CVE Reference: CVE-2011-2005

NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE:
CVE-2011-2005

Description:
afd.sys in the Ancillary Function Driver in Microsoft Windows XP SP2 and SP3 and Server 2003 SP2 does not properly validate user-mode input passed to kernel mode, which allows local users to gain privileges via a crafted application, aka "Ancillary Function Driver Elevation of Privilege Vulnerability."

CVE Status:
Candidate

References:

OVAL
  http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:13114

MS
  http://technet.microsoft.com/en-us/security/bulletin/MS11-080


Return to the previous page.