CVE-2010-1893

Name of the Vulnerable Software and Affected Versions Microsoft Windows versions prior to the fixed version

Description The issue is related to an integer overflow in the TCP/IP stack, allowing local users to gain privileges. It is also described as an elevation of privilege vulnerability in TCP/IP processing due to an error in processing a specific input buffer. This could allow an attacker to run arbitrary code with system-level privileges, enabling them to install programs, view, change, or delete data, or create new accounts with full user rights.

Recommendations For Microsoft Windows Vista SP1, Windows Server 2008 Gold and R2, and Windows 7, update to a version that includes the fix for the integer overflow in the TCP/IP stack. For other affected versions of Microsoft Windows, apply the necessary patch or update to resolve the elevation of privilege vulnerability in TCP/IP processing.