CVE-2012-1868

Name of the Vulnerable Software and Affected Versions Microsoft Windows XP SP3

Description The issue is related to a race condition in the thread-creation implementation in the Windows kernel, specifically in win32k.sys. This allows local users to gain privileges via a crafted application. An elevation of privilege vulnerability exists due to the way the kernel handles specific thread creation attempts, potentially enabling an attacker to run arbitrary code in kernel mode. This could lead to the installation of programs, viewing, changing, or deleting data, or creating new accounts with full administrative rights.

Recommendations For Microsoft Windows XP SP3, consider applying security patches or updates that address the kernel-mode drivers issue, specifically the win32k.sys race condition, to prevent privilege escalation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.