Full Disclosure mailing list archives
-ADVISORY- ~ =Thu Mar 16 14:00:41 EST 2006= ~ Local Privilege Escalation Vulnerability in Microsoft Windows XP
From: richardh () sec-1 com
Date: Thu, 16 Mar 2006 19:00:47 +0000 (GMT)
-ADVISORY- ~ =Thu Mar 16 14:00:41 EST 2006= ~ Local Privilege Escalation Vulnerability in Microsoft Windows XP ====================================== 1. BACKGROUND There has been no background commentary about the problem. ====================================== 2. DESCRIPTION Microsoft Windows XP incorrectly validates user input, making privilege escalation possible. ====================================== 3. HISTORY 9-1-2006 - Vendor Notification. 22-2-2006 - Vendor Reply. 16-3-2006 - Public Disclosure. ====================================== APPENDIX A VENDOR INFORMATION http://www.microsoft.com ====================================== APPENDIX B REFERENCES RFC 8573 ====================================== CONTACT Richard Horsman lolville () spam la 1-888-565-9428 BEWARE THE JIZZTAPO!!! .. _ .' `. /\) / / / / /\ \ \ / \ _ \ \/ /\ \ (/\ \ / \ \ \ \ / \ (Y ) \ \/ /\ \ "" \ / \ \ \/ / / / / ( Y) "" CISSP CEH CSFA SSP-CNSA SSCP _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Current thread:
- -ADVISORY- ~ =Thu Mar 16 14:00:41 EST 2006= ~ Local Privilege Escalation Vulnerability in Microsoft Windows XP richardh (Mar 16)