Microsoft Windows Kernel bind() Out-Of-Bounds Read

Posted by deepcore on May 17, 2017 – 11:15 am

Two related bugs have been discovered in the Microsoft Windows kernel code responsible for implementing the bind() socket function, specifically in the afd!AfdBind and tcpip!TcpBindEndpoint routines. They both can lead to reading beyond the allocated pool-based buffer memory area, potentially allowing user-mode applications to disclose kernel-mode secrets. They can also be exploited to trigger a blue screen of death and therefore a denial of service condition.

This post is under “exploit” and has no respond so far.
If you enjoy this article, make sure you subscribe to my RSS Feed.

Post a reply

You must be logged in to post a comment.

« Microsoft Windows Kernel DACL Descriptor Uninitialized Memory PlaySms 1.4 Remote Code Execution »

:: Deepquest ::

This site contains information which could be considered illegal in some countries. It is provided here for educational use only and is not intended to be used for illegal activities.

Microsoft Windows Kernel bind() Out-Of-Bounds Read

Post a reply

Tabs Switcher

Categories

Archives

Meta

BLOGROLL