CVE-2012-0178 | Vulnerability Database | Aqua Security

Race condition in partmgr.sys in Windows Partition Manager in Microsoft Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 allows local users to gain privileges via a crafted application that makes multiple simultaneous Plug and Play (PnP) Configuration Manager function calls, aka Plug and Play (PnP) Configuration Manager Vulnerability.

Affected Software

Name	Vendor	Start Version	End Version
Windows_7	Microsoft	*	*
Windows_7	Microsoft	- (including)	- (including)
Windows_7	Microsoft	–sp1 (including)	–sp1 (including)
Windows_server_2008	Microsoft	*	*
Windows_server_2008	Microsoft	–sp2 (including)	–sp2 (including)
Windows_server_2008	Microsoft	r2 (including)	r2 (including)
Windows_vista	Microsoft	*	*
Windows_vista	Microsoft	sp2 (including)	sp2 (including)

References

http://osvdb.org/81735
http://secunia.com/advisories/49115
http://www.securityfocus.com/bid/53378
http://www.securitytracker.com/id?1027043
http://www.us-cert.gov/cas/techalerts/TA12-129A.html
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2012/ms12-033
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15229

NVD	https://nvd.nist.gov/vuln/detail/CVE-2012-0178
CWE	https://cwe.mitre.org/data/definitions/264.html