CVE-2010-2549

Name of the Vulnerable Software and Affected Versions Microsoft Windows Vista versions SP1 through SP2 Microsoft Windows Server 2008 versions Gold through SP2

Description The issue is related to a use-after-free vulnerability in kernel-mode drivers, allowing local users to gain privileges or cause a denial of service. This is due to the way the Windows kernel-mode drivers maintain the reference count for an object. An attacker could exploit this to run arbitrary code in kernel mode, potentially installing programs, viewing, changing, or deleting data, or creating new accounts with full user rights. The vulnerability can be triggered by using a large number of calls to the NtUserCheckAccessForIntegrityLevel function, leading to a failure in the LockProcessByClientId function.

Recommendations For Microsoft Windows Vista versions SP1 through SP2, update to a version that includes the fix for this issue. For Microsoft Windows Server 2008 versions Gold through SP2, update to a version that includes the fix for this issue. As a temporary workaround, consider restricting access to the NtUserCheckAccessForIntegrityLevel function to minimize the risk of exploitation.