Vulnerability Name: | CVE-2011-2005 (CCN-70137) | ||||||||
Assigned: | 2011-10-11 | ||||||||
Published: | 2011-10-11 | ||||||||
Updated: | 2019-02-26 | ||||||||
Summary: | afd.sys in the Ancillary Function Driver in Microsoft Windows XP SP2 and SP3 and Server 2003 SP2 does not properly validate user-mode input passed to kernel mode, which allows local users to gain privileges via a crafted application, aka "Ancillary Function Driver Elevation of Privilege Vulnerability." | ||||||||
CVSS v3 Severity: | 9.3 Critical (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H)
| ||||||||
CVSS v2 Severity: | 7.2 High (CVSS v2 Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C) 5.9 Medium (Temporal CVSS v2 Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C/E:F/RL:OF/RC:C)
5.7 Medium (CCN Temporal CVSS v2 Vector: AV:L/AC:M/Au:N/C:C/I:C/A:C/E:F/RL:OF/RC:C)
| ||||||||
Vulnerability Type: | CWE-264 | ||||||||
Vulnerability Consequences: | Gain Privileges | ||||||||
References: | Source: MITRE Type: CNA CVE-2011-2005 Source: CCN Type: Packetstorm Security Website MS11-080 AfdJoinLeaf Privilege Escalation Source: CCN Type: SA46401 Microsoft Windows Ancillary Function Driver Privilege Escalation Vulnerability Source: CCN Type: Microsoft Security Bulletin MS12-009 Vulnerabilities in Ancillary Function Driver Could Allow Elevation of Privilege (2645640) Source: CCN Type: Microsoft Security Bulletin MS14-040 Vulnerability in Ancillary Function Driver (AFD) Could Allow Elevation of Privilege (2975684) Source: CCN Type: Microsoft Security Bulletin MS15-119 Security Update in Winsock to Address Elevation of Privilege (3104521) Source: CCN Type: Microsoft Security Bulletin MS11-080 Vulnerability in Ancillary Function Driver Could Allow Elevation of Privilege (2592799) Source: CCN Type: BID-49941 Microsoft Windows AFD Driver CVE-2011-2005 Local Privilege Escalation Vulnerability Source: MS Type: UNKNOWN MS11-080 Source: XF Type: UNKNOWN ms-win-afd-priv-esc(70137) Source: OVAL Type: UNKNOWN oval:org.mitre.oval:def:13114 Source: EXPLOIT-DB Type: EXPLOIT Offensive Security Exploit Database [11-30-2011] Source: EXPLOIT-DB Type: EXPLOIT Offensive Security Exploit Database [10-10-2012] | ||||||||
Vulnerable Configuration: | Configuration 1: Configuration CCN 1: ![]() | ||||||||
Oval Definitions | |||||||||
| |||||||||
BACK |