What is the severity of CVE-2010-4398?

CVE-2010-4398 has a severity rating that allows local users to gain privileges and bypass User Account Control.

How do I fix CVE-2010-4398?

To fix CVE-2010-4398, apply the latest security updates and patches provided by Microsoft for affected Windows versions.

What systems are affected by CVE-2010-4398?

CVE-2010-4398 affects multiple versions of Microsoft Windows, including Windows 7, Windows Vista, and Windows Server 2008.

Can CVE-2010-4398 be exploited remotely?

CVE-2010-4398 is a local privilege escalation vulnerability, meaning it cannot be exploited remotely without local access to the system.

Is there a workaround for CVE-2010-4398?

The primary mitigation for CVE-2010-4398 is to ensure that all security patches are applied, as no official workaround has been provided.

Vulnerability/
CVE-2010-4398

Exploited

high

7.8

CWE

119 787

3/12/2010

19/12/2024

CVE-2010-4398: Microsoft Windows Kernel Stack-Based Buffer Overflow Vulnerability

First published: Fri Dec 03 2010(Updated: )

Stack-based buffer overflow in the RtlQueryRegistryValues function in win32k.sys in Microsoft Windows allows local users to gain privileges, and bypass the User Account Control (UAC) feature.

Credit: cve@mitre.org cve@mitre.org

Affected Software	Affected Version	How to fix
Microsoft Windows
Microsoft Windows 7
Microsoft Windows Server 2003	=sp2
Microsoft Windows Server 2008 Itanium
Microsoft Windows Server 2008 Itanium	=sp2
Microsoft Windows Server 2008 Itanium	=r2
Microsoft Windows Vista	=sp1
Microsoft Windows Vista	=sp2
Microsoft Windows XP	=sp2
Microsoft Windows XP	=sp3
Microsoft Windows Server 2008 Itanium	=r2
Microsoft Windows Server 2008 Itanium	=r2
Microsoft Windows Vista
Microsoft Windows Server 2008 Itanium
Microsoft Windows Server 2008 Itanium
Microsoft Windows 7
Microsoft Windows 2003 Server
Microsoft Windows Server 2008 Itanium
Microsoft Windows XP

Remedy

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2011/ms11-011

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2010-4398?
CVE-2010-4398 has a severity rating that allows local users to gain privileges and bypass User Account Control.
How do I fix CVE-2010-4398?
To fix CVE-2010-4398, apply the latest security updates and patches provided by Microsoft for affected Windows versions.
What systems are affected by CVE-2010-4398?
CVE-2010-4398 affects multiple versions of Microsoft Windows, including Windows 7, Windows Vista, and Windows Server 2008.
Can CVE-2010-4398 be exploited remotely?
CVE-2010-4398 is a local privilege escalation vulnerability, meaning it cannot be exploited remotely without local access to the system.
Is there a workaround for CVE-2010-4398?
The primary mitigation for CVE-2010-4398 is to ensure that all security patches are applied, as no official workaround has been provided.

agent/type
agent/title
agent/description
agent/severity
agent/remedy
agent/author
collector/mitre-cve
source/MITRE
agent/first-publish-date
exploited/true
collector/cisa-known-exploited
source/CISA
agent/software-canonical-lookup
agent/weakness
agent/references
agent/softwarecombine
agent/event
agent/last-modified-date
agent/trending
agent/source
agent/tags
collector/nvd-api
source/NVD
agent/software-canonical-lookup-request
collector/nvd-cve
collector/nvd-historical
collector/nvd-index
vendor/microsoft
canonical/microsoft windows
canonical/microsoft windows 7
canonical/microsoft windows server 2003
version/microsoft windows server 2003/sp2
canonical/microsoft windows server 2008 itanium
version/microsoft windows server 2008 itanium/sp2
version/microsoft windows server 2008 itanium/r2
canonical/microsoft windows vista
version/microsoft windows vista/sp1
version/microsoft windows vista/sp2
canonical/microsoft windows xp
version/microsoft windows xp/sp2
version/microsoft windows xp/sp3
canonical/microsoft windows 2003 server