Published: 11/08/2010 Updated: 12/10/2018

CVSS v2 Base Score: 6.8 | Impact Score: 10 | Exploitability Score: 3.1

VMScore: 685

Vector: AV:L/AC:L/Au:S/C:C/I:C/A:C

Race condition in the kernel in Microsoft Windows XP SP3 allows local users to gain privileges via vectors involving thread creation, aka "Windows Kernel Data Initialization Vulnerability."

Vulnerable Product	Search on Vulmon	Subscribe to Product
microsoft windows xp

Microsoft Windows nt!NtCreateThread race condition with invalid code segment ---------------------------------------------------------------------------- CVE-2010-1888 Creating a new thread on windows involves passing several structures to NtCreateThread() These structures describe the execution state of the new thread, and are setup transparent ...

Microsoft Windows suffers from a race condition in NtCreateThread() Proof of concept code included ...

CWE-362 http://www.us-cert.gov/cas/techalerts/TA10-222A.html https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11825 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-047 https://nvd.nist.gov https://www.exploit-db.com/exploits/14666/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2010-1888

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect