New Search

win32k Incorrect Parameter Validation Allows Information Disclosure Vulnerability (CVE-2011-1886)

oval:org.mitre.oval:def:12778

win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP3 does not properly validate the arguments to functions which allows local users to read arbitrary data from kernel memory via a crafted application that triggers a NULL pointer dereference aka "Win32k Incorrect Parameter Validation Allows Information Disclosure Vulnerability."

Family:
windows
Status:
ACCEPTED
Platform(s):
  • Microsoft Windows XP
Class:
vulnerability
Reference(s):
  • CVE-2011-1886
Product(s):