Back to search
CVE-2012-1864
Published: Jun 12, 2012
Modified: Aug 6, 2024
PUBLISHED
Description
win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 does not properly handle user-mode input passed to kernel mode for driver objects, which allows local users to gain privileges via a crafted application, aka "String Atom Class Name Handling Vulnerability," a different vulnerability than CVE-2012-1865.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
TA12-164A
third-party-advisory
x_refsource_CERT
oval:org.mitre.oval:def:15496
vdb-entry
signature
x_refsource_OVAL
MS12-041
vendor-advisory
x_refsource_MS
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now