Lucene search
RootSSV:19779HistoryJun 10, 2010 - 12:00 a.m.
Windows Win32k.sys驱动创建窗口权限提升漏洞(MS10-032)
2010-06-1000:00:00
Root
www.seebug.org
6
0.001 Low
EPSS
Percentile
23.4%
BUGTRAQ ID: 40569
CVE ID: CVE-2010-0485
Windows是微软发布的非常流行的操作系统。
Windows的Win32k.sys内核驱动在创建新的窗口时没有充分地验证所有的回调参数,本地用户可以通过运行特制的应用程序导致执行任意内核态代码。
Microsoft Windows XP SP3
Microsoft Windows XP SP2
Microsoft Windows Vista SP2
Microsoft Windows Vista SP1
Microsoft Windows Server 2008 SP2
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2008
Microsoft Windows Server 2003 SP2
Microsoft Windows Server 2003 SP1
Microsoft Windows 7
Microsoft Windows 2000 SP4
厂商补丁:
Microsoft
Microsoft已经为此发布了一个安全公告(MS10-032)以及相应补丁:
MS10-032:Vulnerabilities in Windows Kernel-Mode Drivers Could Allow Elevation of Privilege (979559)
链接:http://www.microsoft.com/technet/security/bulletin/MS10-032.mspx?pf=true
Related
cvelist
cvelist
CVE-2010-0485
2010-06-08 22:00:00
cve
cve
CVE-2010-0485
2010-06-08 22:30:00
prion
prion
Design/Logic Flaw
2010-06-08 22:30:00
canvas
canvas
Immunity Canvas: MS10_032
2010-06-08 22:30:00
exploitpack
exploitpack
Microsoft Windows - CreateWindow Function Callback (MS10-048)
2010-08-10 00:00:00
securityvulns
securityvulns
Microsoft Windows win32k privilege escalation
2010-06-14 00:00:00
packetstorm
packetstorm
Core Security Technologies Advisory 2010.0623
2010-08-12 00:00:00
seebug
seebug
Microsoft Windows CreateWindow Function Callback Vulnerability (MS10-048)
2010-08-11 00:00:00
exploitdb
exploitdb
Microsoft Windows - CreateWindow Function Callback (MS10-048)
2010-08-10 00:00:00
openvas
openvas
nessus
nessus