Published: 11/08/2010 Updated: 26/02/2019

CVSS v2 Base Score: 7.2 | Impact Score: 10 | Exploitability Score: 3.9

VMScore: 730

Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C

The Windows kernel-mode drivers in win32k.sys in Microsoft Windows XP SP2 and SP3, and Windows Server 2003 SP2, do not properly handle unspecified exceptions, which allows local users to gain privileges via a crafted application, aka "Win32k Exception Handling Vulnerability."

Vulnerable Product	Search on Vulmon	Subscribe to Product
microsoft windows xp -
microsoft windows server 2003
microsoft windows 2003 server
microsoft windows xp

# source: wwwsecurityfocuscom/bid/39630/info Microsoft Windows is prone to a local privilege-escalation vulnerability A local attacker may exploit this issue to execute arbitrary code with kernel-level privileges Successful exploits will result in the complete compromise of affected computers Failed exploit attempts may cause a denial ...

/* Windows 2000/XP/2003 win32ksys SfnLOGONNOTIFY local kernel Denial of Service Vulnerability Effect : Microsoft Windows 2000/XP/2003 full patch Author:MJ0011 Published: 2010-04-22 Vulnerability Details: Win32ksys in DispatchMessage when the last call to xxxDefWindowProc, this function in dealing with some Message, will call gapfnScSend ...

CWE-264 http://www.us-cert.gov/cas/techalerts/TA10-222A.html https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11769 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-048 https://nvd.nist.gov https://www.exploit-db.com/exploits/14611/

CVE-2010-1894

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect