TITLE:
Windows Kernel Privilege Escalation Vulnerability
SECUNIA ADVISORY ID:
SA21415
VERIFY ADVISORY:
http://secunia.c
om/advisories/21415/
CRITICAL:
Less critical
IMPACT:
Privilege escalation
WHERE:
Local system
OPERATING SYSTEM:
Microsoft Windows 2000 Advanced Server
http://secunia.com/pro
duct/21/
Microsoft Windows 2000 Datacenter Server
http://secunia.com/p
roduct/1177/
Microsoft Windows 2000 Professional
http://secunia.com/prod
uct/1/
Microsoft Windows 2000 Server
http://secunia.com/pro
duct/20/
DESCRIPTION:
A vulnerability has been reported in Microsoft Windows,
which
can be
exploited by malicious, local users to gain escalated
privileges.
The vulnerability is caused due to an unspecified boundary
error in
the kernel and can be exploited to cause a buffer overflow.
Successful exploitation allows execution of arbitrary code
with
kernel-level privileges.
NOTE: Additional issues discovered internally by Microsoft
have
also
been reported.
SOLUTION:
Apply patch.
Microsoft Windows 2000 Service Pack 4:
http://www.microsof
t.com/downloads/details.aspx?FamilyId=08806182-6a26-4663-91e
a-179817350a91
ORIGINAL ADVISORY:
MS06-049 (KB920958):
http://www.microsoft.com/technet/security/Bullet
in/MS06-049.mspx
============= PCWorks Mailing List =================
Don't see your post? Check our posting guidelines &
make sure you've followed proper posting procedures,
http://pcworkers.com/r
ules.htm
Contact list owner <owner-pcworks imagicomm.com>
Unsubscribing and other changes: http://pcworkers.com
=====================================================
|