CVE-2010-1897 in Windows
요약 (영어)
The Windows kernel-mode drivers in win32k.sys in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, and R2, and Windows 7 do not properly validate pseudo-handle values in callback parameters during window creation, which allows local users to gain privileges via a crafted application, aka "Win32k Window Creation Vulnerability."
Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.
예약하다
2010. 05. 11.
공개
2010. 08. 11.
상태
확인됨
엔트리
VulDB provides additional information and datapoints for this CVE:
| 아이디 | 취약성 | CWE | 악용 | 대책 | CVE |
|---|---|---|---|---|---|
| 54317 | Microsoft Windows 권한 상승 | 20 | 개념 증명 | 정의되지 않음 | CVE-2010-1897 |