The kernel API in Microsoft Windows Vista SP2 and Windows Server 2008 SP2 does not properly enforce permissions, which allows local users to spoof processes, spoof inter-process communication, or cause a denial of service via a crafted application, aka "Windows Kernel Elevation of Privilege Vulnerability."
References
Configurations
Configuration 1 (hide)
|
Information
Published : 2016-09-14 03:59
Updated : 2018-10-12 15:12
NVD link : CVE-2016-3372
Mitre link : CVE-2016-3372
JSON object : View
CWE
CWE-264
Permissions, Privileges, and Access Controls
Products Affected
microsoft
- windows_server_2008
- windows_vista