTraceMessageVa, aka "Windows Kernel Integer Truncation Vulnerability."

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Local

Access Complexity Low

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

AV:L/AC:L/Au:N/C:C/I:C/A:C

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Microsoft	Windows Xp

Configuration 1 [-]

cpe:2.3:o:microsoft:windows_xp:*:sp3:*:*:*:*:*:*

No data.

References

Link	Providers
http://osvdb.org/70823
http://securityreason.com/securityalert/8110
http://support.avaya.com/css/P8/documents/100127248
http://www.securityfocus.com/archive/1/516276/100/0/threaded
http://www.securityfocus.com/bid/46136
http://www.securitytracker.com/id?1025046
http://www.vupen.com/english/advisories/2011/0324
http://www.zerodayinitiative.com/advisories/ZDI-11-064
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2011/ms11-011
https://exchange.xforce.ibmcloud.com/vulnerabilities/64926
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11996

History

No history.

MITRE

Status: PUBLISHED

Assigner: microsoft

Published: 2011-02-09T00:00:00

Updated: 2024-08-06T21:43:13.974Z

Reserved: 2010-12-10T00:00:00

Link: CVE-2011-0045

Vulnrichment

No data.

NVD

Status : Modified

Published: 2011-02-09T01:00:08.243

Modified: 2018-10-12T21:59:18.947

Link: CVE-2011-0045

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2011-02-08T00:00:00", "descriptions": [{"lang": "en", "value": "The Trace Events functionality in the kernel in Microsoft Windows XP SP3 does not properly perform type conversion, which causes integer truncation and insufficient memory allocation and triggers a buffer overflow, which allows local users to gain privileges via a crafted application, related to WmiTraceMessageVa, aka \"Windows Kernel Integer Truncation Vulnerability.\""}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2018-10-12T19:57:01", "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8", "shortName": "microsoft"}, "references": [{"name": "oval:org.mitre.oval:def:11996", "tags": ["vdb-entry", "signature", "x_refsource_OVAL"], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11996"}, {"name": "46136", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/46136"}, {"name": "8110", "tags": ["third-party-advisory", "x_refsource_SREASON"], "url": "http://securityreason.com/securityalert/8110"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://support.avaya.com/css/P8/documents/100127248"}, {"name": "ADV-2011-0324", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2011/0324"}, {"name": "ms-win-kernel-privilege-escalation(64926)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/64926"}, {"name": "MS11-011", "tags": ["vendor-advisory", "x_refsource_MS"], "url": "https://docs.microsoft.com/en-us/security-updates/securitybulletins/2011/ms11-011"}, {"name": "1025046", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://www.securitytracker.com/id?1025046"}, {"name": "70823", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://osvdb.org/70823"}, {"tags": ["x_refsource_MISC"], "url": "http://www.zerodayinitiative.com/advisories/ZDI-11-064"}, {"name": "20110208 ZDI-11-064: Microsoft Windows WmiTraceMessageVa Local Kernel Vulnerability", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://www.securityfocus.com/archive/1/516276/100/0/threaded"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "secure@microsoft.com", "ID": "CVE-2011-0045", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "The Trace Events functionality in the kernel in Microsoft Windows XP SP3 does not properly perform type conversion, which causes integer truncation and insufficient memory allocation and triggers a buffer overflow, which allows local users to gain privileges via a crafted application, related to WmiTraceMessageVa, aka \"Windows Kernel Integer Truncation Vulnerability.\""}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "oval:org.mitre.oval:def:11996", "refsource": "OVAL", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11996"}, {"name": "46136", "refsource": "BID", "url": "http://www.securityfocus.com/bid/46136"}, {"name": "8110", "refsource": "SREASON", "url": "http://securityreason.com/securityalert/8110"}, {"name": "http://support.avaya.com/css/P8/documents/100127248", "refsource": "CONFIRM", "url": "http://support.avaya.com/css/P8/documents/100127248"}, {"name": "ADV-2011-0324", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2011/0324"}, {"name": "ms-win-kernel-privilege-escalation(64926)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/64926"}, {"name": "MS11-011", "refsource": "MS", "url": "https://docs.microsoft.com/en-us/security-updates/securitybulletins/2011/ms11-011"}, {"name": "1025046", "refsource": "SECTRACK", "url": "http://www.securitytracker.com/id?1025046"}, {"name": "70823", "refsource": "OSVDB", "url": "http://osvdb.org/70823"}, {"name": "http://www.zerodayinitiative.com/advisories/ZDI-11-064", "refsource": "MISC", "url": "http://www.zerodayinitiative.com/advisories/ZDI-11-064"}, {"name": "20110208 