Описание
The kernel API in Microsoft Windows Vista SP2 and Windows Server 2008 SP2 does not properly enforce permissions, which allows local users to spoof processes, spoof inter-process communication, or cause a denial of service via a crafted application, aka "Windows Kernel Elevation of Privilege Vulnerability."
Ссылки
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:o:microsoft:windows_server_2008:*:sp2:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_vista:*:sp2:*:*:*:*:*:*
EPSS
Процентиль: 69%
0.00636
Низкий
6.6 Medium
CVSS3
3.6 Low
CVSS2
Дефекты
CWE-264
Связанные уязвимости
CVSS3: 6.6
github
около 3 лет назад
The kernel API in Microsoft Windows Vista SP2 and Windows Server 2008 SP2 does not properly enforce permissions, which allows local users to spoof processes, spoof inter-process communication, or cause a denial of service via a crafted application, aka "Windows Kernel Elevation of Privilege Vulnerability."
EPSS
Процентиль: 69%
0.00636
Низкий
6.6 Medium
CVSS3
3.6 Low
CVSS2
Дефекты
CWE-264