Windows Kernel Integer Truncation Vulnerability

Windows Kernel Integer Truncation Vulnerability

CVE-2011-0045 · HIGH Severity

AV:L/AC:L/AU:N/C:C/I:C/A:C

The Trace Events functionality in the kernel in Microsoft Windows XP SP3 does not properly perform type conversion, which causes integer truncation and insufficient memory allocation and triggers a buffer overflow, which allows local users to gain privileges via a crafted application, related to WmiTraceMessageVa, aka "Windows Kernel Integer Truncation Vulnerability."

Learn more about our User Device Pen Test.