Threat Center Security News Vulnerability in Windows kernel
Vulnerability in Windows kernel Print E-mail
Written by Rebecca Mints   
Wednesday, 23 April 2008 17:02

A security advisory has been issued by Microsoft addressing a vulnerability in the Windows kernel that uses which logged-in users may increase their privileges on the system, which would lead to being able to take control of it. The affected systems are Windows XP Professional with Service Pack 2, Vista, Server 2003 and Server 2008.


The most susceptible to these attacks are server operators e.g. hosting providers that allow user code to be executed within IIS and SQL Servers. Microsoft has not commented on the vulnerability as of yet as they are still investigating the problem. They have however acknowledged the hole in their security advisory as they instruct server operators to be wary and try to protect themselves from exploitation of the hole. It is still up in the air as to when the patch will be available.



REFERENCES:
heise online
Elevation of privilege allowed by vulnerability in the Windows kernel

 

WTW Threat Level