CVE-2010-1734 [Medium] | Input Validation Bypass in Windows 2000

CVE-2010-1734 is rated High Exploit Risk (65.7/100): CVSS Medium severity, with medium exploitation likelihood (EPSS 2.66%). 3 public exploit reference(s) are indexed (Exploit-DB). EPSS rose +1.85% over the last day, indicating growing attacker interest. Public exploits are available—assess exposure, apply mitigations, and prioritize patching.

EDB-ID	Source	Kind	Published	Link
12337	exploit_db	edb	2010-04-22	Exploit-DB ↗
—	nvd_ref	exploit_tag		Exploit-DB ↗
—	nvd_ref	exploit_tag		Exploit-DB ↗

EDB-ID

Source

Kind

Published

Link

12337

exploit_db

edb

2010-04-22

Exploit-DB ↗

—

nvd_ref

exploit_tag

Exploit-DB ↗

—

nvd_ref

exploit_tag

Exploit-DB ↗

#	Date	Old EPSS score	New EPSS score	Delta (New - Old)
1	2026-06-15	0.80%	2.66%	+1.85%
2	2026-03-06	0.86%	0.80%	-0.06%
3	2025-12-28	—	0.86%	—

Date

Old EPSS score

New EPSS score

Delta (New - Old)

2026-06-15

0.80%

2.66%

+1.85%

2026-03-06

0.86%

0.80%

-0.06%

2025-12-28

—

0.86%

—

Base score	Version	Severity	Vector	Exploitability	Impact	Score source
4.9	2.0	MEDIUM	`AV:L/AC:L/Au:N/C:N/I:N/A:C` Click to expand Access vector (AV:L) Requires local access to the target system. Access complexity (AC:L) Exploitation conditions are straightforward and predictable. Authentication (AU:N) No authentication is required. Confidentiality impact (C:N) No confidentiality impact. Integrity impact (I:N) No integrity impact. Availability impact (A:C) Complete availability impact.	3.9	6.9	[email protected]

Base score

Version

Severity

Vector

Exploitability

Impact

Score source

4.9

2.0

MEDIUM

AV:L/AC:L/Au:N/C:N/I:N/A:C Click to expand

Access vector (AV:L): Requires local access to the target system.
Access complexity (AC:L): Exploitation conditions are straightforward and predictable.
Authentication (AU:N): No authentication is required.
Confidentiality impact (C:N): No confidentiality impact.
Integrity impact (I:N): No integrity impact.
Availability impact (A:C): Complete availability impact.

3.9

6.9

[email protected]

