Oval Definition:oval:org.mitre.oval:def:12006
Revision Date:2014-03-03Version:48
Title:Win32k User Input Validation Vulnerability
Description:The Windows kernel-mode drivers in win32k.sys in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, and Windows Server 2008 Gold and SP2 do not properly validate user-mode input passed to kernel mode, which allows local users to gain privileges via a crafted application, aka "Win32k User Input Validation Vulnerability."
Family:windowsClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2010-1896
Platform(s):Microsoft Windows Server 2003
Microsoft Windows Server 2008
Microsoft Windows Vista
Microsoft Windows XP
Product(s):
Definition Synopsis
  • Vulnerable Microsoft Windows XP (x86) SP3
  • Microsoft Windows XP (x86) SP3 is installed
  • AND the version of win32k.sys is less than 5.1.2600.6003
  • OR Vulnerable Microsoft Windows XP x64 SP2, Server 2003 x86/x64/ia64 SP2
  • Windows XP x64 SP2, Server 2003 x86/x64/ia64 SP2
  • Microsoft Windows XP x64 Edition SP2 is installed
  • OR Microsoft Windows Server 2003 SP2 (x64) is installed
  • OR Microsoft Windows Server 2003 SP2 (x86) is installed
  • OR Microsoft Windows Server 2003 (ia64) SP2 is installed
  • AND the version of win32k.sys is less than 5.2.3790.4730
  • OR Vulnerable Microsoft Windows Vista SP1 x86/x64, Server 2008 32bit/x64/ia64
  • Windows Vista SP1 x86/x64, Server 2008 32bit/x64/ia64
  • Microsoft Windows Vista (32-bit) Service Pack 1 is installed
  • OR Microsoft Windows Server 2008 (32-bit) is installed
  • OR Microsoft Windows Vista x64 Edition Service Pack 1 is installed
  • OR Microsoft Windows Server 2008 (64-bit) is installed
  • OR Microsoft Windows Server 2008 (ia-64) is installed
  • AND GDR or LDR Service branch
  • the version of win32k.sys is less than 6.0.6001.18496
  • OR LDR
  • the version of win32k.sys is less than 6.0.6001.22716
  • AND the version of win32k.sys is greater than 6.0.6001.22000
  • OR Vulnerable Microsoft Windows Vista SP2 x86/x64, Server 2008 SP2 32bit/x64/ia64
  • Windows Vista SP2 x86/x64, Server 2008 SP2 32bit/x64/ia64
  • Microsoft Windows Vista (32-bit) Service Pack 2 is installed
  • OR Microsoft Windows Server 2008 x64 Edition Service Pack 2 is installed
  • OR Microsoft Windows Server 2008 (32-bit) Service Pack 2 is installed
  • OR Microsoft Windows Vista x64 Edition Service Pack 2 is installed
  • OR Microsoft Windows Server 2008 Itanium-Based Edition Service Pack 2 is installed
  • AND GDR or LDR Service branch
  • the version of win32k.sys is less than 6.0.6002.18275
  • OR LDR
  • the version of win32k.sys is less than 6.0.6002.22428
  • AND the version of win32k.sys is greater than 6.0.6002.22000
  • BACK