What is the severity of CVE-2010-3941?

CVE-2010-3941 is considered a high-severity vulnerability that allows local users to escalate privileges on affected systems.

How do I fix CVE-2010-3941?

To fix CVE-2010-3941, apply the latest security updates provided by Microsoft for affected Windows operating systems.

Which systems are affected by CVE-2010-3941?

CVE-2010-3941 affects Microsoft Windows XP, Windows Vista, Windows 7, Windows Server 2003, and Windows Server 2008.

What type of vulnerability is CVE-2010-3941?

CVE-2010-3941 is a double free vulnerability found in the win32k.sys driver.

Can CVE-2010-3941 be exploited remotely?

CVE-2010-3941 requires local access to the vulnerable system to be exploited.

Vulnerability/
CVE-2010-3941

high

8.4

CWE

399 415

16/12/2010

17/10/2024

CVE-2010-3941: Double Free

First published: Thu Dec 16 2010(Updated: )

Double free vulnerability in win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 Gold and SP2, and Windows 7 allows local users to gain privileges via a crafted application, aka "Win32k Double Free Vulnerability."

Credit: secure@microsoft.com secure@microsoft.com

Affected Software	Affected Version	How to fix
Microsoft Windows 2003 Server	=sp2
Microsoft Windows 2003 Server	=sp2
Microsoft Windows 7
Microsoft Windows 7
Microsoft Windows Server 2003	=sp2
Microsoft Windows Server 2008 Itanium
Microsoft Windows Server 2008 Itanium
Microsoft Windows Server 2008 Itanium
Microsoft Windows Server 2008 Itanium	=sp2
Microsoft Windows Server 2008 Itanium	=sp2
Microsoft Windows Server 2008 Itanium	=sp2
Microsoft Windows Vista	=sp1
Microsoft Windows Vista	=sp2
Microsoft Windows Vista	=sp1
Microsoft Windows XP	=sp3
Microsoft Windows XP	=sp2
Microsoft Windows Vista	=sp1
Microsoft Windows Vista	=sp2

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2010-3941?
CVE-2010-3941 is considered a high-severity vulnerability that allows local users to escalate privileges on affected systems.
How do I fix CVE-2010-3941?
To fix CVE-2010-3941, apply the latest security updates provided by Microsoft for affected Windows operating systems.
Which systems are affected by CVE-2010-3941?
CVE-2010-3941 affects Microsoft Windows XP, Windows Vista, Windows 7, Windows Server 2003, and Windows Server 2008.
What type of vulnerability is CVE-2010-3941?
CVE-2010-3941 is a double free vulnerability found in the win32k.sys driver.
Can CVE-2010-3941 be exploited remotely?
CVE-2010-3941 requires local access to the vulnerable system to be exploited.

agent/references
agent/author
agent/type
agent/softwarecombine
agent/weakness
agent/description
agent/first-publish-date
agent/event
collector/mitre-cve
source/MITRE
agent/severity
agent/last-modified-date
agent/source
agent/tags
collector/nvd-api
source/NVD
agent/software-canonical-lookup
agent/software-canonical-lookup-request
collector/nvd-index
collector/nvd-historical
vendor/microsoft
canonical/microsoft windows 2003 server
version/microsoft windows 2003 server/sp2
canonical/microsoft windows 7
canonical/microsoft windows server 2003
version/microsoft windows server 2003/sp2
canonical/microsoft windows server 2008 itanium
version/microsoft windows server 2008 itanium/sp2
canonical/microsoft windows vista
version/microsoft windows vista/sp1
version/microsoft windows vista/sp2
canonical/microsoft windows xp
version/microsoft windows xp/sp3
version/microsoft windows xp/sp2

Frequently Asked Questions

What is the severity of CVE-2010-3941?
CVE-2010-3941 is considered a high-severity vulnerability that allows local users to escalate privileges on affected systems.
How do I fix CVE-2010-3941?
To fix CVE-2010-3941, apply the latest security updates provided by Microsoft for affected Windows operating systems.
Which systems are affected by CVE-2010-3941?
CVE-2010-3941 affects Microsoft Windows XP, Windows Vista, Windows 7, Windows Server 2003, and Windows Server 2008.
What type of vulnerability is CVE-2010-3941?
CVE-2010-3941 is a double free vulnerability found in the win32k.sys driver.
Can CVE-2010-3941 be exploited remotely?
CVE-2010-3941 requires local access to the vulnerable system to be exploited.

CVE-2010-3941: Double Free

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2010-3941?

How do I fix CVE-2010-3941?

Which systems are affected by CVE-2010-3941?

What type of vulnerability is CVE-2010-3941?

Can CVE-2010-3941 be exploited remotely?

Company

Resources

Contact

Frequently Asked Questions

What is the severity of CVE-2010-3941?

How do I fix CVE-2010-3941?

Which systems are affected by CVE-2010-3941?

What type of vulnerability is CVE-2010-3941?

Can CVE-2010-3941 be exploited remotely?