Does anyone have experience with this vulnerability? I know that this is a "zero day" vulnerability, Microsoft has yet to release a patch. But what can we do about it?
(severity 3) Microsoft Windows win32k.sys Local Kernel Denial of Service Vulnerability - Zero Day
CVE ID: CVE-2010-1734
Vendor Reference: -
Bugtraq ID: 39631
Service Modified: 04/22/2010
User Modified: -
PCI Vuln: No
Windows kernel is the core of the operating system. It provides system level services such as device management and memory management,allocates processor time to processes, and manages error handling.
Windows kernel is exposed to a denial of service vulnerability caused by an error in the Win32k.sys file. Specifically, the SfnINSTRING function is
Microsoft Windows 2000, XP and 2003 32bit Operating Systems.
Successfully exploiting this vulnerability might allow a local attacker to cause denial-of-service.
There are no vendor supplied patches available at this time.
Description: Windows 2000/XP/2003 win32k.sys SfnINSTRING local kernel Denial of Service Vulnerability - The Exploit-DB Ref : 12337
There is no malware information for this vulnerability.
Microsoft Windows win32k.sys local kernel Denial of Service (BSoD) Vulnerability