Microsoft Windows NT Win32k.sys denial of service

nt-win32k-dos (7403)

Low Risk

Description:

Not all Win32K functions correctly validate input parameters prior to SP2. An attacker could write a program that passes invalid parameters to a Win32K function and crash Windows NT with a blue screen error.

Platforms Affected:

• Microsoft, Windows NT 3.5.1 SP1
• Microsoft, Windows NT 4.0

Remedy:

Apply the latest Windows NT 4.0 Service Pack (SP2 or later), available from the Windows NT Service Packs Web page. See References.

Consequences:

Denial of Service

References:

• Microsoft Knowledge Base Article 160601, Bad Parameters Sent to Win32k.sys May Cause Stop Message at http://support.microsoft.com/default.aspx?scid=kb;[LN];160601.
• Microsoft Product Support Services, Windows NT 4.0 Service Pack 6a at http://www.microsoft.com/downloads/details.aspx?FamilyID=e396d059-e402-46ef-b095-a74399e25737&DisplayLang=en.
• BID-6742: Microsoft Windows NT Win32k.sys Denial of Service Vulnerability
• CVE-1999-1362: Win32k.sys in Windows NT 4.0 before SP2 allows local users to cause a denial of service (crash) by calling certain WIN32K functions with incorrect parameters.

Reported:

Not available

The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.

Copyright (c) 1994-2008 Internet Security Systems, Inc. All rights reserved worldwide.

For corrections or additions please email xforce@iss.net

Return to the main page