How to fix CVE-2010-4398?

Within 24 hours: Identify all affected systems and apply vendor patches immediately. If patching is delayed, consider network segmentation to limit exposure.

Is Windows affected by CVE-2010-4398?

CVE-2010-4398 presents notable security risk, a out-of-bounds write vulnerability rated CVSS 7.8. Exploitation could allow attackers to corrupt memory, crash the application, or potentially execute arbitrary code.

CVE-2010-4398

HIGH

2010-12-06 [email protected]

7.8

CVSS 3.1

CVSS Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Attack Vector

Local

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Lifecycle Timeline

Analysis Generated

Mar 26, 2026 - 11:17 vuln.today

Added to CISA KEV

Oct 22, 2025 - 01:15 cisa

CISA KEV

PoC Detected

Oct 22, 2025 - 01:15 vuln.today

Public exploit code

Patch Released

Oct 22, 2025 - 01:15 nvd

Patch available

CVE Published

Dec 06, 2010 - 13:44 nvd

HIGH 7.8

Description

Stack-based buffer overflow in the RtlQueryRegistryValues function in win32k.sys in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, and R2, and Windows 7 allows local users to gain privileges, and bypass the User Account Control (UAC) feature, via a crafted REG_BINARY value for a SystemDefaultEUDCFont registry key, aka "Driver Improper Interaction with Windows Kernel Vulnerability."

Analysis

A stack-based buffer overflow in win32k.sys RtlQueryRegistryValues function allows local privilege escalation and UAC bypass on Windows XP through Windows 7 via crafted REG_BINARY registry values.

Technical Context

The CWE-787 flaw is triggered when win32k.sys reads a REG_BINARY registry value with a length exceeding the expected stack buffer size. The kernel-mode driver copies the oversized data onto the stack, allowing an attacker to overwrite the return address and execute arbitrary kernel-mode code.

Affected Products

['Microsoft Windows XP SP2/SP3', 'Microsoft Windows Server 2003 SP2', 'Microsoft Windows Vista SP1/SP2', 'Microsoft Windows Server 2008 SP2 and R2', 'Microsoft Windows 7']

Remediation

Apply Microsoft security update MS11-011. Migrate to modern Windows versions with kernel exploit mitigations (SMEP, kCFG, kASLR). Monitor for suspicious registry modifications.

Priority Score

125

Low Medium High Critical

KEV: +50

EPSS: +6.4

CVSS: +39

POC: +20

CVE-2010-4398 vulnerability details – vuln.today

Back

CVE-2010-4398

CVSS Vector

Lifecycle Timeline

Tags

Description

Analysis

Technical Context

Affected Products

Remediation

Priority Score

Share

CVE-2010-4398

CVSS Vector

Lifecycle Timeline

Tags

Description

Analysis

Technical Context

Affected Products

Remediation

Priority Score

Share

External POC / Exploit Code