Lucene search
MicrosoftCVE-2010-1894HistoryAug 11, 2010 - 6:47 p.m.
CVE-2010-1894
2010-08-1118:47:50
CWE-264
microsoft
web.nvd.nist.gov
39
cve-2010-1894
windows
kernel-mode drivers
win32k.sys
microsoft
xp
sp2
sp3
server 2003
sp2
privilege escalation
vulnerability
CVSS2
7.2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
AI Score
6.4
Confidence
Low
EPSS
0
Percentile
9.5%
The Windows kernel-mode drivers in win32k.sys in Microsoft Windows XP SP2 and SP3, and Windows Server 2003 SP2, do not properly handle unspecified exceptions, which allows local users to gain privileges via a crafted application, aka “Win32k Exception Handling Vulnerability.”
Affected configurations
Node
microsoftwindows_2003_serversp2
ORmicrosoftwindows_2003_serversp2itanium
ORmicrosoftwindows_server_2003sp2
ORmicrosoftwindows_xpsp3
ORmicrosoftwindows_xpMatch-sp2x64
| Vendor | Product | Version | CPE |
|---|---|---|---|
| microsoft | windows_2003_server | cpe:/o:microsoft:windows_2003_server::sp2:: | |
| microsoft | windows_xp | - | cpe:/o:microsoft:windows_xp:-:sp2:: |
| microsoft | windows_server_2003 | cpe:/o:microsoft:windows_server_2003::sp2:: | |
| microsoft | windows_xp | cpe:/o:microsoft:windows_xp::sp3:: |
Related
cvelist
cvelist
CVE-2010-1894
2010-08-11 18:00:00
packetstorm
packetstorm
Microsoft Windows SfnLOGONNOTIFY Local Privilege Escalation
2010-08-12 00:00:00
prion
prion
Privilege escalation
2010-08-11 18:47:00
nvd
nvd
CVE-2010-1894
2010-08-11 18:47:50
openvas
openvas
nessus
nessus
securityvulns
securityvulns
CVSS2
7.2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
AI Score
6.4
Confidence
Low
EPSS
0
Percentile
9.5%
Related for CVE-2010-1894