THREAT OPS › CVEs › CVE-2013-3660
CVE-2013-3660 — Microsoft Win32k Privilege Escalation Vulnerability
The EPATHOBJ::pprFlattenRec function in win32k.sys in the kernel-mode drivers in Microsoft does not properly initialize a pointer for the next object in a certain list, which allows local users to gain privileges.
Vulnerability details
- Affected productsWin32k
- KEV remediation due2022-04-18