Elevation in Microsoft Windows

Posted: October 22, 2012 in Vulnerabilities
Tags: , , ,

Windows 7 alertVulnerability: Elevation in Microsoft Windows

Danger: Low
Patch: None
Number of vulnerabilities: 1

Impact: Privilege escalation
CWE ID: CWE-119: An error occurred in the buffer

Affected Products: Microsoft Windows 7

Affected versions: Microsoft Windows 7

Description:

Vulnerability allows local users to gain escalated privileges.

An error null pointer dereference in the driver ntfs.sys while processing mounts removable drives. A local user can use to automatically mount a USB-drive to increase their privileges.

Manufacturer: Microsoft Corporation

Solution: The way to eliminate the vulnerability does not exist at present.

links:

http://j00ru.vexillium.org/?p=1272

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s