ByteOS Network

Vulnerability Details :

CVE-2011-0662

Assigner Org ID-f38d906d-7342-40ea-92c1-6c4a2c6478c8

Published At-13 Apr, 2011 | 18:00

Updated At-06 Aug, 2024 | 21:58

Use-after-free vulnerability in win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 allows local users to gain privileges via a crafted application that leverages incorrect driver object management, a different vulnerability than other "Vulnerability Type 1" CVEs listed in MS11-034, aka "Win32k Use After Free Vulnerability."

EPSS History

Score

Latest Score

N/A

Percentile

Latest Percentile

N/A

▼Common Vulnerabilities and Exposures (CVE)

cve.org

Assigner:microsoft

Assigner Org ID:f38d906d-7342-40ea-92c1-6c4a2c6478c8

Published At:13 Apr, 2011 | 18:00

Updated At:06 Aug, 2024 | 21:58

▼CVE Numbering Authority (CNA)

Affected Products

Vendor

n/a

Product

n/a

Versions

Affected

Problem Types

Type	CWE ID	Description
text	N/A	n/a

Type: text

CWE ID: N/A

Description: n/a

References

Hyperlink	Resource
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12543	vdb-entry signature x_refsource_OVAL
http://www.us-cert.gov/cas/techalerts/TA11-102A.html	third-party-advisory x_refsource_CERT
http://osvdb.org/71740	vdb-entry x_refsource_OSVDB
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2011/ms11-034	vendor-advisory x_refsource_MS
http://www.securityfocus.com/bid/47194	vdb-entry x_refsource_BID
http://www.vupen.com/english/advisories/2011/0952	vdb-entry x_refsource_VUPEN
http://support.avaya.com/css/P8/documents/100133352	x_refsource_CONFIRM
https://exchange.xforce.ibmcloud.com/vulnerabilities/66395	vdb-entry x_refsource_XF
http://secunia.com/advisories/44156	third-party-advisory x_refsource_SECUNIA
http://blogs.technet.com/b/srd/archive/2011/04/12/ms11-034-addressing-vulnerabilities-in-the-win32k-subsystem.aspx	x_refsource_MISC
http://www.securitytracker.com/id?1025345	vdb-entry x_refsource_SECTRACK

Hyperlink: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12543

Resource:

vdb-entry

signature

x_refsource_OVAL

Hyperlink: http://www.us-cert.gov/cas/techalerts/TA11-102A.html

Resource:

third-party-advisory

x_refsource_CERT

Hyperlink: http://osvdb.org/71740

Resource:

vdb-entry

x_refsource_OSVDB

Hyperlink: https://docs.microsoft.com/en-us/security-updates/securitybulletins/2011/ms11-034

Resource:

vendor-advisory

x_refsource_MS

Hyperlink: http://www.securityfocus.com/bid/47194

Resource:

vdb-entry

x_refsource_BID

Hyperlink: http://www.vupen.com/english/advisories/2011/0952

Resource:

vdb-entry

x_refsource_VUPEN

Hyperlink: http://support.avaya.com/css/P8/documents/100133352

Resource:

x_refsource_CONFIRM

Hyperlink: https://exchange.xforce.ibmcloud.com/vulnerabilities/66395

Resource:

vdb-entry

x_refsource_XF

Hyperlink: http://secunia.com/advisories/44156

Resource:

third-party-advisory

x_refsource_SECUNIA

Hyperlink: http://blogs.technet.com/b/srd/archive/2011/04/12/ms11-034-addressing-vulnerabilities-in-the-win32k-subsystem.aspx

Resource:

x_refsource_MISC

Hyperlink: http://www.securitytracker.com/id?1025345

Resource:

vdb-entry

x_refsource_SECTRACK

▼Authorized Data Publishers (ADP)

CVE Program Container

References

Hyperlink	Resource
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12543	vdb-entry signature x_refsource_OVAL x_transferred
http://www.us-cert.gov/cas/techalerts/TA11-102A.html	third-party-advisory x_refsource_CERT x_transferred
http://osvdb.org/71740	vdb-entry x_refsource_OSVDB x_transferred
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2011/ms11-034	vendor-advisory x_refsource_MS x_transferred
http://www.securityfocus.com/bid/47194	vdb-entry x_refsource_BID x_transferred
http://www.vupen.com/english/advisories/2011/0952	vdb-entry x_refsource_VUPEN x_transferred
http://support.avaya.com/css/P8/documents/100133352	x_refsource_CONFIRM x_transferred
https://exchange.xforce.ibmcloud.com/vulnerabilities/66395	vdb-entry x_refsource_XF x_transferred
http://secunia.com/advisories/44156	third-party-advisory x_refsource_SECUNIA x_transferred
http://blogs.technet.com/b/srd/archive/2011/04/12/ms11-034-addressing-vulnerabilities-in-the-win32k-subsystem.aspx	x_refsource_MISC x_transferred
http://www.securitytracker.com/id?1025345	vdb-entry x_refsource_SECTRACK x_transferred

