Lucene search

K
cvelistMicrosoftCVELIST:CVE-2010-0023
HistoryFeb 10, 2010 - 6:00 p.m.

CVE-2010-0023

2010-02-1018:00:00
microsoft
www.cve.org

6 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

20.4%

The Client/Server Run-time Subsystem (CSRSS) in Microsoft Windows 2000 SP4, XP SP2 and SP3, and Server 2003 SP2 does not properly kill processes after a logout, which allows local users to obtain sensitive information or gain privileges via a crafted application that continues to execute throughout the logout of one user and the login session of the next user, aka “CSRSS Local Privilege Elevation Vulnerability.”

6 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

20.4%