What is CVE-2011-1282?

CVE-2011-1282 is a high-severity vulnerability in Microsoft Windows_2003_server, classified under Improper Restriction of Operations within the Bounds of a Memory Buffer. CVSS score: 8.4/10. Published 2011-07-13.

How severe is CVE-2011-1282?

High severity. CVSS v3 base score is 8.4 out of 10.

Buffer overflow in Microsoft Windows_2003_server

CVE-2011-1282

The Client/Server Run-time Subsystem (aka CSRSS) in the Win32 subsystem in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 does…

Vulnerability class: Buffer Overflow

EPSS: 0.011 (78.5th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 8.4 (High). Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H.

Affected products

Microsoft Windows_2003_server
Microsoft Windows_7
Microsoft Windows_server_2003
Microsoft Windows_server_2008 — versions r2
Microsoft Windows_vista
Microsoft Windows_xp
N/a — versions n/a

Weakness classification (CWE)

References

oval:org.mitre.oval:def:12402 (x_refsource_OVAL, signature, vdb-entry)
TA11-193A (US Government Resource, x_refsource_CERT, third-party-advisory)
MS11-056 (x_refsource_MS, vendor-advisory)

Frequently asked questions

What is CVE-2011-1282?: CVE-2011-1282 is a high-severity vulnerability in Microsoft Windows_2003_server, classified under Improper Restriction of Operations within the Bounds of a Memory Buffer. CVSS score: 8.4/10. Published 2011-07-13.
How severe is CVE-2011-1282?: High severity. CVSS v3 base score is 8.4 out of 10.