Vulnerability Details CVE-2010-3963
Buffer overflow in the Routing and Remote Access NDProxy component in the kernel in Microsoft Windows XP SP2 and SP3 and Server 2003 SP2 allows local users to gain privileges via a crafted application, related to the Routing and Remote Access service (RRAS) and improper copying from user mode to the kernel, aka "Kernel NDProxy Buffer Overflow Vulnerability."
Exploit prediction scoring system (EPSS) score
EPSS Score 0.007
EPSS Ranking 71.8%
CVSS Severity
CVSS v2 Score 7.2
References
- http://osvdb.org/69823
- http://secunia.com/advisories/42613
- http://www.securityfocus.com/bid/45269
- http://www.securitytracker.com/id?1024881
- http://www.us-cert.gov/cas/techalerts/TA10-348A.html
- http://www.vupen.com/english/advisories/2010/3221
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-099
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12461
- http://osvdb.org/69823
- http://secunia.com/advisories/42613
- http://www.securityfocus.com/bid/45269
- http://www.securitytracker.com/id?1024881
- http://www.us-cert.gov/cas/techalerts/TA10-348A.html
- http://www.vupen.com/english/advisories/2010/3221
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-099
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12461
Products affected by CVE-2010-3963
-
cpe:2.3:o:microsoft:windows_2003_server:-
-
cpe:2.3:o:microsoft:windows_server_2003:-
-
cpe:2.3:o:microsoft:windows_server_2003:r2
-
cpe:2.3:o:microsoft:windows_xp:-
-
cpe:2.3:o:microsoft:windows_xp:unknown