From 0ad4ef6002fc2fdd9e636fa98384859c39d68e1c Mon Sep 17 00:00:00 2001 From: Pierre Schweitzer Date: Thu, 9 Aug 2018 21:13:08 +0200 Subject: [PATCH] [NTOSKRNL] Check that caller has appropriate right before creating page file --- ntoskrnl/mm/pagefile.c | 7 ++++++- 1 file changed, 6 insertions(+), 1 deletion(-) diff --git a/ntoskrnl/mm/pagefile.c b/ntoskrnl/mm/pagefile.c index a30d920d225..523422fcf51 100644 --- a/ntoskrnl/mm/pagefile.c +++ b/ntoskrnl/mm/pagefile.c @@ -509,13 +509,18 @@ NtCreatePagingFile(IN PUNICODE_STRING FileName, if (MmNumberOfPagingFiles >= MAX_PAGING_FILES) { - return(STATUS_TOO_MANY_PAGING_FILES); + return STATUS_TOO_MANY_PAGING_FILES; } PreviousMode = ExGetPreviousMode(); if (PreviousMode != KernelMode) { + if (SeSinglePrivilegeCheck(SeCreatePagefilePrivilege, PreviousMode) != TRUE) + { + return STATUS_PRIVILEGE_NOT_HELD; + } + _SEH2_TRY { SafeInitialSize = ProbeForReadLargeInteger(InitialSize);