CVE-2011-0045

Microsoft Windows XP SP3 - Buffer Overflow

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2011-0045. PoCs published by Nikita Tarakanov.

AI-analyzed exploit summary This exploit targets CVE-2011-0045, an integer truncation vulnerability in the Windows WMI Trace Message handling. It leverages a crafted IOCTL request to trigger a buffer overflow, potentially leading to local privilege escalation on Windows XP SP3.

Description

The Trace Events functionality in the kernel in Microsoft Windows XP SP3 does not properly perform type conversion, which causes integer truncation and insufficient memory allocation and triggers a buffer overflow, which allows local users to gain privileges via a crafted application, related to WmiTraceMessageVa, aka "Windows Kernel Integer Truncation Vulnerability."

Exploits (1)

exploitdb WORKING POC VERIFIED

by Nikita Tarakanov · cdoswindows

https://www.exploit-db.com/exploits/16262

View Code ZIP pw:eip

This exploit targets CVE-2011-0045, an integer truncation vulnerability in the Windows WMI Trace Message handling. It leverages a crafted IOCTL request to trigger a buffer overflow, potentially leading to local privilege escalation on Windows XP SP3.

Classification

Working Poc 90%

Attack Type

Lpe

Complexity

Moderate

Reliability

Reliable

Target: Microsoft Windows XP SP3 (prior to MS11-011)

No auth needed

Prerequisites: Access to a vulnerable Windows XP SP3 system

MITRE ATT&CK