header-logo
Suggest Exploit
vendor:
Windows 7
by:
Google Security Research
7,2
CVSS
HIGH
Memory Leak
119
CWE
Product Name: Windows 7
Affected Version From: Windows 7 32-bit
Affected Version To: Windows 7 32-bit
Patch Exists: NO
Related CWE: N/A
CPE: N/A
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: Windows, VMWare, QEMU
2015

Windows 7 32-bit Cursor Memory Leak

The attached proof-of-concept (PoC) code crashes 32-bit Windows 7 with a screen resolution of 1024x768 and 32bit color depth. The crash occurs during a memmove operation while copying the cursor content from unmapped memory. This could potentially be used by an attacker to leak kernel memory. When reproducing this issue in VMWare, it is necessary to remove VMWare tools. In QEMU the issue reproduces reliably.

Mitigation:

Remove VMWare tools and use QEMU instead.
Source

Exploit-DB raw data:

Source: https://code.google.com/p/google-security-research/issues/detail?id=510

The attached poc crashes 32-bit Windows 7 with a screen resolution of 1024x768 and 32bit color depth. The crash occurs during a memmove opperation while copying the cursor content from unmapped memory. This could potentially be used by an attacker to leak kernel memory.

When reproducing this issue in VMWare, it is necessary to remove VMWare tools. In QEMU the issue reproduces reliably.
---

Proof of Concept:
https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/38794.zip

Navigation

Suggest Exploit

Services By CQR