Microsoft Windows Kernel Mode Drivers Multiple Vulnerabilities ( 13 October 2010 )

Last Update Date: 28 Jan 2011 Release Date: 13 Oct 2010 5230 Views

RISK: Medium Risk

1. Win32k Reference Count Vulnerability

An elevation of privilege vulnerability exists due to the way that the Windows kernel-mode drivers maintain the reference count for an object. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.

2. Win32k Keyboard Layout Vulnerability

An elevation of privilege vulnerability exists due to the way that the Windows kernel-mode drivers load specific keyboard layouts. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.

3. Win32k Window Class Vulnerability

An elevation of privilege vulnerability exists when the Windows kernel-mode drivers do not properly validate window class data. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.

Impact

Elevation of Privilege

System / Technologies affected

Windows XP
Windows Server 2003
Windows Vista
Windows Server 2008
Windows 7
Windows Server 2008 R2

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.
Download locations for this patch

Microsoft Windows Kernel Mode Drivers Multiple Vulnerabilities ( 13 October 2010 )

Impact

System / Technologies affected

Solutions

Vulnerability Identifier

Source

Related Link