Vulnerability Manager Plus

ms11-011: vulnerabilities in windows kernel could allow elevation of privilege for Windows Vista (KB2393802) x86 based systems for SP2

Risk Information

Base Score

7.8

MODERATE

Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

EPSS Score

Exploitation Probability

11.997%

CVE Information

Source CVE
CVE-2010-4398

Associated CVE
CVE-2010-4398
CVE-2011-0045

Patch Details

Patch associated with this vulnerability is supported by ManageEngine.

Patch ID
9804

Patch Description
Security Update for Windows Vista (KB2393802)

References

http://isc.sans.edu/diary.html?storyid=9988
http://nakedsecurity.sophos.com/2010/11/25/new-windows-zero-day-flaw-bypasses-uac/
http://osvdb.org/70823
http://secunia.com/advisories/42356
http://securityreason.com/securityalert/8110
http://support.avaya.com/css/P8/documents/100127248
http://twitter.com/msftsecresponse/statuses/7590788200402945
http://www.exploit-db.com/exploits/15609/
http://www.kb.cert.org/vuls/id/529673
http://www.microsoft.com/technet/security/Bulletin/MS11-011.mspx
http://www.securityfocus.com/archive/1/archive/1/516276/100/0/threaded
http://www.securityfocus.com/bid/45045
http://www.securityfocus.com/bid/46136
http://www.securitytracker.com/id?1025046
http://www.vupen.com/english/advisories/2011/0324
http://www.zerodayinitiative.com/advisories/ZDI-11-064
https://exchange.xforce.ibmcloud.com/vulnerabilities/64926