Vulnerability in LRPC Client could allow elevation of privilege - MS13-102ID: oval:org.secpod.oval:def:16183 | Date: (C)2013-12-11 (M)2022-10-10 |
Class: PATCH | Family: windows |
The host is missing an important security update according to Microsoft advisory, MS13-102. The update is required to fix elevation of privilege vulnerability. A flaw is present in the application, which fails to properly handle the crafted LPC port message. Successful exploitation allows the attacker to cause a stack-based buffer overflow condition on the LRPC client.
Platform: |
Microsoft Windows XP |
Microsoft Windows Server 2003 |