Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
symantecSymantec Security ResponseSMNTC-45298
HistoryDec 14, 2010 - 12:00 a.m.

Microsoft Windows CVE-2010-3944 'Win32k.sys' Local Privilege Escalation Vulnerability

2010-12-1400:00:00
Symantec Security Response
www.symantec.com
15

0.001 Low

EPSS

Percentile

23.0%

JSON

Description

Microsoft Windows is prone to a local privilege-escalation vulnerability that occurs in the ‘Win32k.sys’ Windows kernel-mode driver. A local attacker can exploit this issue to execute arbitrary code with kernel-level privileges. Successful exploits will result in the complete compromise of affected computers. Failed exploit attempts may cause a denial-of-service condition.

Technologies Affected

  • Avaya Aura Conferencing 6.0 Standard
  • Avaya CallPilot 4.0
  • Avaya CallPilot 5.0
  • Avaya CallPilot
  • Avaya Communication Server 1000 Telephony Manager 3.0
  • Avaya Communication Server 1000 Telephony Manager 4.0
  • Avaya Communication Server 1000 Telephony Manager
  • Avaya Meeting Exchange - Client Registration Server
  • Avaya Meeting Exchange - Recording Server
  • Avaya Meeting Exchange - Streaming Server
  • Avaya Meeting Exchange - Web Conferencing Server
  • Avaya Meeting Exchange - Webportal
  • Avaya Meeting Exchange 5.0
  • Avaya Meeting Exchange 5.0 SP1
  • Avaya Meeting Exchange 5.0.0.0.52
  • Avaya Meeting Exchange 5.1
  • Avaya Meeting Exchange 5.1 SP1
  • Avaya Meeting Exchange 5.2
  • Avaya Meeting Exchange 5.2 SP1
  • Avaya Meeting Exchange 5.2 SP2
  • Avaya Messaging Application Server 4
  • Avaya Messaging Application Server 5.2
  • Microsoft Windows 7
  • Microsoft Windows 7 Home Premium
  • Microsoft Windows 7 Professional
  • Microsoft Windows 7 Starter
  • Microsoft Windows 7 Ultimate
  • Microsoft Windows 7 XP Mode
  • Microsoft Windows 7 for 32-bit Systems
  • Microsoft Windows 7 for x64-based Systems
  • Microsoft Windows Server 2008 R2 Itanium
  • Microsoft Windows Server 2008 R2 x64

Recommendations

Permit local access for trusted individuals only. Where possible, use restricted environments and restricted shells.
To exploit this vulnerability, an attacker requires local access to an affected computer. Grant local access for trusted and accountable users only.

The vendor has released an advisory and updates. Please see the references for more information.

Related

packetstorm 1
prion 1
seebug 2
cve 1
cvelist 1
nvd 1
exploitpack 1
exploitdb 1
openvas 2
nessus 1
securityvulns 1
packetstorm
packetstorm
Windows Win32k Pointer Dereference
2010-12-17 00:00:00
prion
prion
Memory corruption
2010-12-16 19:33:00
seebug
seebug
Windows Win32k Pointer Dereferencement PoC (MS10-098)
2014-07-01 00:00:00
Microsoft Windows "Win32k.sys" 驱动程序多个安全漏洞(MS10-098)
2010-12-19 00:00:00
cve
cve
CVE-2010-3944
2010-12-16 19:33:02
cvelist
cvelist
CVE-2010-3944
2010-12-16 19:00:00
nvd
nvd
CVE-2010-3944
2010-12-16 19:33:02
exploitpack
exploitpack
Microsoft Windows - Win32k Pointer Dereferencement (PoC) (MS10-098)
2010-12-17 00:00:00
exploitdb
exploitdb
Microsoft Windows - Win32k Pointer Dereferencement (PoC) (MS10-098)
2010-12-17 00:00:00
openvas
openvas
Windows Kernel-Mode Drivers Privilege Elevation Vulnerabilities (2436673)
2010-12-15 00:00:00
Windows Kernel-Mode Drivers Privilege Elevation Vulnerabilities (2436673)
2010-12-15 00:00:00
nessus
nessus
MS10-098: Vulnerabilities in Windows Kernel-Mode Drivers Could Allow Elevation of Privilege (2436673)
2010-12-15 00:00:00
securityvulns
securityvulns
Microsoft Windows multiple security vulnerabilities
2010-12-15 00:00:00

0.001 Low

EPSS

Percentile

23.0%

JSON
Related for SMNTC-45298
packetstorm1prion1seebug2cve1cvelist1nvd1exploitpack1exploitdb1openvas2nessus1securityvulns1