Affected software / configurations for CVE-2010-1734

Vendor	Product	Version	Raw CPE
microsoft	windows_2000	—	cpe:2.3:o:microsoft:windows_2000::-::::::*
microsoft	windows_2000	—	cpe:2.3:o:microsoft:windows_2000::beta3::::::*
microsoft	windows_2000	—	cpe:2.3:o:microsoft:windows_2000::gold::::::*
microsoft	windows_2000	—	cpe:2.3:o:microsoft:windows_2000::rc1::::::*
microsoft	windows_2000	—	cpe:2.3:o:microsoft:windows_2000::rc2::::::*
microsoft	windows_2000	—	cpe:2.3:o:microsoft:windows_2000::sp1::::::*
microsoft	windows_2000	—	cpe:2.3:o:microsoft:windows_2000::sp2::::::*
microsoft	windows_2000	—	cpe:2.3:o:microsoft:windows_2000::sp3::::::*
microsoft	windows_2000	—	cpe:2.3:o:microsoft:windows_2000::sp4::::::*
microsoft	windows_2000	—	cpe:2.3:o:microsoft:windows_2000:-:::::::*
microsoft	windows_2003_server	—	cpe:2.3:o:microsoft:windows_2003_server::gold::::::*
microsoft	windows_2003_server	—	cpe:2.3:o:microsoft:windows_2003_server::gold:itanium:::::
microsoft	windows_2003_server	—	cpe:2.3:o:microsoft:windows_2003_server::gold:x64:::::
microsoft	windows_2003_server	—	cpe:2.3:o:microsoft:windows_2003_server::r2:x64:::::
microsoft	windows_2003_server	—	cpe:2.3:o:microsoft:windows_2003_server::sp1::::::*
microsoft	windows_2003_server	—	cpe:2.3:o:microsoft:windows_2003_server::sp2::::::*
microsoft	windows_2003_server	—	cpe:2.3:o:microsoft:windows_2003_server::sp2:itanium:::::
microsoft	windows_server_2003	—	cpe:2.3:o:microsoft:windows_server_2003::-::::::*
microsoft	windows_server_2003	—	cpe:2.3:o:microsoft:windows_server_2003::sp1::::::*
microsoft	windows_server_2003	—	cpe:2.3:o:microsoft:windows_server_2003::sp2::::::*
microsoft	windows_xp	—	cpe:2.3:o:microsoft:windows_xp:::x86:::::*
microsoft	windows_xp	—	cpe:2.3:o:microsoft:windows_xp::gold::::::*
microsoft	windows_xp	—	cpe:2.3:o:microsoft:windows_xp::gold:embedded:::::
microsoft	windows_xp	—	cpe:2.3:o:microsoft:windows_xp::gold:media_center:::::
microsoft	windows_xp	—	cpe:2.3:o:microsoft:windows_xp::gold:professional:::::
microsoft	windows_xp	—	cpe:2.3:o:microsoft:windows_xp::gold:tablet_pc:::::
microsoft	windows_xp	—	cpe:2.3:o:microsoft:windows_xp::sp1::::::*
microsoft	windows_xp	—	cpe:2.3:o:microsoft:windows_xp::sp1:embedded:::::
microsoft	windows_xp	—	cpe:2.3:o:microsoft:windows_xp::sp1:media_center:::::
microsoft	windows_xp	—	cpe:2.3:o:microsoft:windows_xp::sp1:professional:::::
microsoft	windows_xp	—	cpe:2.3:o:microsoft:windows_xp::sp1:tablet_pc:::::
microsoft	windows_xp	—	cpe:2.3:o:microsoft:windows_xp::sp2::::::*
microsoft	windows_xp	—	cpe:2.3:o:microsoft:windows_xp::sp2:embedded:::::
microsoft	windows_xp	—	cpe:2.3:o:microsoft:windows_xp::sp2:media_center:::::
microsoft	windows_xp	—	cpe:2.3:o:microsoft:windows_xp::sp2:professional:::::
microsoft	windows_xp	—	cpe:2.3:o:microsoft:windows_xp::sp2:tablet_pc:::::
microsoft	windows_xp	—	cpe:2.3:o:microsoft:windows_xp::sp2:x86:::::
microsoft	windows_xp	—	cpe:2.3:o:microsoft:windows_xp::sp3::::::*
microsoft	windows_xp	—	cpe:2.3:o:microsoft:windows_xp::sp3:x86:::::
microsoft	windows_xp	—	cpe:2.3:o:microsoft:windows_xp:-:::::::*
microsoft	windows_xp	—	cpe:2.3:o:microsoft:windows_xp:-:gold:64-bit-2002:::::*
microsoft	windows_xp	—	cpe:2.3:o:microsoft:windows_xp:-:gold:64-bit-2003:::::*
microsoft	windows_xp	—	cpe:2.3:o:microsoft:windows_xp:-:gold:home:::::*
microsoft	windows_xp	—	cpe:2.3:o:microsoft:windows_xp:-:gold:x64:::::*
microsoft	windows_xp	—	cpe:2.3:o:microsoft:windows_xp:-:sp1:home:::::*
microsoft	windows_xp	—	cpe:2.3:o:microsoft:windows_xp:-:sp2:home:::::*
microsoft	windows_xp	—	cpe:2.3:o:microsoft:windows_xp:-:sp2:x64:::::*
microsoft	windows_xp	—	cpe:2.3:o:microsoft:windows_xp:-:sp3::::::
microsoft	windows_xp	—	cpe:2.3:o:microsoft:windows_xp:-:sp3:embedded:::::*
microsoft	windows_xp	—	cpe:2.3:o:microsoft:windows_xp:-:sp3:home:::::*
microsoft	windows_xp	—	cpe:2.3:o:microsoft:windows_xp:-:sp3:media_center:::::*
microsoft	windows_xp	—	cpe:2.3:o:microsoft:windows_xp:-:sp3:professional:::::*
microsoft	windows_xp	—	cpe:2.3:o:microsoft:windows_xp:-:sp3:tablet_pc:::::*
microsoft	windows_xp	sp3	cpe:2.3:o:microsoft:windows_xp:sp3:::::::*
microsoft	windows_xp	sp3	cpe:2.3:o:microsoft:windows_xp:sp3:unknown:english:::::*

References for CVE-2010-1734

URL	Tags
http://secunia.com/advisories/39456	Vendor Advisory
http://vigilance.fr/vulnerability/Windows-denials-of-service-of-win32k-sys-9607	Exploit
http://www.securityfocus.com/archive/1/510886/100/0/threaded
http://www.securityfocus.com/bid/39631	Exploit

URL

CVE-2010-1734

Public exploit references (Exploit-DB) for CVE-2010-1734

Exploit prediction scoring system (EPSS) score for CVE-2010-1734

Common vulnerability scoring system (CVSS) metrics for CVE-2010-1734

Weakness enumeration for CVE-2010-1734

Affected software / configurations for CVE-2010-1734

References for CVE-2010-1734