ID de Prueba:	1.3.6.1.4.1.25623.1.0.900094
Categoría:	Windows : Microsoft Bulletins
Título:	Vulnerabilities in Windows Could Allow Elevation of Privilege (959454)
Resumen:	This host is missing a critical security update according to; Microsoft Bulletin MS09-012.
Descripción:	Summary: This host is missing a critical security update according to Microsoft Bulletin MS09-012. Vulnerability Insight: - Microsoft Distributed Transaction Coordinator (MSDTC) transaction facility allowing the NetworkService token to be obtained and used when making an RPC call. - Windows Management Instrumentation (WMI) provider improperly isolating processes that run under the NetworkService or LocalService accounts. - RPCSS service improperly isolating processes that run under the NetworkService or LocalService accounts. - Windows placing incorrect access control lists (ACLs) on threads in the current ThreadPool. Vulnerability Impact: Successful exploitation could allow attackers to execute arbitrary code by gaining elevated privileges. Affected Software/OS: - Microsoft Windows 2K Service Pack 4 and prior - Microsoft Windows XP Service Pack 3 and prior - Microsoft Windows 2003 Service Pack 2 and prior - Microsoft Windows Vista Service Pack 1 and prior - Microsoft Windows Server 2008 Service Pack 1 and prior Solution: The vendor has released updates. Please see the references for more information. CVSS Score: 9.0 CVSS Vector: AV:N/AC:L/Au:S/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2008-1436 BugTraq ID: 28833 http://www.securityfocus.com/bid/28833 Bugtraq: 20080419 Token Kidnapping (Microsoft Security Advisory 951306) presentation available (Google Search) http://www.securityfocus.com/archive/1/491111/100/0/threaded Bugtraq: 20081008 Token Kidnapping Windows 2003 PoC exploit (Google Search) http://www.securityfocus.com/archive/1/497168/100/0/threaded Cert/CC Advisory: TA09-104A http://www.us-cert.gov/cas/techalerts/TA09-104A.html https://www.exploit-db.com/exploits/6705 http://isc.sans.org/diary.html?storyid=4306 http://milw0rm.com/sploits/2008-Churrasco.zip http://nomoreroot.blogspot.com/2008/10/windows-2003-poc-exploit-for-token.html http://securitywatch.eweek.com/flaws/microsoft_belatedly_admits_to_windows_server_2008_token_kidnapping.html http://www.argeniss.com/research/Churrasco.zip http://www.argeniss.com/research/TokenKidnapping.pdf Microsoft Security Bulletin: MS09-012 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2009/ms09-012 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5891 http://www.securitytracker.com/id?1019904 http://secunia.com/advisories/29867 http://www.vupen.com/english/advisories/2008/1264/references http://www.vupen.com/english/advisories/2009/1026 XForce ISS Database: ms-windows-localsystem-privilege-escalation(41880) https://exchange.xforce.ibmcloud.com/vulnerabilities/41880 Common Vulnerability Exposure (CVE) ID: CVE-2009-0078 http://osvdb.org/53666 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6193 http://www.securitytracker.com/id?1022044 Common Vulnerability Exposure (CVE) ID: CVE-2009-0079 http://osvdb.org/53667 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6147 Common Vulnerability Exposure (CVE) ID: CVE-2009-0080 http://osvdb.org/53668 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6177
Copyright	Copyright (C) 2009 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.