New Search

CSRSS Local Elevation of Privilege Vulnerability

oval:org.mitre.oval:def:7536

The Client/Server Runtime Subsystem (aka CSRSS) in the Win32 subsystem in Microsoft Windows XP SP2 and SP3 and Server 2003 SP2 when a Chinese Japanese or Korean locale is enabled does not properly allocate memory for transactions which allows local users to gain privileges via a crafted application aka "CSRSS Local Elevation of Privilege Vulnerability."

Family:
windows
Status:
ACCEPTED
Platform(s):
  • Microsoft Windows Server 2003
  • Microsoft Windows XP
Class:
vulnerability
Reference(s):
  • CVE-2010-1891
Product(s):