NVD

Id
8766  
Name
CVE-2011-1886  
Description
win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP3 does not properly validate the arguments to functions, which allows local users to read arbitrary data from kernel memory via a crafted application that triggers a NULL pointer dereference, aka "Win32k Incorrect Parameter Validation Allows Information Disclosure Vulnerability."  
Reject
 
CVSS Version
2  
CVSS Score
2.1  
Severity
Low  
CVSS Base Score
2.1  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
3.9  
CVSS Vector
(AV:L/AC:L/Au:N/C:P/I:N/A:N)  
Pub Date
2017-01-07  
Published
2011-07-13  
Modified Date
2011-10-04  
Seq
2011-1886  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
50548 8766 CVE-2011-1886 oval:org.mitre.oval:def:12778  View
50549 8766 CVE-2011-1886 http://support.avaya.com/css/P8/documents/100144947  View
50550 8766 CVE-2011-1886 MS11-054  View
50551 8766 CVE-2011-1886 48607  View
50552 8766 CVE-2011-1886 1025761  View
50553 8766 CVE-2011-1886 TA11-193A  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
31674 JVNDB-2011-001914 Microsoft Windows XP の win32k.sys における任意のデータを読まれる脆弱性 Microsoft Windows XP の kernel-mode ドライバ内にある win32k.sys は、関数の引数を適切にチェックしないため、カーネルメモリより任意のデータを読まれる脆弱性が存在します。 CVE-2011-1886 49793 CVE-2011-1886 8766 2.1 http://jvndb.jvn.jp/ja/contents/2011/JVNDB-2011-001914.html 2011-07-12 2011-07-22 View