Microsoft Windows CSRSS CSRFinalizeContext Local Privilege Escalation Vulnerability
BID:23338
Info
Microsoft Windows CSRSS CSRFinalizeContext Local Privilege Escalation Vulnerability
| Bugtraq ID: | 23338 |
| Class: | Design Error |
| CVE: |
CVE-2007-1209 |
| Remote: | No |
| Local: | Yes |
| Published: | Apr 10 2007 12:00AM |
| Updated: | Mar 27 2008 01:09PM |
| Credit: | eEye is credited with the discovery of this issue. |
| Vulnerable: |
Nortel Networks Centrex IP Client Manager 8.0 Nortel Networks Centrex IP Client Manager 7.0 Nortel Networks Centrex IP Client Manager 9.0 Microsoft Windows Vista x64 Edition 0 Microsoft Windows Vista Ultimate Microsoft Windows Vista Home Premium Microsoft Windows Vista Home Basic Microsoft Windows Vista Enterprise Microsoft Windows Vista Business HP Storage Management Appliance 2.1 Avaya Web Messenger 0 Avaya VPNmanagerTM Console 0 Avaya Visual Vector Client 0 Avaya Visual Messenger TM 0 Avaya Unified Messenger (r) 0 Avaya Unified Communication Center Avaya Speech Access 0 Avaya Outbound Contact Management 0 Avaya Operational Analyst 0 Avaya OctelDesignerTM 0 Avaya OctelAccess(r) Server 0 Avaya Network Reporting 0 Avaya Modular Messaging (MAS) Avaya Messaging Application Server MM 3.1 Avaya Messaging Application Server MM 3.0 Avaya Messaging Application Server MM 2.0 Avaya Messaging Application Server 0 Avaya IP Softphone 0 Avaya IP Agent 0 Avaya Interaction Center - Voice Quick Start 0 Avaya Interaction Center 0 Avaya Integrated Management Avaya Enterprise Management 0 Avaya CVLAN Avaya Customer Interaction Express (CIE) User Interface 1.0 Avaya Customer Interaction Express (CIE) Server 1.0 Avaya Contact Center Express 0 Avaya Computer Telephony 0 Avaya CMS Supervisor 0 Avaya Basic Call Management System Reporting Desktop server Avaya Basic Call Management System Reporting Desktop 0 Avaya Agent Access 0 |
| Not Vulnerable: | |
Discussion
Microsoft Windows CSRSS CSRFinalizeContext Local Privilege Escalation Vulnerability
Microsoft Windows CSRSS (client/server run-time subsystem) is prone to local privilege-escalation vulnerability.
Successful attacks will result in the complete compromise of affected computers.
Microsoft Windows CSRSS (client/server run-time subsystem) is prone to local privilege-escalation vulnerability.
Successful attacks will result in the complete compromise of affected computers.
Exploit / POC
Microsoft Windows CSRSS CSRFinalizeContext Local Privilege Escalation Vulnerability
Currently we are not aware of any exploits for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Currently we are not aware of any exploits for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution / Fix
Microsoft Windows CSRSS CSRFinalizeContext Local Privilege Escalation Vulnerability
Solution:
Microsoft has released an advisory and fixes. Please see the references for more information.
HP Storage Management Appliance is affected by the issue -- please see the referenced HP advisory.
Microsoft Windows Vista Home Basic
Microsoft Windows Vista Ultimate
Microsoft Windows Vista x64 Edition 0
Microsoft Windows Vista Home Premium
Microsoft Windows Vista Enterprise
Microsoft Windows Vista Business
Solution:
Microsoft has released an advisory and fixes. Please see the references for more information.
HP Storage Management Appliance is affected by the issue -- please see the referenced HP advisory.
Microsoft Windows Vista Home Basic
-
Microsoft Windows6.0-KB930178-x86.msu
http://www.microsoft.com/downloads/details.aspx?familyid=3487b1f0-a383 -41a4-a660-2768962b3bcd&displaylang=en
Microsoft Windows Vista Ultimate
-
Microsoft Windows6.0-KB930178-x86.msu
http://www.microsoft.com/downloads/details.aspx?familyid=3487b1f0-a383 -41a4-a660-2768962b3bcd&displaylang=en
Microsoft Windows Vista x64 Edition 0
-
Microsoft Windows6.0-KB930178-x64.msu
http://www.microsoft.com/downloads/details.aspx?familyid=c46f62e1-dddd -4886-a82b-ebec258a495b&displaylang=en
Microsoft Windows Vista Home Premium
-
Microsoft Windows6.0-KB930178-x86.msu
http://www.microsoft.com/downloads/details.aspx?familyid=3487b1f0-a383 -41a4-a660-2768962b3bcd&displaylang=en
Microsoft Windows Vista Enterprise
-
Microsoft Windows6.0-KB930178-x86.msu
http://www.microsoft.com/downloads/details.aspx?familyid=3487b1f0-a383 -41a4-a660-2768962b3bcd&displaylang=en
Microsoft Windows Vista Business
-
Microsoft Windows6.0-KB930178-x86.msu
http://www.microsoft.com/downloads/details.aspx?familyid=3487b1f0-a383 -41a4-a660-2768962b3bcd&displaylang=en
References
Microsoft Windows CSRSS CSRFinalizeContext Local Privilege Escalation Vulnerability
References:
References:
- Knowledge Base Article 930178 (Microsoft)
- Microsoft Windows Homepage (Microsoft )
- [security bulletin] HPSBST02208 SSRT071365 rev.1 - Storage Management Appliance ([email protected])
- EEYE: Windows Vista CSRSS Dangling Process Pointer Privilege Escalation (eEye Research)
- [ SECURITY ADVISORY ] Centrex IP Client Manager (CICM) response to Microsoft Apr (Nortel)
- ASA-2007-159 MS07-021 Vulnerabilities in CSRSS Could Allow Remote Code Execution (Avaya)
- Microsoft Security Bulletin MS07-021 (Microsoft)
- Vulnerability Note VU#219848 Microsoft Windows Vista CSRSS privilege escalation (US-CERT)