THREATOPS
THREAT OPSCVEs › CVE-2011-2005

CVE-2011-2005 — Microsoft Ancillary Function Driver (afd.sys) Improper Input Validation Vulnerability

CISA KEVExploited: confirmedMicrosoft

afd.sys in the Ancillary Function Driver in Microsoft Windows does not properly validate user-mode input passed to kernel mode, which allows local users to gain privileges via a crafted application.

Vulnerability details