CVE-2009-1808

EUVD-2009-1803
Microsoft Windows XP SP3 allows local users to cause a denial of service (system crash) by making an SPI_SETDESKWALLPAPER SystemParametersInfo call with an improperly terminated pvParam argument, followed by an SPI_GETDESKWALLPAPER SystemParametersInfo call.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
4.9 UNKNOWN
LOCAL
LOW
AV:L/AC:L/Au:N/C:N/I:N/A:C
Base Score
CVSS 3.x
EPSS Score
Percentile: 75%
Affected Products (NVD)
VendorProductVersion
microsoftwindows_xp
-
microsoftwindows_xp
-
microsoftwindows_xp
-
microsoftwindows_xp
-
microsoftwindows_xp
-
microsoftwindows_xp
-
𝑥
= Vulnerable software versions
References
http://secunia.com/advisories/35323
http://www.ragestorm.net/blogs/?p=78
http://www.securityfocus.com/bid/35120
http://www.securitytracker.com/id?1022330
https://exchange.xforce.ibmcloud.com/vulnerabilities/50903
http://secunia.com/advisories/35323
http://www.ragestorm.net/blogs/?p=78
http://www.securityfocus.com/bid/35120
http://www.securitytracker.com/id?1022330
https://exchange.xforce.ibmcloud.com/vulnerabilities/50903