• Win32k bounds checking vulnerability, caused by improper validation of an argument passed to a system call, could make the system to stop responding and automatically restart.

  • Win32k exception handling vulnerability, caused by improper handling of certain exceptions, could allow an attacker to run arbitrary code.

  • Win32k pool overflow vulnerability, caused by improper memory allocation when copying data from user mode, could allow an attacker to run arbitrary code.

  • Win32k user input validation vulnerability, caused by improper validation of input from user mode, could allow an attacker to run arbitrary code.

  • Win32k window creation vulnerability, caused by improper validation of pseudo handles within callback parameters when creating a new window, could allow an attacker to run arbitrary code.

  • Windows XP Service Pack 3

  • Windows XP Professional x64 Edition Service Pack 2

  • Windows Server 2003 Service Pack 2

  • Windows Server 2003 x64 Edition Service Pack 2

  • Windows Server 2003 with SP2 for Itanium-based Systems

  • Windows Vista Service Pack 1 and Windows Vista Service Pack 2

  • Windows Vista x64 Edition Service Pack 1 and Windows Vista x64 Edition Service Pack 2

  • Windows Server 2008 for 32-bit Systems and Windows Server 2008 for 32-bit Systems Service Pack 2*

  • Windows Server 2008 for x64-based Systems and Windows Server 2008 for x64-based Systems Service Pack 2*

  • Windows Server 2008 for Itanium-based Systems and Windows Server 2008 for Itanium-based Systems Service Pack 2

  • Windows 7 for 32-bit Systems

  • Windows 7 for x64-based Systems

  • Windows Server 2008 R2 for x64-based Systems*

  • Windows Server 2008 R2 for Itanium-based Systems