NVD

Id
14183  
Name
CVE-2010-2739  
Description
Buffer overflow in the CreateDIBPalette function in win32k.sys in Microsoft Windows XP SP3, Server 2003 R2 Enterprise SP2, Vista Business SP1, Windows 7, and Server 2008 SP2 allows local users to cause a denial of service (crash) and possibly execute arbitrary code by performing a clipboard operation (GetClipboardData API function) with a crafted bitmap with a palette that contains a large number of colors.  
Reject
 
CVSS Version
2  
CVSS Score
7.2  
Severity
High  
CVSS Base Score
7.2  
CVSS Impact Subscore
10  
CVSS Exploit Subscore
3.9  
CVSS Vector
(AV:L/AC:L/Au:N/C:C/I:C/A:C)  
Pub Date
2017-01-18  
Published
2010-09-07  
Modified Date
2010-09-08  
Seq
2010-2739  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
78373 14183 CVE-2010-2739 http://blogs.technet.com/b/msrc/archive/2010/08/10/update-on-the-publicly-disclosed-win32k-sys-eop-vulnerability.aspx  View
78374 14183 CVE-2010-2739 http://www.ragestorm.net/blogs/?p=255  View
78375 14183 CVE-2010-2739 ADV-2010-2029  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
37823 JVNDB-2010-003608 複数の Windows 製品の CreateDIBPalette 関数におけるバッファオーバーフローの脆弱性 Microsoft Windows XP SP3、Server 2003 R2 Enterprise SP2、Vista Business SP1、Windows 7、および Server 2008 SP2 には、バッファオーバーフローの脆弱性が存在します。 CVE-2010-2739 45319 CVE-2010-2739 14183 7.2 http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-003608.html 2010-09-07 2012-04-03 View