CVE-2010-1887

Name of the Vulnerable Software and Affected Versions Microsoft Windows XP versions SP2 through SP3 Microsoft Windows Server 2003 version SP2 Microsoft Windows Vista versions SP1 through SP2 Microsoft Windows Server 2008 versions Gold through SP2 and R2 Microsoft Windows 7

Description The issue is related to the improper validation of an unspecified system-call argument in the Windows kernel-mode drivers, which can cause a denial of service. This can be exploited by running a specially crafted application, leading to the system becoming unresponsive and potentially restarting.

Recommendations For Microsoft Windows XP versions SP2 and SP3, update to a version that properly validates system-call arguments to prevent denial of service. For Microsoft Windows Server 2003 version SP2, apply a patch that fixes the improper validation of system-call arguments. For Microsoft Windows Vista versions SP1 and SP2, install an update that corrects the issue with system-call argument validation. For Microsoft Windows Server 2008 versions Gold, SP2, and R2, apply a fix that properly validates system-call arguments to prevent system hangs. For Microsoft Windows 7, update to a version that includes the fix for the improper validation of system-call arguments.