Double free vulnerability in the Workstation service in Microsoft Windows allows remote authenticated users to gain privileges via a crafted RPC message to a Windows XP SP2 or SP3 or Server 2003 SP2 system, or cause a denial of service via a crafted RPC message to a Vista Gold, SP1, or SP2 or Server 2008 Gold or SP2 system, aka "Workstation Service Memory Corruption Vulnerability."
2009-08-12T17:30:00.563
2025-04-09T00:30:58.490
Deferred
CVSSv3.1: 8.8 (HIGH)
AV:N/AC:L/Au:S/C:C/I:C/A:C
8.0
10.0
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Operating System | microsoft | windows_2003_server | sp2 | Yes |
| Operating System | microsoft | windows_2003_server | sp2 | Yes |
| Operating System | microsoft | windows_2003_server | sp2 | Yes |
| Operating System | microsoft | windows_server_2008 | * | Yes |
| Operating System | microsoft | windows_server_2008 | * | Yes |
| Operating System | microsoft | windows_server_2008 | - | Yes |
| Operating System | microsoft | windows_server_2008 | - | Yes |
| Operating System | microsoft | windows_server_2008 | - | Yes |
| Operating System | microsoft | windows_server_2008 | - | Yes |
| Operating System | microsoft | windows_vista | * | Yes |
| Operating System | microsoft | windows_vista | * | Yes |
| Operating System | microsoft | windows_vista | - | Yes |
| Operating System | microsoft | windows_xp | * | Yes |
| Operating System | microsoft | windows_xp | - | Yes |
| Operating System | microsoft | windows_xp | - | Yes |