Lucene search
HistoryDec 11, 2013 - 12:55 a.m.
CVE-2013-3902
cve-2013-3902
win32k
vulnerability
microsoft
windows server 2008 r2
windows 7
privilege escalation
nvd
7.2 High
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
6.4 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
9.5%
Use-after-free vulnerability in win32k.sys in the kernel-mode drivers in Microsoft Windows Server 2008 R2 SP1 and Windows 7 SP1 on 64-bit platforms allows local users to gain privileges via a crafted application, aka “Win32k Use After Free Vulnerability.”
Affected configurations
Node
microsoftwindows_7sp1x64
ORmicrosoftwindows_7sp1x86
| CPE | Name | Operator | Version |
|---|---|---|---|
| microsoft:windows_7 | microsoft windows 7 | eq | * |
Related
nvd
nvd
CVE-2013-3902
2013-12-11 00:55:03
prion
prion
Design/Logic Flaw
2013-12-11 00:55:00
symantec
symantec
cvelist
cvelist
CVE-2013-3902
2013-12-11 00:00:00
openvas
openvas
nessus
nessus
securityvulns
securityvulns
Microsoft Windows multiple security vulnerabilities
2013-12-30 00:00:00
7.2 High
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
6.4 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
9.5%
Related for CVE-2013-3902