CVE-2007-0843

The ReadDirectoryChangesW API function on Microsoft Windows 2000, XP, Server 2003, and Vista does not check permissions for child objects, which allows local users to bypass permissions by opening a directory with LIST (READ) access and using ReadDirectoryChangesW to monitor changes of files that do not have LIST permissions, which can be leveraged to determine filenames, access times, and other sensitive information.

Published: Feb 23, 2007
Updated: Apr 13, 2023
CVE: CVE-2007-0843
Severity: Low
Exploit:

CVSS v2:

Severity: Low
Score: 4.6
AV:L/AC:L/Au:N/C:P/I:P/A:P

CWEs:

CWE-264

Affected Software
References

Software	From	Fixed in
microsoft / windows_xp	-	-
microsoft / windows_2000	-	-
microsoft / windows_2003_server	-	-
microsoft / windows_vista	-	-

http://lists.grok.org.uk/pipermail/full-disclosure/2007-February/052613.html
http://osvdb.org/33474
http://packetstormsecurity.com/files/163755/Microsoft-Windows-Malicious-Software-Removal-Tool-Privilege-Escalation.html
http://secunia.com/advisories/24245
http://securityreason.com/securityalert/2282
http://securityvulns.com/advisories/readdirectorychanges.asp
http://www.securityfocus.com/archive/1/460887/100/0/threaded
http://www.securityfocus.com/archive/1/460899/100/0/threaded
http://www.securityfocus.com/bid/22664
http://www.vupen.com/english/advisories/2007/0701
https://exchange.xforce.ibmcloud.com/vulnerabilities/32644

Vulnerability Database

289,599

CVE-2007-0843