CVE-2010-0485 Information

Description

The Windows kernel-mode drivers in win32k.sys in Microsoft Windows 2000 SP4 XP SP2 and SP3 Server 2003 SP2 Vista SP1 and SP2 Server 2008 Gold and SP2 Windows 7 and Server 2008 R2 \do not properly validate all callback parameters when creating a new window\ which allows local users to execute arbitrary code aka \Win32k Window Creation Vulnerability.\

Reference

http://www.opera.com/support/kb/view/954/ http://www.us-cert.gov/cas/techalerts/TA10-159B.html https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-032 https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A6948