PT-2012-2228 · Microsoft · Windows Vista+5
Joshua J. Drake
·
Published
2012-01-10
·
Updated
2023-12-07
·
CVE-2012-0001
CVSS v2.0
9.3
High
| Vector | AV:N/AC:M/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
Windows XP version SP2
Windows Server 2003 version SP2
Windows Vista version SP2
Windows Server 2008 version SP2, R2, and R2 SP1
Windows 7 versions Gold and SP1
Description
A security feature bypass issue exists due to the improper loading of structured exception handling tables by the kernel. This allows attackers to bypass the SafeSEH security feature, potentially facilitating the exploitation of other vulnerabilities.
Recommendations
For Windows XP SP2, update to a newer version to mitigate the risk.
For Windows Server 2003 SP2, update to a newer version to mitigate the risk.
For Windows Vista SP2, update to a newer version to mitigate the risk.
For Windows Server 2008 SP2, R2, and R2 SP1, update to a newer version to mitigate the risk.
For Windows 7 Gold and SP1, update to a newer version to mitigate the risk.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Windows
Windows 7
Windows Server 2003
Windows Server 2008
Windows Vista
Windows Xp