CVE-2010-0234

Name of the Vulnerable Software and Affected Versions Microsoft Windows 2000 version SP4 Microsoft Windows XP versions SP2 through SP3 Microsoft Windows Server 2003 version SP2 Microsoft Windows Vista versions Gold through SP2 Microsoft Windows Server 2008 versions Gold through SP2

Description A denial of service issue exists due to insufficient validation of registry keys passed to a Windows kernel system call. This allows local users to cause a denial of service, resulting in the system becoming unresponsive and automatically restarting, by running a specially crafted application.

Recommendations For Microsoft Windows 2000 SP4, update to a newer version to mitigate the risk. For Microsoft Windows XP SP2 and SP3, update to a newer version to mitigate the risk. For Microsoft Windows Server 2003 SP2, update to a newer version to mitigate the risk. For Microsoft Windows Vista Gold, SP1, and SP2, update to a newer version to mitigate the risk. For Microsoft Windows Server 2008 Gold and SP2, update to a newer version to mitigate the risk.