CVE-2010-0233

Microsoft Windows - Memory Corruption

Title source: llm

Description

Double free vulnerability in the kernel in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista Gold, SP1, and SP2, and Server 2008 Gold and SP2 allows local users to gain privileges via a crafted application, aka "Windows Kernel Double Free Vulnerability."

Exploits (1)

exploitdb WORKING POC VERIFIED

by Tavis Ormandy · clocalwindows

https://www.exploit-db.com/exploits/33593

View Code ZIP pw:eip

References (3)

[US Government Resource] http://www.us-cert.gov/cas/techalerts/TA10-040A.html

[Third Party Advisory, VDB Entry] https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8392

[Vendor Advisory] https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-015

Scores

EPSS 0.0038

EPSS Percentile 59.7%

Details

Status published

Products (9)

microsoft/windows_2000 sp4

microsoft/windows_server_2003

microsoft/windows_server_2008 (5 CPE variants)

microsoft/windows_server_2008 sp2 x32

microsoft/windows_vista

microsoft/windows_vista sp1

microsoft/windows_vista sp2

microsoft/windows_xp

microsoft/windows_xp sp3

Published Feb 10, 2010

Tracked Since Feb 18, 2026