A vulnerability in the Microsoft Windows kernel API could allow a local attacker to elevate privileges on a targeted system.
The vulnerability is due to improper memory operations that are performed by the affected software when the software processes user-supplied input. An attacker could exploit this vulnerability by accessing the system and executing an application that submits malicious input to the affected software. A successful exploit could allow the attacker to execute arbitrary code with kernel privileges and compromise the system completely.
Microsoft confirmed the vulnerability and released software updates.
Security Impact Rating: High