Security Advisory

CVE-2013-3899

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2013-12-11 00:00:00

Last updated 2024-08-06 16:22:01

Assigner microsoft

State PUBLISHED

Description

win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3 and Server 2003 SP2 does not properly validate addresses, which allows local users to gain privileges via a crafted application, aka "Win32k Memory Corruption Vulnerability."

← Browse all CVEs View on cve.org ↗