CVE-2004-2339

Name of the Vulnerable Software and Affected Versions: Microsoft Windows versions 2000, XP, and possibly 2003

Description: The issue allows local users with the SeDebugPrivilege privilege to execute arbitrary code as kernel and read or write kernel memory via the NtSystemDebugControl function, which does not verify its pointer arguments. Note that this issue has been disputed since Administrator privileges are typically required to exploit it, thus privilege boundaries are not crossed.

Recommendations: For Microsoft Windows 2000, XP, and possibly 2003, consider restricting the use of the SeDebugPrivilege privilege to minimize the risk of exploitation. As a temporary workaround, consider disabling the NtSystemDebugControl function until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.