CVEs-PoC/2010/CVE-2010-1891.md

CVE-2010-1891

Description

The Client/Server Runtime Subsystem (aka CSRSS) in the Win32 subsystem in Microsoft Windows XP SP2 and SP3 and Server 2003 SP2, when a Chinese, Japanese, or Korean locale is enabled, does not properly allocate memory for transactions, which allows local users to gain privileges via a crafted application, aka "CSRSS Local Elevation of Privilege Vulnerability."

POC

Reference

• https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-069

Github

No PoCs found on GitHub currently.