Vulnerability CVE-2013-1283

See in [MITRE] [NVD]

Search:
WLB2

Vulnerability CVE-2013-1283


Published: 2013-04-09   Modified: 2013-04-10

Description:
Race condition in win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, Windows 7 Gold and SP1, Windows 8, Windows Server 2012, and Windows RT allows local users to gain privileges via a crafted application that leverages improper handling of objects in memory, aka "Win32k Race Condition Vulnerability."

Vendor: Microsoft
Product: Windows server 2008 
Version: r2;
Product: Windows 7 
Product: Windows server 2003 
Product: Windows vista 
Product: Windows xp 
Product: Windows 8 
Product: Windows rt 
Product: Windows server 2012 

CVSS2 => (AV:L/AC:M/Au:N/C:C/I:C/A:C)

CVSS Base Score
Impact Subscore
Exploitability Subscore
6.9/10
10/10
3.4/10
Exploit range
Attack complexity
Authentication
Local
Medium
No required
Confidentiality impact
Integrity impact
Availability impact
Complete
Complete
Complete

Related CVE
[ CVE-2014-8967 ]
Use-after-free vulnerability in Microsoft Internet Explorer allows remote attackers to exec...
[ CVE-2014-9165 ]
Use-after-free vulnerability in Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x befor...
[ CVE-2014-9159 ]
Heap-based buffer overflow in Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before ...
[ CVE-2014-9158 ]
Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows and OS X al...
[ CVE-2014-8966 ]
Microsoft Internet Explorer 6 through 8 allows remote attackers to execute arbitrary code o...
[ CVE-2014-8461 ]
Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows and OS X al...
[ CVE-2014-8460 ]
Heap-based buffer overflow in Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before ...
[ CVE-2014-8459 ]
Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows and OS X al...
[ CVE-2014-8458 ]
Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows and OS X al...
[ CVE-2014-8457 ]
Heap-based buffer overflow in Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before ...

References:
http://technet.microsoft.com/security/bulletin/MS13-036
Copyright 2014, cxsecurity.com