[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244411

 
 

909

 
 

193363

 
 

277

Paid content will be excluded from the download.


Download | Alert*
OVAL

Microsoft Windows LRPC Server local privilege escalation vulnerability - MS10-084

ID: oval:org.secpod.oval:def:1521Date: (C)2011-07-20   (M)2022-04-14
Class: PATCHFamily: windows




The host is missing a critical security update according to Microsoft security bulletin, MS10-084. The update is required to fix local privilege escalation vulnerability. A flaw is present in the Remote Procedure Call Subsystem (RPCSS) in Microsoft Windows, which fails to handle crafted LPC message that requests an LRPC connection from an LPC server to a client. Successful exploitation could allow an attacker to execute arbitrary code on the system with the privileges of the NetworkService account.

Platform:
Microsoft Windows XP
Microsoft Windows Server 2008
Reference:
MS10-084
CVE-2010-3222
CVE    1
CVE-2010-3222
CPE    6
cpe:/o:microsoft:windows_2003_server::sp2:itanium
cpe:/o:microsoft:windows_xp::sp3:x86
cpe:/o:microsoft:windows_xp:-:sp2:x64
cpe:/o:microsoft:windows_xp::sp2:x64
...
XCCDF    2
xccdf_com.secpod_benchmark_microsoft-windows-server-2008
xccdf_com.secpod_benchmark_microsoft-windows-xp

© SecPod Technologies