Microsoft Windows Kernel 'Win32k.sys' CVE-2013-3660 Local Privilege Escalation Vulnerability

Microsoft Windows is prone to a local privilege-escalation vulnerability in the 'Win32k.sys' file.

Note: Theoretically, this issue can be exploited remotely to execute arbitrary code. However, since the remote attack vector is not likely due to memory randomization.

A local attacker can exploit this issue to execute arbitrary code with kernel-level privileges. Successful exploits will result in the complete compromise of the affected computers. Failed exploit attempts may cause a denial-of-service condition.


 

Privacy Statement
Copyright 2010, SecurityFocus