Windows Kernel Integer Truncation Vulnerability
CVE-2011-0045 · HIGH Severity
AV:L/AC:L/AU:N/C:C/I:C/A:C
The Trace Events functionality in the kernel in Microsoft Windows XP SP3 does not properly perform type conversion, which causes integer truncation and insufficient memory allocation and triggers a buffer overflow, which allows local users to gain privileges via a crafted application, related to WmiTraceMessageVa, aka "Windows Kernel Integer Truncation Vulnerability."
Learn more about our User Device Pen Test.