Hyperlink: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12543

Resource:

vdb-entry

signature

x_refsource_OVAL

x_transferred

Hyperlink: http://www.us-cert.gov/cas/techalerts/TA11-102A.html

Resource:

third-party-advisory

x_refsource_CERT

x_transferred

Hyperlink: http://osvdb.org/71740

Resource:

vdb-entry

x_refsource_OSVDB

x_transferred

Hyperlink: https://docs.microsoft.com/en-us/security-updates/securitybulletins/2011/ms11-034

Resource:

vendor-advisory

x_refsource_MS

x_transferred

Hyperlink: http://www.securityfocus.com/bid/47194

Resource:

vdb-entry

x_refsource_BID

x_transferred

Hyperlink: http://www.vupen.com/english/advisories/2011/0952

Resource:

vdb-entry

x_refsource_VUPEN

x_transferred

Hyperlink: http://support.avaya.com/css/P8/documents/100133352

Resource:

x_refsource_CONFIRM

x_transferred

Hyperlink: https://exchange.xforce.ibmcloud.com/vulnerabilities/66395

Resource:

vdb-entry

x_refsource_XF

x_transferred

Hyperlink: http://secunia.com/advisories/44156

Resource:

third-party-advisory

x_refsource_SECUNIA

x_transferred

Hyperlink: http://blogs.technet.com/b/srd/archive/2011/04/12/ms11-034-addressing-vulnerabilities-in-the-win32k-subsystem.aspx

Resource:

x_refsource_MISC

x_transferred

Hyperlink: http://www.securitytracker.com/id?1025345

Resource:

vdb-entry

x_refsource_SECTRACK

x_transferred

▼National Vulnerability Database (NVD)

nvd.nist.gov

Source:secure@microsoft.com

Published At:13 Apr, 2011 | 18:55

Updated At:11 Apr, 2025 | 00:51

Date Added	Due Date	Vulnerability Name	Required Action
	N/A

Metrics

Type	Version	Base score	Base severity	Vector
Primary	2.0	7.2	HIGH	AV:L/AC:L/Au:N/C:C/I:C/A:C

Type: Primary

Version: 2.0

Base score: 7.2

Base severity: HIGH

Vector:

AV:L/AC:L/Au:N/C:C/I:C/A:C

Hyperlink	Source	Resource
http://blogs.technet.com/b/srd/archive/2011/04/12/ms11-034-addressing-vulnerabilities-in-the-win32k-subsystem.aspx	secure@microsoft.com	N/A
http://osvdb.org/71740	secure@microsoft.com	N/A
http://secunia.com/advisories/44156	secure@microsoft.com	N/A
http://support.avaya.com/css/P8/documents/100133352	secure@microsoft.com	N/A
http://www.securityfocus.com/bid/47194	secure@microsoft.com	N/A
http://www.securitytracker.com/id?1025345	secure@microsoft.com	N/A
http://www.us-cert.gov/cas/techalerts/TA11-102A.html	secure@microsoft.com	US Government Resource
http://www.vupen.com/english/advisories/2011/0952	secure@microsoft.com	N/A
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2011/ms11-034	secure@microsoft.com	N/A
https://exchange.xforce.ibmcloud.com/vulnerabilities/66395	secure@microsoft.com	N/A
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12543	secure@microsoft.com	N/A
http://blogs.technet.com/b/srd/archive/2011/04/12/ms11-034-addressing-vulnerabilities-in-the-win32k-subsystem.aspx	af854a3a-2127-422b-91ae-364da2661108	N/A
http://osvdb.org/71740	af854a3a-2127-422b-91ae-364da2661108	N/A
http://secunia.com/advisories/44156	af854a3a-2127-422b-91ae-364da2661108	N/A
http://support.avaya.com/css/P8/documents/100133352	af854a3a-2127-422b-91ae-364da2661108	N/A
http://www.securityfocus.com/bid/47194	af854a3a-2127-422b-91ae-364da2661108	N/A
http://www.securitytracker.com/id?1025345	af854a3a-2127-422b-91ae-364da2661108	N/A
http://www.us-cert.gov/cas/techalerts/TA11-102A.html	af854a3a-2127-422b-91ae-364da2661108	US Government Resource
http://www.vupen.com/english/advisories/2011/0952	af854a3a-2127-422b-91ae-364da2661108	N/A
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2011/ms11-034	af854a3a-2127-422b-91ae-364da2661108	N/A
https://exchange.xforce.ibmcloud.com/vulnerabilities/66395	af854a3a-2127-422b-91ae-364da2661108	N/A
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12543	af854a3a-2127-422b-91ae-364da2661108	N/A

CVE-2011-0662

Credits

Vendors

Products

Metrics (CVSS)

Weaknesses

Attack Patterns

Solution/Workaround

References

EPSS History

Score

Latest Score

N/A

Percentile

Latest Percentile

N/A

Stakeholder-Specific Vulnerability Categorization (SSVC)

Affected Products

Affected

Problem Types

Metrics

Metrics Other Info

Impacts

Solutions

Configurations

Workarounds

Exploits

Credits

Timeline

Replaced By

Rejected Reason

References

Affected Products

Metrics

Metrics Other Info

Impacts

Solutions

Configurations

Workarounds

Exploits

Credits

Timeline

Replaced By

Rejected Reason

References

CISA Catalog

Metrics

CPE Matches

Weaknesses

Evaluator Description

Evaluator Impact

Evaluator Solution

Vendor Statements

References

Change History

Similar CVEs