CVE-2008-6819
Severity CVSS v4.0:
Pending analysis
Type:
CWE-362
Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')
Publication date:
01/06/2009
Last modified:
09/04/2025
Description
win32k.sys in Microsoft Windows Server 2003 and Vista allows local users to cause a denial of service (system crash) via vectors related to CreateWindow, TranslateMessage, and DispatchMessage, possibly a race condition between threads, a different vulnerability than CVE-2008-1084. NOTE: some of these details are obtained from third party information.
Impact
Base Score 2.0
4.70
Severity 2.0
MEDIUM
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:o:microsoft:windows_2003_server:*:*:*:*:*:*:*:* | ||
| cpe:2.3:o:microsoft:windows_vista:*:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- http://bugtraq.ru/cgi-bin/forum.mcgi?type=sb&b=2&m=152274
- http://www.securityfocus.com/bid/35121
- http://www.securityfocus.com/data/vulnerabilities/exploits/35121.c
- http://bugtraq.ru/cgi-bin/forum.mcgi?type=sb&b=2&m=152274
- http://www.securityfocus.com/bid/35121
- http://www.securityfocus.com/data/vulnerabilities/exploits/35121.c