Back to search
CVE-2011-1886
Published: Jul 13, 2011
Modified: Aug 6, 2024
PUBLISHED
Description
win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP3 does not properly validate the arguments to functions, which allows local users to read arbitrary data from kernel memory via a crafted application that triggers a NULL pointer dereference, aka "Win32k Incorrect Parameter Validation Allows Information Disclosure Vulnerability."
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
MS11-054
vendor-advisory
x_refsource_MS
48607
vdb-entry
x_refsource_BID
http://support.avaya.com/css/P8/documents/100144947
x_refsource_CONFIRM
73791
vdb-entry
x_refsource_OSVDB
TA11-193A
third-party-advisory
x_refsource_CERT
45186
third-party-advisory
x_refsource_SECUNIA
oval:org.mitre.oval:def:12778
vdb-entry
signature
x_refsource_OVAL
1025761
vdb-entry
x_refsource_SECTRACK
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now