CVE-2013-3902

Name of the Vulnerable Software and Affected Versions Microsoft Windows Server 2008 R2 SP1 Microsoft Windows 7 SP1

Description The issue is caused by improper handling of objects in memory by the Windows kernel, allowing local users to gain privileges via a crafted application. This could enable an attacker to execute arbitrary code in kernel mode, potentially leading to the installation of programs, viewing, changing, or deleting data, or creating new accounts with full administrative rights.

Recommendations For Microsoft Windows Server 2008 R2 SP1, update to a version that includes the fix for this issue. For Microsoft Windows 7 SP1, update to a version that includes the fix for this issue. As a temporary workaround, consider restricting access to the win32k.sys driver to minimize the risk of exploitation.