|Date: (C)2010-04-14 (M)2017-09-22|
|CVSS Score: 4.7||Access Vector: LOCAL|
|Exploitability Subscore: 3.4||Access Complexity: MEDIUM|
|Impact Subscore: 6.9||Authentication: NONE|
| ||Confidentiality: NONE|
| ||Integrity: NONE|
| ||Availability: COMPLETE|
The kernel in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, and Vista Gold does not perform the expected validation before creating a symbolic link, which allows local users to cause a denial of service (reboot) via a crafted application, aka "Windows Kernel Symbolic Link Value Vulnerability."