Microsoft Windows XP SP2 Local Privilege Escalation - exploit.company

vendor:

Windows XP

by:

Kingcope

7.2

CVSS

HIGH

Local Privilege Escalation

264

CWE

Product Name: Windows XP

Affected Version From: Windows XP SP2

Affected Version To: Windows XP SP2

Patch Exists: YES

Related CWE: CVE-2005-1260

CPE: o:microsoft:windows_xp::sp2

Metasploit: https://www.rapid7.com/db/vulnerabilities/linuxrpm-CESA-2005-474/, https://www.rapid7.com/db/vulnerabilities/apple-osx-bzip2-cve-2005-1260/, https://www.rapid7.com/db/vulnerabilities/suse-cve-2005-1260/, https://www.rapid7.com/db/vulnerabilities/linuxrpm-RHSA-2005-474/

Other Scripts: https://www.infosecmatter.com/nessus-plugin-library/?id=21829, https://www.infosecmatter.com/nessus-plugin-library/?id=28212, https://www.infosecmatter.com/nessus-plugin-library/?id=18853, https://www.infosecmatter.com/nessus-plugin-library/?id=18645, https://www.infosecmatter.com/nessus-plugin-library/?id=22575, https://www.infosecmatter.com/list-of-metasploit-windows-exploits-detailed-spreadsheet/

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: Windows

2005

Microsoft Windows XP SP2 Local Privilege Escalation

This exploit allows a local user to gain SYSTEM privileges on Windows XP SP2 systems. It exploits a race condition in the Windows kernel, which can be triggered by calling the NtSetTimerResolution() function with a small interval value. The exploit code creates a new process with SYSTEM privileges.

Mitigation:

Microsoft has released a patch for this vulnerability.

Source

Exploit-DB raw data: