CVE-2011-1985

Name of the Vulnerable Software and Affected Versions Windows XP versions SP2 and SP3 Windows Server 2003 version SP2 Windows Vista version SP2 Windows Server 2008 versions SP2, R2, and R2 SP1 Windows 7 versions Gold and SP1

Description The issue arises from improper validation of user-mode input by the win32k.sys kernel-mode driver in Windows, allowing local users to potentially gain privileges or cause a denial of service through a crafted application. This could lead to a NULL pointer dereference and system crash. An attacker could exploit this to run arbitrary code in kernel mode, gaining complete control of the affected system, and then install programs, view, change, or delete data, or create new accounts with full administrative rights.

Recommendations For Windows XP versions SP2 and SP3, update to a newer version to mitigate the risk. For Windows Server 2003 version SP2, update to a newer version to mitigate the risk. For Windows Vista version SP2, update to a newer version to mitigate the risk. For Windows Server 2008 versions SP2, R2, and R2 SP1, update to a newer version to mitigate the risk. For Windows 7 versions Gold and SP1, update to a newer version to mitigate the risk.