Microsoft Windows Local Privilege Escalation Vulnerability
BID:53657
Info
Microsoft Windows Local Privilege Escalation Vulnerability
| Bugtraq ID: | 53657 |
| Class: | Boundary Condition Error |
| CVE: | |
| Remote: | No |
| Local: | Yes |
| Published: | May 23 2012 12:00AM |
| Updated: | May 23 2012 12:00AM |
| Credit: | Oleksiuk Dmytro |
| Vulnerable: |
Microsoft Windows XP Service Pack 3 0 |
| Not Vulnerable: | |
Discussion
Microsoft Windows Local Privilege Escalation Vulnerability
Microsoft Windows is prone to a local privilege-escalation vulnerability.
An attacker can exploit this issue to execute arbitrary code with SYSTEM-level privileges. Successfully exploiting this issue will result in the complete compromise of affected computers or cause denial of service conditions.
Windows XP SP3 with win32k.sys 5.1.2600.6206 is vulnerable.
Microsoft Windows is prone to a local privilege-escalation vulnerability.
An attacker can exploit this issue to execute arbitrary code with SYSTEM-level privileges. Successfully exploiting this issue will result in the complete compromise of affected computers or cause denial of service conditions.
Windows XP SP3 with win32k.sys 5.1.2600.6206 is vulnerable.
Exploit / POC
Microsoft Windows Local Privilege Escalation Vulnerability
The following exploit is available:
The following exploit is available:
Solution / Fix
Microsoft Windows Local Privilege Escalation Vulnerability
Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or are aware of more recent information, please mail us at: [email protected].
Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or are aware of more recent information, please mail us at: [email protected].
References
Microsoft Windows Local Privilege Escalation Vulnerability
References:
References:
- Microsoft Windows Homepage (Microsoft )
- Post MS12-034 0day: not all patches are equally useful (Dmitry Oleksiuk)
- Microsoft Security Bulletin MS12-034 (Microsoft)