Lucene search
HistoryMay 06, 2010 - 12:47 p.m.
CVE-2010-1735
CVSS2
4.9
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:N/I:N/A:C
AI Score
6.1
Confidence
High
EPSS
0
Percentile
10.1%
The SfnLOGONNOTIFY function in win32k.sys in the kernel in Microsoft Windows 2000, XP, and Server 2003 allows local users to cause a denial of service (system crash) via a 0x4c value in the second argument (aka the Msg argument) of a PostMessage function call for the DDEMLEvent window.
Affected configurations
Node
microsoftwindows_2000-
ORmicrosoftwindows_2000beta3
ORmicrosoftwindows_2000gold
ORmicrosoftwindows_2000rc1
ORmicrosoftwindows_2000rc2
ORmicrosoftwindows_2000sp1
ORmicrosoftwindows_2000sp2
ORmicrosoftwindows_2000sp3
ORmicrosoftwindows_2000sp4
ORmicrosoftwindows_2000Match-
ORmicrosoftwindows_2003_servergold
ORmicrosoftwindows_2003_servergolditanium
ORmicrosoftwindows_2003_servergoldx64
ORmicrosoftwindows_2003_serverr2x64
ORmicrosoftwindows_2003_serversp1
ORmicrosoftwindows_2003_serversp2
ORmicrosoftwindows_2003_serversp2itanium
ORmicrosoftwindows_server_2003-
ORmicrosoftwindows_server_2003sp1
ORmicrosoftwindows_server_2003sp2
ORmicrosoftwindows_xpx86
ORmicrosoftwindows_xpgold
ORmicrosoftwindows_xpgoldembedded
ORmicrosoftwindows_xpgoldmedia_center
ORmicrosoftwindows_xpgoldprofessional
ORmicrosoftwindows_xpgoldtablet_pc
ORmicrosoftwindows_xpsp1
ORmicrosoftwindows_xpsp1embedded
ORmicrosoftwindows_xpsp1media_center
ORmicrosoftwindows_xpsp1professional
ORmicrosoftwindows_xpsp1tablet_pc
ORmicrosoftwindows_xpsp2
ORmicrosoftwindows_xpsp2embedded
ORmicrosoftwindows_xpsp2media_center
ORmicrosoftwindows_xpsp2professional
ORmicrosoftwindows_xpsp2tablet_pc
ORmicrosoftwindows_xpsp2x86
ORmicrosoftwindows_xpsp3
ORmicrosoftwindows_xpsp3x86
ORmicrosoftwindows_xpMatch-
ORmicrosoftwindows_xpMatch-gold64-bit-2002
ORmicrosoftwindows_xpMatch-gold64-bit-2003
ORmicrosoftwindows_xpMatch-goldhome
ORmicrosoftwindows_xpMatch-goldx64
ORmicrosoftwindows_xpMatch-sp1home
ORmicrosoftwindows_xpMatch-sp2home
ORmicrosoftwindows_xpMatch-sp2x64
ORmicrosoftwindows_xpMatch-sp3
ORmicrosoftwindows_xpMatch-sp3embedded
ORmicrosoftwindows_xpMatch-sp3home
ORmicrosoftwindows_xpMatch-sp3media_center
ORmicrosoftwindows_xpMatch-sp3professional
ORmicrosoftwindows_xpMatch-sp3tablet_pc
ORmicrosoftwindows_xpMatchsp3
ORmicrosoftwindows_xpMatchsp3unknownenglish
| Vendor | Product | Version | CPE |
|---|---|---|---|
| microsoft | windows_2000 | * | cpe:2.3:o:microsoft:windows_2000:*:-:*:*:*:*:*:* |
| microsoft | windows_2000 | * | cpe:2.3:o:microsoft:windows_2000:*:beta3:*:*:*:*:*:* |
| microsoft | windows_2000 | * | cpe:2.3:o:microsoft:windows_2000:*:gold:*:*:*:*:*:* |
| microsoft | windows_2000 | * | cpe:2.3:o:microsoft:windows_2000:*:rc1:*:*:*:*:*:* |
| microsoft | windows_2000 | * | cpe:2.3:o:microsoft:windows_2000:*:rc2:*:*:*:*:*:* |
| microsoft | windows_2000 | * | cpe:2.3:o:microsoft:windows_2000:*:sp1:*:*:*:*:*:* |
| microsoft | windows_2000 | * | cpe:2.3:o:microsoft:windows_2000:*:sp2:*:*:*:*:*:* |
| microsoft | windows_2000 | * | cpe:2.3:o:microsoft:windows_2000:*:sp3:*:*:*:*:*:* |
| microsoft | windows_2000 | * | cpe:2.3:o:microsoft:windows_2000:*:sp4:*:*:*:*:*:* |
| microsoft | windows_2000 | - | cpe:2.3:o:microsoft:windows_2000:-:*:*:*:*:*:*:* |
Related
cve
cve
CVE-2010-1735
2010-05-06 12:47:23
prion
prion
Code injection
2010-05-06 12:47:00
cvelist
cvelist
CVE-2010-1735
2010-05-05 18:00:00
openvas
openvas
Microsoft Windows Kernel 'win32k.sys' Multiple DOS Vulnerabilities
2010-05-13 00:00:00
Microsoft Windows Kernel 'win32k.sys' Multiple DOS Vulnerabilities
2010-05-13 00:00:00
exploitdb
exploitdb
CVSS2
4.9
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:N/I:N/A:C
AI Score
6.1
Confidence
High
EPSS
0
Percentile
10.1%
Related for NVD:CVE-2010-1735