cve/2010/CVE-2010-1895.md

CVE-2010-1895

Description

The Windows kernel-mode drivers in win32k.sys in Microsoft Windows XP SP2 and SP3, and Windows Server 2003 SP2, do not properly perform memory allocation before copying user-mode data to kernel mode, which allows local users to gain privileges via a crafted application, aka "Win32k Pool Overflow Vulnerability."

POC

Reference

• https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-048

Github

No PoCs found on GitHub currently.