CVE-2013-3660

2013-05-2420:55:00

CWE-119

[email protected]

web.nvd.nist.gov

854

In Wild

cve-2013-3660

epathobj

pprflattenrec

win32k.sys

vulnerability

microsoft

windows xp

windows server 2003

windows vista

windows server 2008

windows 7

windows 8

windows server 2012

privilege escalation

6.4 Medium

AI Score

Confidence

Low

6.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

0.001 Low

EPSS

Percentile

25.5%

JSON

The EPATHOBJ::pprFlattenRec function in win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, and Windows Server 2012 does not properly initialize a pointer for the next object in a certain list, which allows local users to obtain write access to the PATHRECORD chain, and consequently gain privileges, by triggering excessive consumption of paged memory and then making many FlattenPath function calls, aka “Win32k Read AV Vulnerability.”

CPENameOperatorVersion
microsoft:windows_xpmicrosoft windows xpeq*
microsoft:windows_8microsoft windows 8eq-
microsoft:windows_7microsoft windows 7eq*
microsoft:windows_server_2008microsoft windows server 2008eqr2
microsoft:windows_server_2003microsoft windows server 2003eq*
microsoft:windows_vistamicrosoft windows vistaeq*
microsoft:windows_server_2008microsoft windows server 2008eq*
microsoft:windows_server_2012microsoft windows server 2012eq-

CPE	Name	Operator	Version
microsoft:windows_xp	microsoft windows xp	eq	*
microsoft:windows_8	microsoft windows 8	eq	-
microsoft:windows_7	microsoft windows 7	eq	*
microsoft:windows_server_2008	microsoft windows server 2008	eq	r2
microsoft:windows_server_2003	microsoft windows server 2003	eq	*
microsoft:windows_vista	microsoft windows vista	eq	*
microsoft:windows_server_2008	microsoft windows server 2008	eq	*
microsoft:windows_server_2012	microsoft windows server 2012	eq	-