AnsweredAssumed Answered

Microsoft Windows win32k.sys Local Kernel Denial of Service Vulnerability - Zero Day

Question asked by zentiva on Apr 21, 2011
Latest reply on Apr 25, 2011 by qualyschris

Hello,


Does anyone have experience with this vulnerability? I know that this is a "zero day" vulnerability, Microsoft has yet to release a patch. But what can we do about it?


M.

 

(severity 3) Microsoft Windows win32k.sys Local Kernel Denial of Service Vulnerability - Zero Day

 

QID: 90599

Category: Windows

CVE ID: CVE-2010-1734

Vendor Reference: -

Bugtraq ID: 39631

Service Modified: 04/22/2010

User Modified: -

Edited: No

PCI Vuln: No

 

THREAT:

Windows kernel is the core of the operating system. It provides system level services such as device management and memory management,allocates processor time to processes, and manages error handling.

Windows kernel is exposed to a denial of service vulnerability caused by an error in the Win32k.sys file. Specifically, the SfnINSTRING function is

affected.

 

Affected Versions:

Microsoft Windows 2000, XP and 2003 32bit Operating Systems.

 

IMPACT:

Successfully exploiting this vulnerability might allow a local attacker to cause denial-of-service.

 

SOLUTION:

There are no vendor supplied patches available at this time.

 

COMPLIANCE:

Not Applicable

 

EXPLOITABILITY:

     The Exploit-DB

          Reference: CVE-2010-1734

          Description: Windows 2000/XP/2003 win32k.sys SfnINSTRING local kernel Denial of Service Vulnerability - The Exploit-DB Ref : 12337

          Link: http://www.exploit-db.com/exploits/12337


ASSOCIATED MALWARE:

There is no malware information for this vulnerability.

 

RESULTS:

Microsoft Windows win32k.sys local kernel Denial of Service (BSoD) Vulnerability

Outcomes