Description
Race condition in the kernel in Microsoft Windows XP SP3 allows local users to gain privileges via vectors involving thread creation, aka "Windows Kernel Data Initialization Vulnerability."
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by Tavis Ormandy · textdoswindows
https://www.exploit-db.com/exploits/14666
References (3)
Core 3
Core References
US Government Resource third-party-advisory
x_refsource_cert
http://www.us-cert.gov/cas/techalerts/TA10-222A.html
Third Party Advisory, VDB Entry vdb-entry
signature
x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11825
Vendor Advisory vendor-advisory
x_refsource_ms
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-047
Scores
EPSS
0.0077
EPSS Percentile
73.6%
Details
CWE
CWE-362
Status
published
Products (1)
microsoft/windows_xp
Published
Aug 11, 2010
Tracked Since
Feb 18, 2026