New Search

Windows Kernel Integer Truncation Vulnerability

oval:org.mitre.oval:def:11996

The Trace Events functionality in the kernel in Microsoft Windows XP SP3 does not properly perform type conversion which causes integer truncation and insufficient memory allocation and triggers a buffer overflow which allows local users to gain privileges via a crafted application related to WmiTraceMessageVa aka "Windows Kernel Integer Truncation Vulnerability."

Family:
windows
Status:
ACCEPTED
Platform(s):
  • Microsoft Windows XP
Class:
vulnerability
Reference(s):
  • CVE-2011-0045
Product(s):