CVE-2012-0149

2012-02-1422:00:00

microsoft

www.cve.org

6.3 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

0.4%

JSON

afd.sys in the Ancillary Function Driver in Microsoft Windows Server 2003 SP2 does not properly validate user-mode input passed to kernel mode, which allows local users to gain privileges via a crafted application, aka “Ancillary Function Driver Elevation of Privilege Vulnerability.”