CVE-2009-2517

The kernel in Microsoft Windows Server 2003 SP2 does not properly handle unspecified exceptions when an error condition occurs, which allows local users to cause a denial of service (reboot) via a crafted application, aka "Windows Kernel Exception Handler Vulnerability."

CVSS v2.0 4.9 MEDIUM

4.9^/10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:L/AC:L/Au:N/C:N/I:N/A:C

Exploitability : 3.9 / Impact : 6.9

Access Vector LOCAL

Access Complexity LOW

Authentication NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact COMPLETE

References

Link	Resource
http://www.us-cert.gov/cas/techalerts/TA09-286A.html	US Government Resource
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2009/ms09-058
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6512

Configurations

Configuration 1 (hide)

cpe:2.3:o:microsoft:windows_server_2003:*:sp2:*:*:*:*:*:*

History

No history.

Information

Published : 2009-10-14 10:30

Updated : 2024-02-04 17:33

NVD link : CVE-2009-2517

Mitre link : CVE-2009-2517

CVE.ORG link : CVE-2009-2517

JSON object : View

Products Affected

microsoft

windows_server_2003

CWE

CWE-399

Resource Management Errors

4.9 /10