Windows : Microsoft Bulletins : Microsoft Windows FAT32 Disk Partition Driver Privilege Escalation Vulnerability (2998579)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.804493

Categoría: Windows : Microsoft Bulletins

Título: Microsoft Windows FAT32 Disk Partition Driver Privilege Escalation Vulnerability (2998579)

Resumen: This host is missing an important security; update according to Microsoft Bulletin MS14-063.

Descripción: Summary:
This host is missing an important security
update according to Microsoft Bulletin MS14-063.

Vulnerability Insight:
The flaw is due to a buffer under-allocation
error within the FASTFAT driver and can be exploited to cause a function to
write data in otherwise reserved memory.

Vulnerability Impact:
Successful exploitation could allow
local users to gain escalated privileges.

Affected Software/OS:
- Microsoft Windows Vista x32/x64 Service Pack 2 and prior

- Microsoft Windows 2003 x32/x64 Edition Service Pack 2 and prior

- Microsoft Windows Server 2008 x32/x64 Service Pack 2 and prior

Solution:
The vendor has released updates. Please see the references for more information.

CVSS Score:
7.2

CVSS Vector:
AV:L/AC:L/Au:N/C:C/I:C/A:C

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2014-4115
BugTraq ID: 70343
http://www.securityfocus.com/bid/70343
Microsoft Security Bulletin: MS14-063
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2014/ms14-063
http://secunia.com/advisories/60975

Copyright Copyright (C) 2014 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.804493
Categoría:	Windows : Microsoft Bulletins
Título:	Microsoft Windows FAT32 Disk Partition Driver Privilege Escalation Vulnerability (2998579)
Resumen:	This host is missing an important security; update according to Microsoft Bulletin MS14-063.
Descripción:	Summary: This host is missing an important security update according to Microsoft Bulletin MS14-063. Vulnerability Insight: The flaw is due to a buffer under-allocation error within the FASTFAT driver and can be exploited to cause a function to write data in otherwise reserved memory. Vulnerability Impact: Successful exploitation could allow local users to gain escalated privileges. Affected Software/OS: - Microsoft Windows Vista x32/x64 Service Pack 2 and prior - Microsoft Windows 2003 x32/x64 Edition Service Pack 2 and prior - Microsoft Windows Server 2008 x32/x64 Service Pack 2 and prior Solution: The vendor has released updates. Please see the references for more information. CVSS Score: 7.2 CVSS Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2014-4115 BugTraq ID: 70343 http://www.securityfocus.com/bid/70343 Microsoft Security Bulletin: MS14-063 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2014/ms14-063 http://secunia.com/advisories/60975
Copyright	Copyright (C) 2014 Greenbone AG