← back
CVE-2005-3981

CVE-2005-3981

EPSS 4.1%
NOTE: this issue has been disputed by third parties. Microsoft Windows XP, 2000, and 2003 allows local users to kill a writable process by using the CreateRemoteThread function with certain arguments on a process that has been opened using the OpenProcess function, possibly involving an invalid address for the start routine. NOTE: followup posts have disputed this issue, saying that if a user already has privileges to write to a process, then other functions could be called or the process could be terminated using PROCESS_TERMINATE
Affected products
n/a · n/a
public PoCs found1
exploitdbwww.exploit-db.com/exploits/26690unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://www.securityfocus.com/archive/1/418289/100/0/threadedhttp://www.securityfocus.com/archive/1/418431/100/0/threadedhttp://www.securityfocus.com/bid/15671/