Back to search
CVE-2011-0676
Published: Apr 13, 2011
Modified: Jan 21, 2025
PUBLISHED
Description
win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 allows local users to gain privileges via a crafted application that triggers a NULL pointer dereference, a different vulnerability than other "Vulnerability Type 2" CVEs listed in MS11-034, aka "Win32k Null Pointer De-reference Vulnerability."
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
TA11-102A
third-party-advisory
x_refsource_CERT
mswin-win32k-var11-priv-escalation(66405)
vdb-entry
x_refsource_XF
MS11-034
vendor-advisory
x_refsource_MS
ADV-2011-0952
vdb-entry
x_refsource_VUPEN
http://support.avaya.com/css/P8/documents/100133352
x_refsource_CONFIRM
oval:org.mitre.oval:def:12416
vdb-entry
signature
x_refsource_OVAL
oval:org.mitre.oval:def:12474
vdb-entry
signature
x_refsource_OVAL
44156
third-party-advisory
x_refsource_SECUNIA
1025345
vdb-entry
x_refsource_SECTRACK
47220
vdb-entry
x_refsource_BID
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now