CVE-2010-1735 Information

Description

The SfnLOGONNOTIFY function in win32k.sys in the kernel in Microsoft Windows 2000 XP and Server 2003 allows local users to cause a denial of service (system crash) via a 0x4c value in the second argument (aka the Msg argument) of a PostMessage function call for the DDEMLEvent window.

Reference

http://secunia.com/advisories/39456 http://vigilance.fr/vulnerability/Windows-denials-of-service-of-win32k-sys-9607 http://www.securityfocus.com/archive/1/510884/100/0/threaded http://www.securityfocus.com/bid/39630