CVE-2010-3222

2010-10-1319:00:00

CWE-119

[email protected]

web.nvd.nist.gov

cve-2010-3222

buffer overflow

rpcss

microsoft windows

privilege escalation

7 High

AI Score

Confidence

Low

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

9.9%

JSON

Stack-based buffer overflow in the Remote Procedure Call Subsystem (RPCSS) in Microsoft Windows XP SP2 and SP3 and Server 2003 SP2 allows local users to gain privileges via a crafted LPC message that requests an LRPC connection from an LPC server to a client, aka “LPC Message Buffer Overrun Vulnerability.”

CPENameOperatorVersion
microsoft:windows_xpmicrosoft windows xpeq-
microsoft:windows_xpmicrosoft windows xpeq*
microsoft:windows_server_2003microsoft windows server 2003eq*