BeyondTrust

Security in Context: The BeyondTrust Blog

Welcome to the Zeroday Tracker: Your Vulnerability Watchlist

Get critical updates on the latest zeroday threats, including impact, mitigation and protection information - only from BeyondTrust.

Microsoft Windows win32k.sys Driver ‘CreateDIBPalette()’ Buffer Overflow

Disclosed August 6, 2010    Fully Patched

Vulnerability Description:

Microsoft Windows Multi-User Win32 Driver (win32k.sys) contains a vulnerability in the "CreateDIBPalette" function when creating DIB palette color values. This could be exploited to overflow the "biClrUsed" field in "BITMAPINFOHEADER" using "GetClipboardData", which would allow local attackers to execute arbitrary code with elevated kernel-level privileges.

Vendors:

Microsoft

Vulnerable Software/Devices:

Windows XP SP3
Server 2003 SP2
Vista SP1, 7
Server 2008 SP2

Vulnerability Severity:

Medium

Exploit Availability:

N/A

BeyondTrust Prevention and Detection:

  • BeyondTrust's Retina® Network Security Scanner scans devices to detect for this vulnerability.
    • Retina Audit 13843 - Microsoft Windows Kernel-Mode Drivers Privilege Escalation (2436673)

Mitigation:

Install the appropriate MS10-098 patch.

Links:

CVE(s):

None

Leave a Reply