|CVSS SCORE||7.2, (AV:L/AC:L/Au:N/C:C/I:C/A:C)|
The specific flaw exists within the handling of CreateWindowStation. The issue lies in the failure to check for NULL before dereferencing a pointer. An attacker can leverage this vulnerability to elevate privileges and execute code within the context of the kernel.
Microsoft has issued an update to correct this vulnerability. More details can be found at:
|CREDIT||bee13oy of CloverSec Labs