Microsoft Windows Shell Privilege Escalation Vulnerability

Release Date: 2007-02-13 Last Update: 2007-02-16 Views: 16,469

Secunia Advisory SA24126

Where:

Local system

Impact:

Privilege escalation,

Solution Status:

Vendor Patch

Operating System:

Microsoft Windows Server 2003 Datacenter Edition

Microsoft Windows Server 2003 Enterprise Edition

Microsoft Windows Server 2003 Standard Edition

Microsoft Windows Server 2003 Web Edition

Microsoft Windows XP Professional

CVE Reference(s):

CVE-2007-0211

Description

A vulnerability has been reported in Microsoft Windows, which can be exploited by malicious, local users to gain escalated privileges.

The vulnerability is caused due to an unspecified error in the Windows Shell detection and registration of new hardware.

Successful exploitation allows execution of code with escalated privileges.

Solution:
Apply patches.

Further details available to Secunia VIM customers

Provided and/or discovered by:
Reported by the vendor.

Original Advisory:
MS07-006 (KB928255):
http://www.microsoft.com/technet/security/Bulletin/MS07-006.mspx

Deep Links:
Links available to Secunia VIM customers

Do you have additional information related to this advisory?

Please provide information about patches, mitigating factors, new versions, exploits, faulty patches, links, and other relevant data by posting comments to this Advisory. You can also send this information to vuln@secunia.com

Subject: Microsoft Windows Shell Privilege Escalation Vulnerability

No posts yet

Microsoft Windows Shell Privilege Escalation Vulnerability

Secunia Advisory SA24126

Description

Do you have additional information related to this advisory?

You must be logged in to post a comment.

Secunia Customer Login

Not a customer already?