ZDI-11-064: Microsoft Windows WmiTraceMessageVa Local Kernel Vulnerability", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/516276/100/0/threaded"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-06T21:43:13.974Z"}, "title": "CVE Program Container", "references": [{"name": "oval:org.mitre.oval:def:11996", "tags": ["vdb-entry", "signature", "x_refsource_OVAL", "x_transferred"], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11996"}, {"name": "46136", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/46136"}, {"name": "8110", "tags": ["third-party-advisory", "x_refsource_SREASON", "x_transferred"], "url": "http://securityreason.com/securityalert/8110"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://support.avaya.com/css/P8/documents/100127248"}, {"name": "ADV-2011-0324", "tags": ["vdb-entry", "x_refsource_VUPEN", "x_transferred"], "url": "http://www.vupen.com/english/advisories/2011/0324"}, {"name": "ms-win-kernel-privilege-escalation(64926)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/64926"}, {"name": "MS11-011", "tags": ["vendor-advisory", "x_refsource_MS", "x_transferred"], "url": "https://docs.microsoft.com/en-us/security-updates/securitybulletins/2011/ms11-011"}, {"name": "1025046", "tags": ["vdb-entry", "x_refsource_SECTRACK", "x_transferred"], "url": "http://www.securitytracker.com/id?1025046"}, {"name": "70823", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://osvdb.org/70823"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://www.zerodayinitiative.com/advisories/ZDI-11-064"}, {"name": "20110208 ZDI-11-064: Microsoft Windows WmiTraceMessageVa Local Kernel Vulnerability", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://www.securityfocus.com/archive/1/516276/100/0/threaded"}]}]}, "cveMetadata": {"assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8", "assignerShortName": "microsoft", "cveId": "CVE-2011-0045", "datePublished": "2011-02-09T00:00:00", "dateReserved": "2010-12-10T00:00:00", "dateUpdated": "2024-08-06T21:43:13.974Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:microsoft:windows_xp:*:sp3:*:*:*:*:*:*", "matchCriteriaId": "CE477A73-4EE4-41E9-8694-5A3D5DC88656", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "The Trace Events functionality in the kernel in Microsoft Windows XP SP3 does not properly perform type conversion, which causes integer truncation and insufficient memory allocation and triggers a buffer overflow, which allows local users to gain privileges via a crafted application, related to WmiTraceMessageVa, aka \"Windows Kernel Integer Truncation Vulnerability.\""}, {"lang": "es", "value": "La funcionalidad Trace Events en el kernel de Windows XP SP3 de Microsoft, no realiza apropiadamente la conversi\u00f3n de tipos, lo que causa el truncamiento de enteros y una asignaci\u00f3n de memoria insuficiente y desencadena un desbordamiento de b\u00fafer, lo que permite a los usuarios locales alcanzar privilegios por medio de una aplicaci\u00f3n especialmente dise\u00f1ada, relacionada con WmiTraceMessageVa, tambi\u00e9n se conoce como \"Windows Kernel Integer Truncation Vulnerability\"."}], "id": "CVE-2011-0045", "lastModified": "2018-10-12T21:59:18.947", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.2, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 3.9, "impactScore": 10.0, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2011-02-09T01:00:08.243", "references": [{"source": "secure@microsoft.com", "url": "http://osvdb.org/70823"}, {"source": "secure@microsoft.com", "url": "http://securityreason.com/securityalert/8110"}, {"source": "secure@microsoft.com", "url": "http://support.avaya.com/css/P8/documents/100127248"}, {"source": "secure@microsoft.com", "url": "http://www.securityfocus.com/archive/1/516276/100/0/threaded"}, {"source": "secure@microsoft.com", "url": "http://www.securityfocus.com/bid/46136"}, {"source": "secure@microsoft.com", "url": "http://www.securitytracker.com/id?1025046"}, {"source": "secure@microsoft.com", "tags": ["Vendor Advisory"], "url": "http://www.vupen.com/english/advisories/2011/0324"}, {"source": "secure@microsoft.com", "url": "http://www.zerodayinitiative.com/advisories/ZDI-11-064"}, {"source": "secure@microsoft.com", "url": "https://docs.microsoft.com/en-us/security-updates/securitybulletins/2011/ms11-011"}, {"source": "secure@microsoft.com", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/64926"}, {"source": "secure@microsoft.com", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11996"}], "sourceIdentifier": "secure@microsoft.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-119"}], "source": "nvd@nist.gov", "type": "Primary"}]}