Vulnerability Description
Win32k.sys (aka Graphics Device Interface (GDI)) in Windows 2000 and XP allows local users to cause a denial of service (system crash) by calling the ShowWindow function after receiving a WM_NCCREATE message.
CVSS Score
LOW
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Microsoft | Windows 2000 | All versions |
| Microsoft | Windows Xp | All versions |
References
- http://www.derkeiler.com/Mailing-Lists/NT-Bugtraq/2001-10/0066.htmlExploit
- http://www.iss.net/security_center/static/7409.php
- http://www.securityfocus.com/bid/3481Exploit
- http://www.derkeiler.com/Mailing-Lists/NT-Bugtraq/2001-10/0066.htmlExploit
- http://www.iss.net/security_center/static/7409.php
- http://www.securityfocus.com/bid/3481Exploit
FAQ
What is CVE-2001-1560?
CVE-2001-1560 is a vulnerability with a CVSS score of 2.1 (LOW). Win32k.sys (aka Graphics Device Interface (GDI)) in Windows 2000 and XP allows local users to cause a denial of service (system crash) by calling the ShowWindow function after receiving a WM_NCCREATE ...
How severe is CVE-2001-1560?
CVE-2001-1560 has been rated LOW with a CVSS base score of 2.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2001-1560?
Check the references section above for vendor advisories and patch information. Affected products include: Microsoft Windows 2000, Microsoft Windows Xp.