Windows Kernel-Mode Drivers Win32k.sys multiple vulnerabilities - MS10-098ID: oval:org.secpod.oval:def:1270 | Date: (C)2011-06-24 (M)2023-12-14 |
Class: PATCH | Family: windows |
The host is missing a critical security update according to Microsoft security bulletin, MS10-098. The update is required to fix multiple vulnerabilities. Flaws are present in the Win32k.sys in the kernel-mode drivers, which fails to allocate memory when copying data from user mode. Successful exploitation could allow a local attacker to overflow a buffer and execute arbitrary code on the system with elevated privileges.
Platform: |
Microsoft Windows 7 |
Microsoft Windows Server 2003 |
Microsoft Windows Server 2008 |
Microsoft Windows Server 2008 R2 |
Microsoft Windows Vista |
Microsoft Windows XP |