Attacker Value
Very Low
(1 user assessed)
Exploitability
Low
(1 user assessed)
User Interaction
Unknown
Privileges Required
Unknown
Attack Vector
Unknown
0

Kernel-mode type-confusion vulnerability via NtUserSetInformationThread/UserThreadCsrApiPort

Last updated February 13, 2020
Add MITRE ATT&CK tactics and techniques that apply to this CVE.

Description

The Windows Kernel is subject to a kernel-mode type-confusion vulnerability inside win32k!NtUserSetInformationThread due to referencing a user-mode handle via ObReferenceObjectByHandle with a NULL type specified (it should instead be using LpcPortObjectType to protect against this vulnerability).

Add Assessment

1
Ratings
  • Attacker Value
    Very Low
  • Exploitability
    Low
Technical Analysis

Details

Kernel type confusion noted via code review, but no direct exploit. Probably fixed later.

General Information

Additional Info

Technical Analysis