NVD Vulnerability Detail

CVE-2008-3464

Summary	afd.sys in the Ancillary Function Driver (AFD) component in Microsoft Windows XP SP2 and SP3 and Windows Server 2003 SP1 and SP2 does not properly validate input sent from user mode to the kernel, which allows local users to gain privileges via a crafted application, as demonstrated using crafted pointers and lengths that bypass intended ProbeForRead and ProbeForWrite restrictions, aka "AFD Kernel Overwrite Vulnerability."
Summary	El archivo afd.sys en el componente Ancillary Function Driver (AFD) en Windows XP SP2 y SP3 y Windows Server 2003 SP1 y SP2 de Microsoft, no comprueba apropiadamente la entrada enviada desde el modo de usuario al kernel, lo que permite a los usuarios locales alcanzar privilegios por medio de una aplicación diseñada, como es demostrado mediante el uso de punteros y longitudes diseñadas que omiten las restricciones previstas ProbeForRead y ProbeForWrite, también se conoce como "AFD Kernel Overwrite Vulnerability".
Publication Date	Oct. 15, 2008, 9:12 a.m.
Registration Date	Jan. 29, 2021, 1:40 p.m.
Last Update	April 23, 2026, 9:35 a.m.

CVSS2.0 : HIGH
Score	7.2
Vector	AV:L/AC:L/Au:N/C:C/I:C/A:C
攻撃元区分(AV)	ローカル
攻撃条件の複雑さ(AC)	低
攻撃前の認証要否(Au)	不要
機密性への影響(C)	高
完全性への影響(I)	高
可用性への影響(A)	高
Get all privileges.	いいえ
Get user privileges	いいえ
Get other privileges	いいえ
User operation required	いいえ

Affected software configurations

Configuration1	or higher	or less	more than	less than
cpe:2.3:o:microsoft:windows_2003_server:::x64:::::*
cpe:2.3:o:microsoft:windows_2003_server::sp1:itanium:::::
cpe:2.3:o:microsoft:windows_2003_server::sp2::::::*
cpe:2.3:o:microsoft:windows_2003_server::sp2:itanium:::::
cpe:2.3:o:microsoft:windows_2003_server::sp2:x64:::::
cpe:2.3:o:microsoft:windows_2003_server:professional:sp3::::::
cpe:2.3:o:microsoft:windows_xp:::professional_x64:::::*
cpe:2.3:o:microsoft:windows_xp::sp2::::::*
cpe:2.3:o:microsoft:windows_xp::sp2:professional_x64:::::
cpe:2.3:o:microsoft:windows_xp::sp3::::::*

Related information, measures and tools

No	URL	refsource
1	http://blogs.technet.com/swi/archive/2008/10/14/ms08-066-how-to-correctly-validate-and-capture-user-mode-data.aspx	secure@microsoft.com
2	http://marc.info/?l=bugtraq&m=122479227205998&w=2	secure@microsoft.com
3	http://secunia.com/advisories/32261	secure@microsoft.com
4	http://www.securityfocus.com/archive/1/497375/100/0/threaded	secure@microsoft.com
5	http://www.securityfocus.com/bid/31673	secure@microsoft.com
6	http://www.securitytracker.com/id?1021053	secure@microsoft.com
7	http://www.us-cert.gov/cas/techalerts/TA08-288A.html	secure@microsoft.com
8	http://www.vupen.com/english/advisories/2008/2817	secure@microsoft.com
9	https://docs.microsoft.com/en-us/security-updates/securitybulletins/2008/ms08-066	secure@microsoft.com
10	https://exchange.xforce.ibmcloud.com/vulnerabilities/45578	secure@microsoft.com
11	https://exchange.xforce.ibmcloud.com/vulnerabilities/45582	secure@microsoft.com
12	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5825	secure@microsoft.com
13	https://www.exploit-db.com/exploits/6757	secure@microsoft.com
14	http://blogs.technet.com/swi/archive/2008/10/14/ms08-066-how-to-correctly-validate-and-capture-user-mode-data.aspx	af854a3a-2127-422b-91ae-364da2661108
15	http://marc.info/?l=bugtraq&m=122479227205998&w=2	af854a3a-2127-422b-91ae-364da2661108
16	http://secunia.com/advisories/32261	af854a3a-2127-422b-91ae-364da2661108
17	http://www.securityfocus.com/archive/1/497375/100/0/threaded	af854a3a-2127-422b-91ae-364da2661108
18	http://www.securityfocus.com/bid/31673	af854a3a-2127-422b-91ae-364da2661108
19	http://www.securitytracker.com/id?1021053	af854a3a-2127-422b-91ae-364da2661108
20	http://www.us-cert.gov/cas/techalerts/TA08-288A.html	af854a3a-2127-422b-91ae-364da2661108
21	http://www.vupen.com/english/advisories/2008/2817	af854a3a-2127-422b-91ae-364da2661108
22	https://docs.microsoft.com/en-us/security-updates/securitybulletins/2008/ms08-066	af854a3a-2127-422b-91ae-364da2661108
23	https://exchange.xforce.ibmcloud.com/vulnerabilities/45578	af854a3a-2127-422b-91ae-364da2661108
24	https://exchange.xforce.ibmcloud.com/vulnerabilities/45582	af854a3a-2127-422b-91ae-364da2661108
25	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5825	af854a3a-2127-422b-91ae-364da2661108
26	https://www.exploit-db.com/exploits/6757	af854a3a-2127-422b-91ae-364da2661108

Common Vulnerabilities List

No	CWE	Name	URL
1	CWE-264	認可・権限・アクセス制御	https://cwe.mitre.org/data/definitions/264.html

Configuration1	or higher	or less	more than	less than
cpe:2.3:o:microsoft:windows_2003_server:::x64:::::*
cpe:2.3:o:microsoft:windows_2003_server::sp1:itanium:::::
cpe:2.3:o:microsoft:windows_2003_server::sp2::::::*
cpe:2.3:o:microsoft:windows_2003_server::sp2:itanium:::::
cpe:2.3:o:microsoft:windows_2003_server::sp2:x64:::::
cpe:2.3:o:microsoft:windows_2003_server:professional:sp3::::::
cpe:2.3:o:microsoft:windows_xp:::professional_x64:::::*
cpe:2.3:o:microsoft:windows_xp::sp2::::::*
cpe:2.3:o:microsoft:windows_xp::sp2:professional_x64:::::
cpe:2.3:o:microsoft:windows_xp::sp3::::::*