Endpoint Vulnerability

Microsoft: Windows Elevation of Privilege Vulnerability


An elevation of privilege vulnerability exists in the way that the Windows Kernel API enforces permissions. An attacker who successfully exploited the vulnerability could impersonate processes, interject cross-process communication, or interrupt system functionality. To exploit the vulnerability, a locally authenticated attacker could run a specially crafted application. The security update addresses the vulnerability by helping to ensure that the Windows Kernel API properly enforces permissions.

Affected Products

Windows Server 2008,Windows Vista Service Pack 2,Windows Vista x64 Edition Service Pack 2