MS.Windows.NDProxy.Privilege.Escalation
Description
This indicates an attack attempt to exploit a Privilege Escalation vulnerability in Microsoft Windows.
The vulnerability is due to an error when the NDProxy.sys kernel component of Windows fails to validate inputs. A remote attacker may be able to exploit this to execute arbitrary code on the system.
Affected Products
Windows XP Service Pack 3
Windows XP Professional x64 Edition Service Pack 2
Windows Server 2003 Service Pack 2
Windows Server 2003 x64 Edition Service Pack 2
Windows Server 2003 with SP2 for Itanium-based Systems
Impact
Privilege Escalation: Remote attackers can leverage their privilege on the vulnerable systems.
Recommended Actions
Refer to the vendor's website for suggested workaround.
http://technet.microsoft.com/en-us/security/advisory/2914486
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |
Version Updates
Date | Version | Detail |
---|---|---|
2019-02-01 | 14.540 | Name:Microsoft. Windows. NDProxy. Privilege. Escalation:MS. Windows. NDProxy. Privilege. Escalation |