virus logo Intrusion Prevention

MS.Windows.NDProxy.Privilege.Escalation

description-logoDescription

This indicates an attack attempt to exploit a Privilege Escalation vulnerability in Microsoft Windows.
The vulnerability is due to an error when the NDProxy.sys kernel component of Windows fails to validate inputs. A remote attacker may be able to exploit this to execute arbitrary code on the system.

affected-products-logoAffected Products

Windows XP Service Pack 3
Windows XP Professional x64 Edition Service Pack 2
Windows Server 2003 Service Pack 2
Windows Server 2003 x64 Edition Service Pack 2
Windows Server 2003 with SP2 for Itanium-based Systems

Impact logoImpact

Privilege Escalation: Remote attackers can leverage their privilege on the vulnerable systems.

recomended-action-logoRecommended Actions

Refer to the vendor's website for suggested workaround.
http://technet.microsoft.com/en-us/security/advisory/2914486

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date Version Detail
2019-02-01 14.540 Name:Microsoft.
Windows.
NDProxy.
Privilege.
Escalation:MS.
Windows.
NDProxy.
Privilege.
Escalation

References

http://technet.microsoft.com/en-us/security/advisory/2914486
ID 37584
Created Nov 29, 2013
Updated Mar 22, 2022
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon
CVE ID CVE-2013-5065
Known Exploited Yes
Exploit Prediction Score 0.06%
Default Action drop
Active
Affected OS Windows
Affected App Other