CVE-2010-4398 - Microsoft Windows Kernel Stack-Based Buffer Overflow Vulnerability
Project:Microsoft
Product:Windows
Date Added:2022-03-28Due Date:2022-04-21
Vulnerability Name
Microsoft Windows Kernel Stack-Based Buffer Overflow Vulnerability
Description
Stack-based buffer overflow in the RtlQueryRegistryValues function in win32k.sys in Microsoft Windows allows local users to gain privileges, and bypass the User Account Control (UAC) feature.
Known To Be Used in Ransomware Campaigns?
Unknown
Action
Apply updates per vendor instructions.
Additional Notes
https://nvd.nist.gov/vuln/detail/CVE-2010-4398