New report of a Windows vulnerability

Hi everyone,

As usual the holiday season is a busy time for everyone including those of us here in the MSRC.  I hope that everyone has finished their holiday shopping so they can enjoy the long weekend. This is Mike Reavey by the way in case anyone was wondering.

Aside from discussing the holidays, the reason I am dropping in on the blog is that right now we are closely monitoring developments related to a public posting of proof of concept code targeting an issue with the Client Server Run-Time Subsystem. The PoC reportedly allows for local elevation of privilege on Windows 2000 SP4, Windows Server 2003 SP1, Windows XP SP1, Windows XP SP2 and Windows Vista operating systems.  Initial indications are that in order for the attack to be successful, the attacker must already have authenticated access to the target system. Of course these are preliminary findings and we have activated our emergency response process involving a multitude of folks who are investigating the issue in depth to determine the full scope and potential impact to Microsoft’s customers.  Currently we have not observed any public exploitation or attack activity regarding this issue. While I know this is a vulnerability that impacts Windows Vista I still have every confidence that Windows Vista is our most secure platform to date.  As always, we here at the MSRC encourage everyone to enable a firewall, apply all security updates and install anti-virus and anti-spyware software.

Regardless of it being the holiday season the MSRC will be monitoring overall threat conditions for this and any other issue reported to us. If we do see anything that we believe puts Microsoft customers at risk, or significant new developments, we will update everyone through our standard mechanisms including this blog and if need be, an Advisory with additional details.

Happy Holidays,

*This posting is provided "AS IS" with no warranties, and confers no rights.*

Comments (9)

  1. Anonymous says:

    Microsoft acaba de admitir una nueva vulnerabilidad en todas las versiones de Windows (lo cual no es noticia), pero en menos de un mes llevamos varios los bugs de la versión Windows Vista que aún no ha salido pero se espera dentro de poco (a finales de

  2. Anonymous says:

    Towards the end of last week, Symantec published a brief explanation that an escalation flaw had been…

  3. Anonymous says:

    In the last few days there has been a lot of chatter about a vulnerability found in Windows . Ars Technica

  4. Anonymous says:

    Eine Schwachstelle in der Windows Komponente "Client/Server Runtime Server Subsystem (CSRSS)" ermglicht einem angemeldeteten Benutzer die Ausweitung von Rechten. Nach der Ausfhrung eines prparierten Programmes ist es mglich Befehle mit Admi

  5. Anonymous says:

    Well, between the Holidays and 2 weeks of being sick, I didn’t stay very current during December. So,

  6. Anonymous says:

    The missing Microsoft patches (NEW) Published: 2007-01-05, Last Updated: 2007-01-05 06:03:08 UTC by Swa

  7. Anonymous says:

    The missing Microsoft patches Published: 2007-01-05, Last Updated: 2007-02-14 00:53:51 UTC by Swa Frantzen

  8. Anonymous says:

    Microsoft black Tuesday patches – April 2007 Published: 2007-04-10, Last Updated: 2007-04-10 17:48:53

Skip to main content