Microsoft Windows Ndistapi Local Privilege Escalation Vulnerability

Bugtraq ID:	23025
Class:	Design Error
CVE:
Remote:	No
Local:	Yes
Published:	Mar 19 2007 12:00AM
Updated:	Jun 26 2007 04:08AM
Credit:	Rubén Santamarta is credited with the discovery of this vulnerability.
Vulnerable:	Microsoft Windows XP Tablet PC Edition SP2 Microsoft Windows XP Professional SP2 Microsoft Windows XP Media Center Edition SP2 Microsoft Windows XP Home SP2 Microsoft Windows Server 2003 Web Edition SP1 Microsoft Windows Server 2003 Standard Edition SP1 Microsoft Windows Server 2003 Enterprise Edition Itanium SP1 Microsoft Windows Server 2003 Enterprise Edition SP1 Microsoft Windows Server 2003 Datacenter Edition SP1
Not Vulnerable:

Microsoft Windows Ndistapi Local Privilege Escalation Vulnerability

Microsoft Windows is prone to a local privilege-escalation vulnerability.

An attacker may exploit this issue to execute arbitrary machine code with Dispatch-level privileges or potentially crash the affected computer.

Microsoft Windows Ndistapi Local Privilege Escalation Vulnerability

Currently we are not aware of any exploits for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: mailto:[email protected].

Microsoft Windows Ndistapi Local Privilege Escalation Vulnerability

Solution:
Reports indicate that this issue has been addressed in Windows 2003 SP2. Symantec has not confirmed this.

Please see the references for more information.

Microsoft Windows Ndistapi Local Privilege Escalation Vulnerability

References:

• Microsoft Windows Homepage (Microsoft)
  
• Reverse Mode Advisory: Ndistapi IRQL Escalation (Reverse Mode)