VUPEN Security Research - Microsoft Windows Kernel "GetDCEx()" Memory Corruption Vulnerability (CVE-2010-0484)

VUPEN Security Research - Microsoft Windows Kernel "GetDCEx" Memory Corruption Vulnerability CVE-2010-0484 http://www.vupen.com/english/research.php I. BACKGROUND --------------------- "Microsoft Windows is the operating system developed by Microsoft. As of May 2010, Windows was the most widely...

Microsoft Windows Kernel Mode Drivers Privilege Escalation Vulnerabilities (979559)

This host is missing a critical security update according to Microsoft Bulletin MS10-032. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

MS10-032: Vulnerabilities in Windows Kernel-Mode Drivers Could Allow Elevation of Privilege (979559)

The remote Windows host is running a version of the Windows kernel that is affected by one or more of the following vulnerabilities : - Improper validation of changes in certain kernel objects may allow a local attacker to execute arbitrary code in kernel mode and take complete control of the...

CVE-2010-0484

CVE-2010-0484 affects Windows kernel-mode drivers in win32k.sys. The vulnerability arises from improper validation/memory handling when processing Device Contexts (DC) via GetDCEx, enabling local users to execute arbitrary code in kernel mode (ring0) on affected Windows versions. Affected are Win...