CVE-2010-2555 Information

Description

The Tracing Feature for Services in Microsoft Windows Vista SP1 and SP2 Windows Server 2008 Gold SP2 and R2 and Windows 7 does not properly determine the length of strings in the registry which allows local users to gain privileges or cause a denial of service (memory corruption) via vectors involving a long string aka \Tracing Memory Corruption Vulnerability.\

Reference

http://www.us-cert.gov/cas/techalerts/TA10-222A.html https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-059 https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A11426