New Search

CSRSS Memory Corruption Vulnerability - MS13-033

oval:org.mitre.oval:def:16260

The Client/Server Run-time Subsystem (CSRSS) in Microsoft Windows XP SP2 and SP3 Server 2003 SP2 Vista SP2 and Server 2008 SP2 does not properly handle objects in memory which allows local users to gain privileges via a crafted application aka "CSRSS Memory Corruption Vulnerability."

Family:
windows
Status:
ACCEPTED
Platform(s):
  • Microsoft Windows Server 2008
  • Microsoft Windows Server 2003
  • Microsoft Windows Vista
  • Microsoft Windows XP
Class:
vulnerability
Reference(s):
  • CVE-2013-1295
Product(s):